Static Code Analysis Specialist (C++)

  • Sonar
  • Geneva, Switzerland
  • 26 Jun, 2024
Full time

Job Description

Sonar solves the trillion-dollar challenge of bad code. Sonar equips organizations to achieve and sustain a Clean Code state by empowering developers to write consistent, intentional, adaptable, and responsible code. Clean Code produces software that is maintainable, reliable, and secure, allowing development teams to spend less time fixing issues and more time innovating. With Sonar, and by employing the company’s Clean as You Code methodology, organizations minimize risk, reduce technical debt, increase productivity, and derive more value from their software in a predictable and sustainable way.

Sonar’s open-source and commercial products – SonarLint, SonarCloud, and SonarQube – support over 30 programming languages, frameworks, and infrastructure technologies. Trusted by more than 500,000 organizations and used by more than 7 million developers globally to clean more than half a trillion lines of code, Sonar is integral to delivering better software.

The impact you can have

The SonarSource Languages Team is looking for a passionate C++ Static Code Analysis Specialist to work on its advanced C-Family analyzer.

SonarSource’s C-Family code analyzer is designed to fulfill the needs of C and C++ developers: spotting tricky code quality and security issues as fast as possible while generating as little noise as possible. Dereferences of null pointers, memory leaks, dead code and logic flow errors are some examples of those quality issues. The analyzer also helps to enforce coding standards like CPP Core Guidelines and MISRA C++2008. The analyzer is built on top of the Clang front-end and can run inside the IDE as well as on CI systems. The analyzer is compatible with the mainstream C and C++ compilers: Clang, GCC, MSVC, and Arm.

By joining the C-Family,  you will be part of an autonomous team without a manager. You will choose what to work on. You will have fun facing the ultimate challenge of analyzing, what is probably the most complex language in the world: C++.

 

On a daily basis, you will

  • Lead the effort to specify and implement proof of concept of new C-Family code static analysis features
  • Keep track of the limitations of the C-Family static analyzer and come up with proposals to overcome them
  • Keep up-to-date with the latest academic and industry research and find out if and how they can be used to improve our product
  • Collaborate with the R&D team and be the point of contact with them
  • Raise the knowledge level of the team when it comes to code static analysis techniques by doing internal presentations and writing documentation
  • Work closely with the development team, take part in the technical discussions,  and have an impact on the team’s short and long-term goals
  • Write technical blog posts that explain our static analysis techniques
  • Interact with LLVM code base and have the opportunity to contribute back to it
  • Contribute to the code quality of many developers around the world

 

The skills you will demonstrate

  • Solid theoretical understanding of code static analysis techniques
  • Prior work experience in the C++ code static analysis industry
  • Prior research in the code static analysis domain
  • Strong proven experience in C++ along with its development environment
  • Solid understanding of the internals of the C++ language and familiarity with its latest standards
  • Ability to explain theoretical concepts in a simple manner
  • Excellent written and oral communication skills in English
Words from the team

The Languages Team's mission is to build state-of-the-art static analyzers used by millions of developers.
We want to help developers to write better and safer code by spotting issues of several kinds for all major programming languages:
Maintainability issues: code smells
Reliability issues: bugs
Security issues: vulnerabilities and security hotspots

Ultimately, we target all issues which can be found through static analysis, even if they require a very deep understanding of the code. The sky's the limit! We believe that, as a side effect, our analyzers should educate developers about coding best practices thanks to the rule descriptions
and to the raised issues.

From a SonarSource perspective, the mission of the Languages Team is to generate the data that will provide the most valuable feedback for users of SonarSource’s products.


Why you will love it here

• We value a safe work culture - founded in respect, kindness, and the right to fail.
• We hire great people - we value communication skills as much as technical prowess and we strive to create a work environment that allows for everyone to succeed and feel empowered to do their best work. Our 500+ SonarSourcers from 35 different nationalities can relate!
• Work-life balance - a healthy work-life balance is very important at Sonar.
• Flexible hours - we schedule our days in order to be effective at work, while also being able to enjoy life’s important moments.
• We promote continuous learning - in an ever-changing industry, learning new skills is the key to growth and success! We're happy to support all employees in this journey if desired. 


What we do

As Home of Clean Code, Sonar is the ultimate solution to achieving Clean Code for developers and organizations alike. 

The company was formed to develop the open-source tool SonarQube, which has since become the go-to standard in code quality management. We strive every day to pave the way for developers, tackling the toughest issues head-on and pushing the limits of what’s possible. 


Who we are

At Sonar we believe in people, dedication, and innovation. We’re a team of problem solvers who are passionate and relentless in their respective missions. We want to work with people who are ready and willing to fasten their seat belts and be part of an incredible ride! 

Our Core Values are: Smarter Together, Excellence, Innovation, and Delivery. They reflect our unique culture and we expect them to help shape and positively strengthen our organization. 

If you want to learn more about our culture, check out our blog post.

Join us; we’ll be smarter and stronger together!

Sonar is an equal-opportunity employer and is committed to treating every employee with equal respect and fairness. We maintain a zero-tolerance policy toward any form of discrimination. All candidates will receive equal consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, citizenship, age, veteran status, disability, or any other legally protected status.