Vercel is seeking a Security Software Engineer focused on Open Source Frameworks to enhance the security of their widely-used projects like Turborepo, Nuxt, Svelte/SvelteKit, SWR, Workflow, and Nitro. This role involves deep security assessments of framework internals, identifying systemic vulnerability patterns, and driving framework-level fixes. The engineer will also manage the handling of externally reported vulnerabilities, coordinated disclosure, CVEs, and Vercel's open source bug bounty program for these projects. A key aspect is integrating security early in the design phase of new features and building preventive tooling. The role also encompasses owning the supply chain security for these projects and engaging with the open source community, maintainers, and researchers.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed