Java Security Researcher

TL;DR

Java Security Researcher: Providing secure Java instrumentation for heterogeneous Java-based environments with an accent on analyzing vulnerabilities and ensuring backward compatibility. Focus on collaborating with engineers to deliver high-quality updates.

Location: Fully remote work from any location worldwide

Company

hirify.global is a global, remote-first company delivering high-volume, low-cost Linux infrastructure and security products.

What you will do

• Analyze publicly disclosed vulnerabilities (CVEs) affecting Java open-source libraries and frameworks.
• Investigate and identify safe and compatible versions of third-party dependencies.
• Backport security patches from newer releases to older versions.
• Fix or mitigate vulnerabilities where no upstream patch exists.
• Write clean, maintainable, and well-documented code.
• Collaborate with other engineers and security specialists to deliver high-quality, production-ready updates.

Requirements

• 3+ years of experience in software development
• In-depth knowledge of Java Core
• Experience with dependency management tools (Maven, Gradle)
• Experience with Git, Jenkins/Gitlab for CI/CD
• Experience with legacy systems and maintaining backward compatibility
• Experience with repository management systems, such as Nexus, is a plus