Notice: In-person classes from 28 April 2024       CRTEWU 98th Research Seminar       CALL FOR ABSTRACT OF PUBLISHED RESEARCH PAPERS- Vol. 18, 2023       Call for Proposals-Round 17       "Renewal of Accreditation for Four Years: East West University's CSE & EEE Continue to Demonstrate Excellence”       2nd Call for Papers: East West Journal of Business and Social Studies: Vol.12, 2024      

CCC Notice Board

Home/Student/Dept. of Student Welfare/CCC Notice Board

Notice Details

  • Position: Secure Software Developer
  • Organization: OpenRefactory Bangladesh Limited
  • Major Responsibilities:
  • · Learn and deploy a variety of bug detection tools, including SAST tools, to analyze open source libraries for the purpose of uncovering potential software errors.
  • · Review the warnings generated by the tools to identify potential security vulnerabilities in the analyzed libraries.
  • · Distinguish the bugs and security vulnerabilities that may contribute to a potential PoC exploit.
  • · Report the vulnerabilities responsibly to the open source maintainers.
  • · Coordinate with the open source maintainers to remove the vulnerabilities.
  • · Share past and ongoing results in an open source manner and coordinate with researchers all across the world.
  • · Work with the OpenRefactory team to identify false warnings and check if they can be eliminated in subsequent releases.
  • Major Qualifications:
  • · Must be a CSE or Software Engineering graduate.
  • · Proficiency in Java, Python and Go. Experience with developing on a Linux platform.
  • · Proficiency in using Burp Suite and other penetration testing tools. Proficiency in documenting designs, writing result reports and explaining to others.
  • · Understanding of injection vulnerabilities, specifically SQL Injection, Cross-Site Scripting, Command Injection, Path Traversal, Deserialization vulnerabilities.
  • · Competence in the following topics: https://portswigger.net/web-security/learning-path
  • · An analytical mind to understand and generate a PoC exploit for a vulnerability.
  • · Knowledge of compilers to understand the underlying algorithms for the bug detection tools and possibly coming up with suggestions for improving the precision of the tools.
  • · English proficiency in speaking and writing.
  • · Familiarity with Git e.g. GitHub, GitLab, DevOps processes such as Jenkins, Docker etc.;
  • · Must be willing to challenge oneself and learn newer and better ways of developing software.
  • Application Procedure: Click here
  • Application Deadline: 17 June 23