Job Title: Application Security Engineer - III
The Elevator Pitch: Why will you enjoy this new opportunity? This position is currently part of the End-User Computing Division (EUC) of Broadcom and is planned to transfer to Omnissa in 2024” If you have an analytical mind, a passion for software security, thrive on solving problems and learning new things, this opportunity is for you. In this role you'll have the opportunity to be involved in multiple areas of product security from blue team activities and security architecture to building proof of concepts and triaging external reports. A successful candidate in this role will be able to handle a variety of difficult challenges, has efficient time management skills, is a creative problem solver with the ability to identify and understand root causes.
Key Responsibilities:
• Work closely with teams to create, update and maintain threat models
• Perform secure code reviews and manual application security testing across all our products
• Triage and validate externally reported issues against our products
• Provide guidance and education to developers
• Develop ways to help identify and prevent systematic issues
Qualifications:
• 4 to 9 years of hands-on manual application security experience
• Strong knowledge of application security vulnerabilities and mitigation techniques
• Security knowledge across at least two of the following domains: system, application, mobile, cloud, etc..
• Proficient in at least one of these programming languages: Java, C++, C#, Python, or Go
• Strong problem-solving skills
• Ability to learn independently and is self-driven
• Experience writing automation solutions to improve the security process
• Excellent documentation and communication skills
Performance Goals:
• First 2 Months: Understand our products, their components and architecture. Understand our security processes. Participate in team scope and architectural discussions.
• 6 Months: Have a good understanding of responsibilities, project goals, and required processes/tools. Collaborate to construct the product backlog, establish project boundaries, and ensure timely deliverables.
• Collaboratively work across other product and component teams.
• Handle interactions with product management and cross-functional teams to define and deliver required solutions.
• Participate in all phases of Secure Software Development Lifecycle and Product Response Security. Leadership and Team Culture:
• Report to the head of application security.
• Work closely with a committed team of security engineers, product managers, and developers focused on innovation and getting things done.
• Build trust among team members and stakeholders, committing to customer success.
• Operate in a transparent, communicative environment that emphasizes work-life balance and having fun at work.
Location:- Bengaluru
Hybrid Model :-This role offers a balanced arrangement, with the expectation of working 3 days a week in our local office and the flexibility to work from home for the remaining days. It is essential that you reside within a reasonable commuting distance of the office location for the in-office workdays.
