Job Description

Black Duck Software, Inc. helps organizations build secure, high-quality software, minimizing risks while maximizing speed and productivity. Black Duck, a recognized pioneer in application security, provides SAST, SCA, and DAST solutions that enable teams to quickly find and fix vulnerabilities and defects in proprietary code, open source components, and application behavior. With a combination of industry-leading tools, services, and expertise, only Black Duck helps organizations maximize security and quality in DevSecOps and throughout the software development life cycle.

As part of our engineering team, you will work on code analysis technologies and contribute to building high‑quality static analysis solutions. This role offers the opportunity to work across multiple programming languages, improve existing analyses, and help define benchmarks and validation processes.

Primary Responsibilities

• Design and develop static code analysis for C, C++, and Java
• Enhance existing analysis checkers and implement new ones to improve coverage and accuracy.
• Develop comprehensive test cases to validate multiple execution scenarios.
• Perform automated evaluation of analysis results using Jenkins and other CI tools.
• Contribute to building and maintaining benchmark suites used for checker evaluation and comparison.

Qualifications and Experience

• Bachelor’s or Master’s degree in Computer Engineering, Computer Science, or a related field.
• Hands-on experience with static analysis, compilers, or related technologies
• Strong object-oriented programming skills with C/C++ (4+ years) on Linux/Unix platforms.

Preferred Qualifications

• Familiarity with compliance and secure coding standards such as MISRA and CERT
• Interest or experience in one or more of the following areas:
  • Programming language analysis, compiler construction, parsers, or language analyzers
  • Dataflow analysis and program analysis techniques
  • Web or mobile application security, including familiarity with the OWASP Top 10
• Proven analytical, debugging, and problem-solving skills.
• Ability to work effectively both independently and in cross-functional teams
• Strong written and verbal communication skills for technical discussions, collaboration, and product presentations.

Black Duck considers all applicants for employment without regard to race, color, religion, sex, gender preference, national origin, age, disability, or status as a Covered Veteran in accordance with federal law. In addition, Black Duck complies with applicable state and local laws prohibiting discrimination in employment in every jurisdiction in which it maintains facilities. Black Duck also provides reasonable accommodation to individuals with a disability in accordance with applicable laws.