Sr. Staff Software Engineer - Product Security Lead, HSM, Kali Linux
Santa Clara, CA 
Posted 23 days ago
Job Description
About Marvell

At Marvell, we believe that infrastructure powers progress. That execution is as essential as innovation. That better collaboration builds better technology. Trusted by the world's leading technology companies for 25 years, we move, store, process and secure the world's data with semiconductor solutions designed for our customers' current needs and future ambitions. Through a process of deep collaboration and transparency, we're ultimately changing the way tomorrow's enterprise, cloud, automotive, and carrier architectures transform-for the better.

The data infrastructure that our customers build has never been more critical to our global economy. It's what's keeping the world connected, businesses running, and information flowing. If you're ready to excel, innovate, and truly enjoy your work, apply now for the position detailed below.

The Opportunity

Marvell LiquidSecurity Hardware Secure Module (HSM) Adapters are the industry's first and only FIPS 140-2 level 3 certified solution designed to be deployed in hyperscale cloud environments. They offer the highest HSM performance and scalability, as well as the remote management and resiliency required for the intense workloads and environmental conditions of the cloud datacenters where they are deployed.

We are singularly devoted to helping our customers protect what matters most. That's why we're a leader in cloud HSM (Hardware security modules) -and why many of the major cloud providers trust us as a security partner.

Job Responsibilities:

This role will be responsible for:

  • Coordinating security assessments and penetration testing activities between third-party vendors, engineering teams, security operations, and other stakeholders
  • Building positive relationships with Engineering, Enterprise Security, and customer-facing teams as a core tenant of the role and the team.
  • Directly communicate with cross-functional teams in Product Management, Development, and DevOps/SRE to drive security throughout the entire product.
  • Ensuring the adoption of SDLC and security best practices across the entire application lifecycle, to shift left the security aspect in SDLC.
  • Informed choices through a security lens for the entire development lifecycle, including design, coding & development, QA & security testing and release.
  • Driving effective integration and adoption of best practices, latest methods & techniques in identifying design flaws and software issues
  • The ability to ascertain and clearly articulate the size and scope of an assessment, articulate, assess product security risks and maintain risk register



What you bring to the team:

  • MS in CS/EC/EE or equivalent
  • 8+ years of professional software design and development experience and a proven record of delivering Security Engineering solutions. Kali Linux is highly desirable.
  • Deep understanding of information security-related topics, such as authentication, identity management, data protection, data leakage prevention, validation checking, encryption, key management, principle of least privilege, software attack methodologies, securing data in transit, at rest, and so forth is expected
  • Demonstrated and proven experience in product security.
  • In-depth knowledge of common application & network protocols, cryptographic technologies, public key infrastructure
  • Effective written and oral communication with multiple levels of leadership involving both the business and technical
  • Sophisticated knowledge of security and compliance frameworks (MITRE ATTACK, NIST 800-53, FedRAMP, ISO 27001, CUI, GDPR, CSA, SOCs and SOC3)
  • Knowledge of cloud platforms (e.g., AWS, GCP, Microsoft Azure), and are enthusiastic in contributing to or public writings about cloud-computing, containers, platform security
  • Must be able to work independently in a dynamic environment with globally distributed team members
  • Experience in security audits, risk, and compliance
  • Have worked on Security tooling and best practices, such as pre-commit hooks, SW dependency scanning, SAST, IAST, OSS, DAST, RASP, and vulnerability management, etc




The Perks

With competitive compensation and great benefits, you will enjoy our workstyle within an incredible culture. We'll give you all the tools you need to succeed so you can grow and develop with us. For additional information on what it's like to work at Marvell, visit our page.

Your Future

Marvell provides a work environment that promotes employee growth and development. We are searching for an individual who wants to grow with the company and will strive to improve performance. If you are driven, personable, and energetic, there will be additional opportunities for you here at Marvell.

At Marvell, we are doing our part to help keep our communities and our teams safe. As part of our efforts to address the Covid pandemic and future epidemics, you may be required at any time by our policies or applicable laws to provide proof of applicable vaccination or to present negative test results.

This role is eligible for our hybrid work model in which you will be able to split time between working from home and on-site in a Marvell office.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

Any applicant who requires a reasonable accommodation during the selection process should contact Marvell HR Helpdesk at or 408-222-3604.


Job Summary
Start Date
As soon as possible
Employment Term and Type
Regular, Full Time
Required Experience
8+ years
Email this Job to Yourself or a Friend
Indicates required fields