Principal Software Engineer

3 days ago


INDBangaloreKalyani Vista II India Broadcom Full time ₹ 12,00,000 - ₹ 36,00,000 per year

R&D Principal Software Engineer - Security Response Engineering

Please Note:

1. If you are a first time user, please create your candidate login account before you apply for a job. (Click Sign In > Create Account)

2. If you already have a Candidate Account, please Sign-In before you apply.

Job Description:

R&D Principal Software Engineer - Security Response Engineering

The Elevator Pitch: Why will you enjoy this new opportunity?

Broadcom VMware Cloud Foundation (VCF) products and services are trusted by various organizations for their mission critical systems. Many of these systems demand the highest confidentiality and are of extreme interest to nation state actors. The vSECR team within the VCF Division at Broadcom is responsible for defending these products, services and their supply chains.

If helping find and fix security holes in these systems is your idea of a fun career, then you should come join this team. Working alongside other highly motivated and capable security engineers you will get first-hand experience in modern threats, attack, and defense techniques.

Success in the Role: What are the performance outcomes over the first 6-12 months you will work toward completing?

Security Engineers on the team are responsible for triage, investigation, management and communication of security vulnerabilities reported by external researchers. You will be responsible for assessing threats, analyzing externally reported vulnerabilities, supporting teams in providing vulnerability mitigations, virtual patches, workarounds and fix recommendations. You will maintain the highest quality of work while driving programs to completion, prioritizing incoming requests, contending priorities and managing high profile communications. You will work closely with a variety of teams across Broadcom to achieve our goal of protecting our customers. The role will focus on the growth and management of VCF products from a security perspective and will require involvement in the authoring of VMware Security Response Center (vSRC) communications including security advisories, blogs and knowledge base articles.

In the first 6mths, you will be expected to become intimately familiar with VCF products/components assigned to you. You should also be able to reproduce externally reported security issues in those components, engage with external reporters and drive fixes into patch releases, in collaboration with a member of your team. Within 1 year, you are expected to be fairly independent in doing security assessments and driving mitigations/remediations with product development and release teams, while being proactive with security researcher engagement.

The Work: What type of work will you be doing? What assignments, requirements, or skills will you be performing on a regular basis?

  • Oversee all aspects of the security response process from triage to remediation and communication of high profile externally reported vulnerabilities
  • Reproduce externally reported vulnerabilities, assess for lateral impact and develop proof of concepts for those vulnerabilities
  • Provide tools (Scripts/checklists) for development teams to verify if their products are impacted as well as validate fixes
  • Work with tools such as Blackduck, Burp, Nessus, and Coverity for security defect discovery. Be familiar with OSS vulnerability discovery platforms like vulnhub, GHSA, openwall, etc.
  • Assess OSS vulnerabilities for potential impact to VCF products
  • Proficient in Python and at least one of C/C or Java
  • Enable models and IOCs for SOC to detect similar families of TTPs
  • Make entire kill-chain understandable to an engineering audience
  • Partner with different business units across Broadcom to build and support processes to support a high profile response
  • Build PSIRT expertise, creating, maintaining and enhancing process and policy documentation
  • Define and report program roadmap, status, development issues and success metrics for High Profile process
  • Perform RCCA and present on high profile vulnerabilities to executive staff
  • Monitor and develop intelligence sources to maintain situational awareness of the cyber threat landscape
  • Work with a diverse group of stakeholders from technical to executive level
  • Bachelor's degree in Computer Science or related field and 12 years of related experience or Masters degree in Computer Science or related field and 10 years of related experience

Broadcom is proud to be an equal opportunity employer. We will consider qualified applicants without regard to race, color, creed, religion, sex, sexual orientation, national origin, citizenship, disability status, medical condition, pregnancy, protected veteran status or any other characteristic protected by federal, state, or local law. We will also consider qualified applicants with arrest and conviction records consistent with local law.

If you are located outside USA, please be sure to fill out a home address as this will be used for future correspondence.

Experience LevelSenior Level

  • IND-Bangalore-Kalyani Vista II, India Broadcom Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    R&D Principal Software Engineer - Security Engineering Please Note: 1. If you are a first time user, please create your candidate login account before you apply for a job. (Click Sign In > Create Account) 2. If you already have a Candidate Account, please Sign-In before you apply. Job Description: The Elevator Pitch: Why will you enjoy this new...


  • Bangalore, IND, India Zscaler Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Our Engineering team built the world's largest cloud security platform from the ground up, and we keep building. With more than 100 patents and big plans for enhancing services and increasing our global footprint, the team has made us and our multitenant architecture today's cloud security leader, with more than 15 million users in 185 countries. Bring your...


  • Bangalore, IND, India Zscaler Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Our Engineering team built the world's largest cloud security platform from the ground up, and we keep building. With more than 100 patents and big plans for enhancing services and increasing our global footprint, the team has made us and our multitenant architecture today's cloud security leader, with more than 15 million users in 185 countries. Bring your...


  • Bangalore, IND, India Zscaler Full time ₹ 18,00,000 - ₹ 36,00,000 per year

    Our Engineering team built the world's largest cloud security platform from the ground up, and we keep building. With more than 100 patents and big plans for enhancing services and increasing our global footprint, the team has made us and our multitenant architecture today's cloud security leader, with more than 15 million users in 185 countries. Bring your...


  • India RN Jobforce Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Company Description RN JobForce empowers job seekers and employers worldwide with cutting-edge job search tools and a growing professional community. We work collaboratively with our clients to supply them with only the best and most suitable candidates via our multi-layer candidate delivery function. Our platform provides tailored technology job...


  • Bangalore, Karnataka, India Dell Full time

    Software Principal EngineerThe Software Engineering team delivers next-generation application enhancements and new products for a changing world Working at the cutting edge we design and develop software for platforms peripherals applications and diagnostics xe2x80x94 all with the most advanced technologies tools software engineering methodologies and...

  • Principal Engineer

    6 hours ago


    IND Bangalore C , India Johnson Controls Ltd Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Principal Engineer Principal Engineer - R&D What you will do The Principal Engineer is a product development engineering role that will report to Engineering Manager within Special Hazards R&D. You will be developing fire protection equipment for a variety of applications and industries. As a Principal Engineer you will be the lead engineer and follow...


  • India Microsoft Full time

    Job DescriptionAre you looking for an opportunity to change the way businesses digitally transform in a mobile first, cloud first world If so, we've got the job for you The Business and Industry Co-pilot group is responsible for the Microsoft Dynamics 365 suite of products, Microsoft Flow, PowerApps, and Power BI in addition to other products and services...


  • India PROGRESS SOFTWARE Full time

    We are Progress Nasdaq PRGS - the experienced trusted provider of products designed with customers in mind so they can develop the applications they need deploy where and how they want and manage it all safely and securely We re proud to have a diverse global team where we value the individual and enrich our culture by considering varied...


  • Bangalore, Karnataka, India Dell Full time

    Senior Principal Software EngineerThe Software Engineering team delivers next-generation software application enhancements and new products for a changing world Working at the cutting edge we design and develop software for platforms peripherals applications and diagnostics xe2x80x94 all with the most advanced technologies tools software engineering...