Principal Product Security Engineer
Every day, millions of people count on NETGEAR products to connect their digital lives at home and on the go. As a key member of the NETGEAR Product Security Team, you will be helping our innovators develop highly secure and trusted networking products. This is a hybrid role based in Bengaluru.
Requirements
10+ years of relevant work experience in application security, hardware, IoT security, security pen-testing, vulnerability discovery, secure software development, and design security reviews.
Proven track record of implementing and scaling security tooling such as pre-commit hooks with static code analysis (SAST) and dependency security (OSS/SCA), and fine tuning them for the best developer experience.
Experience with using techniques like fuzzing, reverse engineering, writing SAST rules, semgrep, CodeQL,
Excellent knowledge of common security weaknesses (like OWASP top-n lists) and best ways to address them.
Understanding of network security technologies and vulnerabilities, especially in the networking device space.
Strong analytical and problem-solving skills, the ability to work both independently and collaboratively with diverse stakeholders
Excellent written and verbal communication skills in English.
BE or master’s degree in computer science, computer security, application security, information security, or networking.
Preferred Qualifications (optional):
Participation in Capture the Flag (CTF) competitions, a local OWASP chapter, or similar security-focused communities
Experience with software and firmware development.
Examples of CVEs discovered or analyzed, or bug bounty awards received.
Examples of innovation in product security, such as patents, publications, or contributions to open-source security projects.
The application process will continue on the employer's website.
Location
Bengaluru, India