Principal Product Security Engineer

Every day, millions of people count on NETGEAR products to connect their digital lives at home and on the go. As a key member of the NETGEAR Product Security Team, you will be helping our innovators develop highly secure and trusted networking products. This is a hybrid role based in Bengaluru.

Key Responsibilities:

• Serve as the product security subject-matter expert closely collaborating with other NETGEAR product development teams to identify, assess, root-cause, address, validate, and prevent product security issues.

• Be the champion for secure and defensive programming techniques and use of automation to eliminate and prevent security problems.

• Keep up to date with latest advancements in the field and continually elevate the secure software development practices at NETGEAR.

• Use the latest and greatest bug hunting technologies to find security vulnerabilities at scale. Monitor the latest security trends, vulnerabilities, and threat intelligence, and assess their relevance to NETGEAR products.

Required Qualifications:

• 10+ years of relevant work experience in application security, hardware, IoT security, security pen-testing, vulnerability discovery, secure software development, and design security reviews.

• Proven track record of implementing and scaling security tooling such as pre-commit hooks with static code analysis (SAST) and dependency security (OSS/SCA), and fine tuning them for the best developer experience.

• Experience with using techniques like fuzzing, reverse engineering, writing SAST rules, semgrep, CodeQL,

• Excellent knowledge of common security weaknesses (like OWASP top-n lists) and best ways to address them.

• Understanding of network security technologies and vulnerabilities, especially in the networking device space.

• Strong analytical and problem-solving skills, the ability to work both independently and collaboratively with diverse stakeholders

• Excellent written and verbal communication skills in English.

• BE or master’s degree in computer science, computer security, application security, information security, or networking.

Preferred Qualifications (optional):

• Participation in Capture the Flag (CTF) competitions, a local OWASP chapter, or similar security-focused communities

• Experience with software and firmware development.

• Examples of CVEs discovered or analyzed, or bug bounty awards received.

• Examples of innovation in product security, such as patents, publications, or contributions to open-source security projects.

Company Statement/Values:  

At NETGEAR, we are on a mission to unleash the full potential of connectivity with intelligent solutions that delight and protect. We turn ideas into innovative networking products that connect people, power businesses, and advance the way we live.  

We're a performance-driven, talented and connected team that's committed to delivering world-class products for our customers. As a company, we value our employees as the most essential building blocks of our success. And as teammates, we commit to taking our work to the Next Gear by living our values: we Dare to Transform the future, Connect and Delight our customers, Communicate Courageously with each other and collaborate to Win It Together. You’ll find our values woven through our processes, present in our decisions, and celebrated throughout our culture. 

We strive to attract top talent and create a great workplace where people feel engaged, inspired, challenged, proud and respected. If you are creative, forward-thinking, passionate about technology and are looking for a rewarding career to make an impact, then you've got what it takes to succeed at NETGEAR. Join our network and help us shape the future of connectivity. 

NETGEAR hires based on merit. All qualified applicants will receive equal consideration for employment. All your information will be kept confidential according to EEO guidelines.