Job description

SonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company, ensuring our partners and their customers are never alone in the fight against cybercrime. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall provides relentless security against the most evasive cyberattacks across endless exposure points for increasingly remote, mobile and cloud-enabled users. With its own threat research center, SonicWall can quickly and economically provide purpose-built security solutions to enable any organization—enterprise, government agencies and SMBs—around the world. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.

Responsibilities

Code Review & Analysis: Conduct detailed reviews of C/C++ codebases to identify potential security vulnerabilities, including buffer overflows, memory leaks, race conditions, and other weaknesses.
Secure Development Practices: Collaborate with development teams to implement secure coding practices and provide recommendations for mitigating identified risks.
Vulnerability Assessment: Use static and dynamic analysis tools to uncover security flaws and verify the effectiveness of implemented fixes.
Documentation & Reporting: Prepare comprehensive audit reports detailing identified vulnerabilities, their potential impact, and recommended remediation steps.
Compliance Verification: Ensure code adheres to applicable standards (e.g., OWASP, MISRA, CERT C/C++ guidelines).
Education & Training: Provide training and guidance to development teams on secure coding techniques and practices.
Collaboration: Work closely with developers, QA, and security teams to establish a secure development lifecycle and address security concerns proactively.

Technical Expertise:

Proficiency in C and C++ programming languages, including advanced concepts such as memory management and multithreading.
Deep understanding of common security vulnerabilities and exploitation techniques in C/C++ applications.
Familiarity with modern software development tools and environments (e.g., GCC, Clang).

Tools & Techniques:

Experience with code analysis tools such as Coverity, KlocWork, CodeChecker or Fortify.
Knowledge of debugging and diagnostic tools (e.g., GDB, Valgrind).
Hands-on experience with fuzzing, penetration testing, and other vulnerability discovery methodologies.

Soft Skills:

Excellent analytical and problem-solving skills.
Strong communication skills to convey complex technical findings to diverse stakeholders.
Ability to work independently and as part of a team.

Preferred Qualifications:

Bachelor’s degree in Computer Science, Cybersecurity, or a related field.
5+ years of experience in the field of C/C++ development.
Certifications such as Certified Secure Software Lifecycle Professional (CSSLP) or Offensive Security Certified Professional (OSCP).
Familiarity with Agile or DevSecOps workflows.
Knowledge of other languages (e.g., Python, Shell) for scripting and automation.

#LI-KB7

#LI-CostaRicaRemote

#LI-C/C++

SonicWall is an equal opportunity employer.

We are committed to creating a diverse environment and are an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.

At SonicWall, we pride ourselves on recruiting a diverse mix of talented people and providing active security solutions in 100+ countries.

Applicant Privacy Notice

Required profile