R&D Principal Software Engineer - Security Response Engineering

R&D Principal Software Engineer – Security Response Engineering

Proficient in Python and at least one of C/C++ or Java
Bachelor’s degree in Computer Science or related field and 12+ years of related experience or Masters degree in Computer Science or related field and 10+ years of related experience
Familiar with tools such as Blackduck, Burp, Nessus, and Coverity for security defect discovery
Familiar with OSS vulnerability discovery platforms like vulnhub, GHSA, openwall, etc.

Oversee all aspects of the security response process from triage to remediation and communication of high profile externally reported vulnerabilities
Reproduce externally reported vulnerabilities, assess for lateral impact and develop proof of concepts for those vulnerabilities
Provide tools (Scripts/checklists) for development teams to verify if their products are impacted as well as validate fixes
Assess OSS vulnerabilities for potential impact to VCF products
Enable models and IOCs for SOC to detect similar families of TTPs
Make entire kill-chain understandable to an engineering audience
Partner with different business units across Broadcom to build and support processes to support a high profile response
Build PSIRT expertise, creating, maintaining and enhancing process and policy documentation
Define and report program roadmap, status, development issues and success metrics for High Profile process
Perform RCCA and present on high profile vulnerabilities to executive staff
Monitor and develop intelligence sources to maintain situational awareness of the cyber threat landscape
Work with a diverse group of stakeholders from technical to executive level

No preferred qualifications provided.