Senior Product Security Engineer - Secure Design Kernel & Virtualization - DigitalOcean

Key Responsibilities

• Conduct in-depth security reviews and threat modeling for kernel and virtualization components, identifying and mitigating risks before release.
• Collaborate with development teams to embed secure design principles into the product lifecycle, ensuring compliance with industry best practices.
• Design and execute rigorous security testing, including fuzzing, static analysis, and dynamic runtime checks on kernel and hypervisor code.
• Investigate and remediate security incidents, providing root‑cause analysis and actionable recommendations for long‑term resilience.
• Develop and maintain security tooling and automation pipelines to streamline vulnerability detection and patch management.

Requirements

• 5+ years of experience in kernel or virtualization security, with deep knowledge of Linux kernel internals.
• Proficiency in C/C++ and experience building or hardening kernel modules and hypervisor components.
• Hands‑on experience with threat modeling frameworks (e.g., STRIDE, PASTA) and security testing tools (e.g., AFL, KASAN, SELinux).
• Strong analytical skills, ability to translate complex security findings into clear, actionable guidance.
• Excellent communication skills, comfortable working cross‑functionally with engineering, product, and operations teams.