Full Time Product Security Engineer Jobs (NOW HIRING)

Company:
Qualcomm Technologies, Inc.
Job Area:
Engineering Group, Engineering Group > Security Engineering
General Summary:
Job function includes participation in product security incident response, security research on Qualcomm products in detecting and mitigating security vulnerabilities, customer communications on product security related issues. Specific responsibilities may include binary analysis to identify vulnerabilities being used in active exploits; review of resolutions as part of the incident response; assisting customers to adopt security patches; internal vulnerability detection and risk assessment using both manual methods and automated tools; evaluating new technologies/tools to help detect, triage, and mitigate security vulnerabilities; reaching out to security research community and fostering coordinated vulnerability disclosure.
Minimum Qualifications:
• Bachelor's degree in Engineering, Computer Science, or related field and 4+ years of Security Engineering or related work experience.
OR
Master's degree in Engineering, Computer Science, or related field and 3+ years of Security Engineering or related work experience.
OR
PhD in Engineering, Computer Science, or related field and 2+ years of Security Engineering or related work experience.
Applicants should possess at least five years of experience (work or academic) in the field of software security and, specifically, with experience of performing software security audits. Ability to work independently with minimal supervision is a must. Applicants should have expertise or experience in two or more of the following areas:
- Binary analysis and malware/exploit reverse engineering using tools like Ghidra, IDA or Binary Ninja
- Product security incident response in Mobile, IOT or automotive industry
- Secure code review, analysis and vulnerability assessment
- Security testing, e.g. fuzzing and pen-testing
- Operating system security
- Mobile platform security such as Linux Android
- Embedded security on embedded firmware
- Automotive Security
- Exploit mitigation techniques
- Threat modeling
The following skills/experience will be considered a plus.
- Experience in product security incident response and working with external security researchers
- LLVM experience
- Experience in fuzzing (Custom fuzzers/harnesses, custom bug detection LLVM passes or runtime detection) to large code base for vulnerability detection
- Knowledge of hypervisors, containers, and secure execution environments
- Familiarity in the internals for Linux, Windows, Zephyr and QNX
- Familiarity of wireless communication systems and protocols (CDMA/GSM/UMTS/LTE, WLAN, Bluetooth, NFC, etc)
Soft Skills:
- Teamwork across various teams and geolocations
- Able to communicate in English, both verbal and written
Qualcomm is an equal opportunity employer. If you are an individual with a disability and need an accommodation during the application/hiring process, rest assured that Qualcomm is committed to providing an accessible process. You may e-mail disability-accomodations@qualcomm.com or call Qualcomm's toll-free number found here. Upon request, Qualcomm will provide reasonable accommodations to support individuals with disabilities to be able participate in the hiring process. Qualcomm is also committed to making our workplace accessible for individuals with disabilities. (Keep in mind that this email address is used to provide reasonable accommodations for individuals with disabilities. We will not respond here to requests for updates on applications or resume inquiries).
To all Staffing and Recruiting Agencies: Our Careers Site is only for individuals seeking a job at Qualcomm. Staffing and recruiting agencies and individuals being represented by an agency are not authorized to use this site or to submit profiles, applications or resumes, and any such submissions will be considered unsolicited. Qualcomm does not accept unsolicited resumes or applications from agencies. Please do not forward resumes to our jobs alias, Qualcomm employees or any other company location. Qualcomm is not responsible for any fees related to unsolicited resumes/applications.
EEO Employer: Qualcomm is an equal opportunity employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or any other protected classification.
Qualcomm expects its employees to abide by all applicable policies and procedures, including but not limited to security and other requirements regarding protection of Company confidential information and other confidential and/or proprietary information, to the extent those requirements are permissible under applicable law.
Pay range and Other Compensation & Benefits:
$149,600.00 - $224,400.00
The above pay scale reflects the broad, minimum to maximum, pay scale for this job code for the location for which it has been posted. Even more importantly, please note that salary is only one component of total compensation at Qualcomm. We also offer a competitive annual discretionary bonus program and opportunity for annual RSU grants (employees on sales-incentive plans are not eligible for our annual bonus). In addition, our highly competitive benefits package is designed to support your success at work, at home, and at play. Your recruiter will be happy to discuss all that Qualcomm has to offer - and you can review more details about our US benefits at this link.
If you would like more information about this role, please contact Qualcomm Careers.