R&D Principal Software Engineer - Security Response Engineering
Description For R&D Principal Software Engineer - Security Response Engineering
Broadcom VMware Cloud Foundation (VCF) is seeking a Principal Software Engineer to join their Security Response Engineering team. This role focuses on defending critical systems and products against sophisticated security threats, including those from nation-state actors. The position involves working with a team of highly skilled security engineers to identify, analyze, and remediate security vulnerabilities.
The role requires deep expertise in security response processes, from initial triage to final remediation. You'll be responsible for investigating externally reported vulnerabilities, developing proof of concepts, and collaborating with various teams to implement effective solutions. The position demands proficiency in Python and either C/C++ or Java, along with experience using security tools like Blackduck, Burp, Nessus, and Coverity.
As a Principal Engineer, you'll be expected to become an expert in VCF products and components, working independently to conduct security assessments and drive fixes into patch releases. You'll also engage with external security researchers and maintain high-profile communications, including security advisories and knowledge base articles.
The role offers competitive compensation ($141,000 - $225,000) plus bonus and equity opportunities. Benefits include comprehensive healthcare, 401(k) matching, ESPP, paid time off, and family leave. This is an excellent opportunity for a senior security professional looking to make a significant impact in protecting critical infrastructure at a global technology leader.
Responsibilities For R&D Principal Software Engineer - Security Response Engineering
- Oversee security response process from triage to remediation
- Reproduce and assess externally reported vulnerabilities
- Develop proof of concepts for vulnerabilities
- Provide security verification tools and scripts
- Work with security tools like Blackduck, Burp, Nessus, and Coverity
- Assess OSS vulnerabilities for VCF products
- Enable models and IOCs for SOC
- Partner with different business units across Broadcom
- Build PSIRT expertise
- Define and report program roadmap
- Perform RCCA and present on vulnerabilities to executive staff
- Monitor cyber threat landscape
Requirements For R&D Principal Software Engineer - Security Response Engineering
- Bachelor's degree in Computer Science or related field and 12+ years of experience, or Masters degree and 10+ years of experience
- Proficient in Python and at least one of C/C++ or Java
- Experience with security tools (Blackduck, Burp, Nessus, Coverity)
- Knowledge of OSS vulnerability discovery platforms
- Ability to work with diverse stakeholders from technical to executive level
Benefits For R&D Principal Software Engineer - Security Response Engineering
- Medical, dental and vision plans
- 401(K) participation including company matching
- Employee Stock Purchase Program (ESPP)
- Employee Assistance Program (EAP)
- Company paid holidays
- Paid sick leave and vacation time
- Paid Family Leave
- Annual discretionary bonus
- Equity compensation
Jobs Related To Broadcom R&D Principal Software Engineer - Security Response Engineering
