Locations
Remote, United Kingdom.
Overview
GitHub is the world’s leading AI‑powered developer platform, powering code development for over 180 million developers and 77 000 organisations. The Code Scanning team works on detection and remediation engines that protect software from open source to enterprise, integrating with GitHub Code Security and Advanced Security.
Responsibilities
- Join one of the distributed software engineering teams that build and expand code analysis engines and agents at GitHub. Work in the area most aligned to your experience and interests, as follows:
- Code Analysis: Maintain detection support for multiple languages, build source‑code extractors, write and maintain queries in the CodeQL query language, build analysis libraries, and evaluate LLM‑powered detection engines and integration with static analysis.
- Foundations: Develop QL, the query language powering CodeQL, and its compiler and evaluator within the CodeQL CLI. Expand language expressive power, speed up the query engine, and ensure CodeQL scales to the largest codebases.
- Collaborate with engineering teams, product managers, designers, and technical writers across the code scanning product to influence product direction and deliver high‑quality, reliable, and user‑friendly features.
- Engage with internal and external users, including enterprise customers and the open‑source community, to help them succeed with the product.
- Contribute to the organizational culture and continuous improvement of processes.
Qualifications
Required Qualifications
- 6+ years of software engineering experience, delivering production software in languages such as C, C++, C#, Java, JavaScript/TypeScript, Go, Ruby, Rust, or Python; or an associate degree with 5+ years of such experience; or a bachelor’s degree with 4+ years; or a master’s degree with 2+ years; or a doctorate; or equivalent experience.
- 3+ years of experience in at least one of the following areas: software security (static/dynamic analysis, supply‑chain security), building developer tools (compilers, parsers, linters, static analyzers, debuggers, CLI tools, IDE extensions), or ML/AI applied to source‑code understanding (LLM generation or reasoning, and benchmarking).
Preferred Qualifications
- Experience in two or more of the areas listed above.
- Experience designing and running statistically‑sound experiments to evaluate performance and quality.
- Knowledge of compilers, program analysis, or programming‑language design and implementation.
- Knowledge of logic programming or database query languages (e.g., SQL, Prolog, Datalog, Kusto).
- Experience in security research, including identifying, analyzing, and disclosing vulnerabilities in open‑source projects.
Equal Employment Opportunity
GitHub embraces diversity and invites applications from people of all backgrounds and lifestyles. We do not discriminate on the basis of gender identity or expression, sexual orientation, race, religion, age, national origin, citizenship, disability, pregnancy status, veteran status, or any other characteristic. If you have a disability and would like accommodations in the interview process, let us know and we will accommodate.
#J-18808-Ljbffr