- Lead the development of product security requirements for applications, infrastructure, cloud, and/or other products, and participate in the full lifecycle of product design in all business units.
- Assess, identify, develop threat models and provide recommendations with the explicit purpose of influencing design decisions to address the likely threats to a product's security and resilience.
- Design and implement security solutions that support overall product security in all business units.
- Conduct manual and automated security testing of applications, infrastructure, cloud, and/or other platforms to discover security vulnerabilities.
- Review and learn new Semtech technologies/products quickly and assess them from a security perspective.
- Evaluate cloud architectures, configurations, and processes comprehensively.
- Provide technical leadership and guidance to technology teams involved in cloud projects.
- Foster a culture of collaboration and knowledge sharing across the organization.
- Build key relationships between BUs and functions involving key stakeholders while conducting interviews, surveys, and workshops to gather necessary input regarding their needs, expectations, and concerns.
- Provide assistance and support for ISO certifications, including ISO 27001, ISO 9001, and ISO 22301, contributing to the implementation and maintenance of compliance efforts.
- Lead incident management activities, coordinating responses to security incidents or breaches in products both from internal and external reported sources, and implementing corrective measures.
- Demonstrate proficiency in firmware, with a preference for experience in hardware and module devices, including IoT modules and router devices.
- Provide guidance to business units on security best practices in the cloud, applications, and infrastructure.
- Support the MVNO and associated telecom business units on product security.
- Support the research and implementation of robust secure encryption and protection mechanisms.
- Oversee penetration testing activities to identify and address reported security vulnerabilities.
- Assist with the design and adoption of security measures in IoT products and components, including protocols such as TLS, SSH and Lightweight M2M.
- Bachelor's degree in computer science, a related field, or relevant work experience.
- Minimum 10 years' experience working in information/cyber security with an emphasis on product security.
- Experienced working with embedded hardware systems and their respective security considerations.
- Knowledgeable of cryptographic standards and how they are applied to ensure robust product security.
- Knowledge of major cloud platforms (with specific concentration on AWS) and cloud-native technologies.
- Experienced in tracking to remediation application, infrastructure, chip, cloud and other security vulnerabilities.
- Telco stack knowledge, including HLR/HSS, P-Gateway and 2G-4G mobile core protocols, is desirable.
- Strong analytical and problem-solving skills.
- Demonstrated understanding of common security threats and vulnerabilities.
- Skilled in architecting software solutions using a variety of architectural patterns such as Microservices, Monolithic and serverless tailored to project requirements and scalability needs.
- Certified Information Systems Security Professional (CISSP)
- AWS Certified Cloud Practitioner
- AWS Certified Solutions Architect
- Working knowledge of TOGAF enterprise architecture framework
- Dynamic and detail-oriented with a solid background in software development, proficient in Python, C++ and Java.
-
Security Engineer
3 weeks ago
ShiftCode Analytics San Francisco, United StatesInterview : Video · Visa : All apart from H1b and CPT · This is hybrid from day-1. Candidate must be local. · Description : · Qualifications: · 4+ years of security engineering experience OR equivalent experience in a SWE/DevOps role and an interest in working on security en ...
-
Security Engineer
3 weeks ago
Commit Partnership San Francisco, United StatesAbout the company: Company size: <50 · Industry: Data Analytics, Data Science, AI · Founding year: 2019 · Stage: B · Funding: $100M · Backed by: Top-tier investors including Sequoia Capital, Andreessen Horowitz, and Snowflake · Tech Stack/Key Tech: Kubernetes, AWS, Terrafor ...
-
Security Engineer
3 weeks ago
HonorVet Technologies San Francisco, United StatesTitle: Security Engineer · Location: Remote · Duration: 12+ months · Position Description · A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy developmen ...
-
Security Engineer
1 week ago
Hive San Francisco, United StatesAbout Hive · Hive is the leading provider of cloud-based AI solutions to understand, search, and generate content, and is trusted by hundreds of the world's largest and most innovative organizations. The company empowers developers with a portfolio of best-in-class, pre-trained ...
-
Security Engineer
3 weeks ago
HonorVet Technologies San Francisco, United StatesTitle: Security Engineer · Location: Remote · Duration: 12+ months · Position Description · A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development ...
-
Security Engineer
3 weeks ago
HeyGen San Francisco, United StatesAbout HeyGen · HeyGen is a cutting-edge AI-powered platform revolutionizing the world of video creation. · Position Summary: · As a Security Engineer at HeyGen, you will play a critical role in protecting our systems and data from threats. Your expertise will be essential in i ...
-
Security Engineer
1 week ago
Retool San Francisco, United StatesABOUT RETOOL: · Nearly every company in the world runs on custom software: Gartner estimates that up to 50% of all code is written for internal use. This is the operational software for refunding orders, underwriting loans, onboarding employees, analyzing transactions, and prov ...
-
Security Engineers
1 week ago
NCC Group (Americas), Inc San Francisco, United StatesSecurity Engineers · Company: NCC Group (Americas), Inc · Location: San Francisco, CA · Position Type: Full Time · Experience: 1 year · Education: MS · NCC Group (Americas), Inc. seeks Security Engineers w/MS and min. 1 yr experience sought for positions in San Francisco. Salary ...
