Senior Principal Engineer, Product Security

About Marvell

Marvell's semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities.

At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead.

Your Team, Your Impact

What You Can Expect

• Architecture and influence for current and future hardware and software designs (HW/SW interface, algorithms)

• Generating anddriving threat models for software components and products overall

• Working with our customers to understand their security requirements in future and current products

• Security Development Lifecycle (SDL) management for software,and solutions

• Supportingsecurity audits and compliance (software vulnerabilities, fault injection, penetration testing)

• Defining and coordinatingsupply chain security (code / artifact signing and traceability)

• Working with our Vulnerability management (PSIRT) team to improve best practices related to identification and mitigation of product security vulnerabilities

What We're Looking For

• Bachelor's degree in Computer Science, Electrical Engineering or related fields and 10-15 years of related professional experience or Master's degree in Computer Science, Electrical Engineering or related fields with 5-10 years of experience

• Proven experience as a senior technical leaderwith strong communication skills

• Deep knowledge of product securityfrom both softwareperspectives,hardware perspective highly preferred

• Ability to drive product security requirements and processesacross multiple markets

• Experience with threat modelingacross diverse software projects

• Skilled in identifying threatsin software modules and products

• Strong understanding of encryption and authentication algorithmsin hardware and software, some examples including:AES, PQC, SHA, Caliptra; SPDM, DICE, TLS, TDISP

• Experience with Linux-based systemsand embedded firmwaredevelopment

• Solid understanding of C/C++ and Rust

• Ability to understand how software worksand how vulnerabilities can be introduced

• Strong communication skillsand ability to facilitate process changeacross teams

• Familiarity with Security Development Lifecycle (SDL)and ability to drive its adoption

• Understanding of hardware-based root of trust, including provisioning flows and secure key management

Preferred Qualifications

• Experience with product and supply chain vulnerability management

• Background in conducting security auditsand ensuring compliancewith relevant standards

• Familiarity with a range of product types, from large silicon compute devicesto small embedded cable connectivity devices.

• Experience interfacing with multiple software teamsand maintaing a pulse on security across the org

• Awareness of open-source security frameworksand customer expectations around transparency (e.g., Caliptra)

Expected Base Pay Range (USD)

The successful candidate's starting base pay will be determined based on job-related skills, experience, qualifications, work location and market conditions. The expected base pay range for this role may be modified based on market conditions.

Additional Compensation and Benefit Elements

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

Any applicant who requires a reasonable accommodation during the selection process should contact Marvell HR Helpdesk at TAOps@marvell.com.