-
Security Engineer
3 weeks ago
Innovaccer San Francisco, United StatesYour Role · We are growing rapidly in the US with acquisitions and in the US Government space. We are looking to expand our US security team with talented people. We at Innovaccer are looking for a · Security Engineer-III · who will be responsible for performing real-time moni ...
-
Security Engineer
4 weeks ago
Retool San Francisco, CA, United StatesWHY WE'RE LOOKING FOR YOU · Retool aspires to be the single best way companies build internal tools, bringing good software to everyone. Central to this vision is an unwavering commitment to security. Retool both handles our clients' most sensitive data and offers a Turing-compl ...
-
IT Security Engineer
2 weeks ago
Gunderson Dettmer San Francisco, United StatesGunderson Dettmer is the only business law firm of its kind - exclusively serving the global venture capital and emerging technology marketplace. With 400 attorneys in eleven offices - from Silicon Valley to Singapore - we innovate for innovators, accelerate entrepreneurship, and ...
-
Security Engineer
1 week ago
Russell Tobin San Francisco, United StatesJob Description · Job Description · Job Title: Security Engineer Level V · Job Location: San Francisco, CA · Duration: 11 Months plus · Pay Range: $120/hr-$130/hr on W2 · Duties: · Identify gaps in our infrastructure, and work with business partners to gain visibility throug ...
-
Security Engineer
2 weeks ago
Insight Global San Francisco, United StatesRole: Security EngineerPR: $50 -70/hrLocation: hybrid phx azContract: 12 month contract (possible extensions) · * 2-4 Years of professional experience as a Security Engineer or equivalent position.* Professional experience utilizing Palo Alto.* Professional Experience working wi ...
-
Security Engineer
1 week ago
HonorVet Technologies San Francisco, United StatesTitle: Security EngineerLocation: RemoteDuration: 12+ months · Position DescriptionA Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development or opera ...
-
Security Engineer
4 weeks ago
Retool San Francisco, CA, United StatesRetool aspires to be the single best way companies build internal tools, bringing good software to everyone. Retool both handles our clients' most sensitive data and offers a Turing-complete coding environment, so security is a core criterion for everything we build. Bringing our ...
-
Security Engineer
4 weeks ago
Hive San Francisco, CA, United StatesAbout Hive · Hive is the leading provider of cloud-based AI solutions for content understanding, trusted by the world's largest, fastest growing, and most innovative organizations. The company empowers developers with a portfolio of best-in-class, pre-trained AI models, serving ...
-
Security Engineer
3 weeks ago
Vouch San Francisco, United States[Full Time] Security Engineer at Vouch (United States) | BEAMSTART Jobs · Security Engineer · Vouch United States · Date Posted · 04 Jan, 2023 · Work Location · San Francisco, United States · Salary Offered · $145000 — $165000 yearly · Job Type · Full Time · Experience Required ...
-
Security Engineer
1 week ago
Asana San Francisco, United StatesWe're looking for a motivated security engineer interested in maturing Asana's product security posture to expand trust with our growing customer base. As a member of the Product Security team, you will focus on shipping features that are free from critical security bugs, enablin ...
-
Security Engineer
2 weeks ago
Remotework San Francisco, United StatesSecurity Engineer (Detection and Response) · Alchemy · Whether you're a beginner developer, startup, web3 market leader, or a large enterprise, Alchemy makes multichain web3 development easy. · View company page · Our mission is to bring blockchain to a billion people. The Al ...
-
Security Engineer
1 week ago
Notion, LLC San Francisco, United StatesAbout Us: · We're on a mission to make it possible for every person, team, and company to be able to tailor their software to solve any problem and take on any challenge. Computers may be our most powerful tools, but most of us can't build or modify the software we use on them e ...
Principal Product Security Engineer - San Francisco, United States - Semtech
Description
Location: US-RemoteOur Team:
Semtech's Product Security team is a group of passionate and talented security professionals tasked to support product development teams in the creation of high-quality products that are secure by design. We ensure our customers and partners feel comfortable deploying our products, knowing security is an integral part of the development process. We are expanding a versatile and exceptionally talented team of individuals to make this vision a reality.
Job Summary:
The Principal Product Security Engineer will support Semtech's Business Units with product security initiatives. The ideal candidate will support creating high-quality, security focused products by providing product development teams with the necessary support, subject matter expertise, requirements validation, tools, training and assistance. This role also assists the office of the CTO in conceptualizing, developing and commercializing technologies to shape the technical future of the organization.
Responsibilities:
All duties and responsibilities are essential job functions and requirements and are subject to possible modification to reasonably accommodate individuals with disabilities.
We are proud to be an EEO employer M/F/D/V. We maintain a drug-free workplace.
A reasonable estimate of the pay range for this position is $121,000 - $190,300. There are several factors taken into consideration in determining base salary, including but not limited to: job-related qualifications, skills, education and experience, as well as job location and the value of other elements of an employee's total compensation package.