Member of Technical Staff - Product Security

    • Palo Alto, CA

Job Description

You've Captured the Flag in competitions.

You've worked hard and found the security flaws in dark corners of unknown systems.

  • Has the lack of documentation slowed you down?
  • Does missing the source code stop you?
  • Are professional-grade tools too expensive?
  • How would you like to shine some light on the subject?

VMware's Product Security Team is looking for you.

Business Summary:

As Security Engineers, we work with developers from around the global company on everything starting from design, through code and into deployment. Our role is to look for potential security issues and help with design fixes or mitigations before VMware products or services ship. We have access to all the code and documentation so we can get to the problems efficiently.

We write our own tests, automation and scripts, but we don't spend our days checking in code. We don't write code that ships as a VMware product or service. It is good to note that our team is not responsible for VMware's infrastructure or laptops or internal services. We also don't look at virus scanners or firewalls. We just like breaking things.

VMware offers challenges up and down the full stack.
  • Our own Hypervisor with the lowest level kernel code
  • Dozens of management suites
  • Mobile and IoT code
  • Modern SaaS applications using full CI/CD environments
  • AWS and non-AWS clouds
  • Industry standard security and Identity Management in our web GUIs
  • Virtualized network products enable microsegmentation in our environments to improve security

Job Role and Responsibility:

You'll join a team of experienced and highly motivated Security Engineers to break all things system, network, client, web and cloud - and then guide engineering teams to put it all back together properly.

You'll find new vulnerabilities in VMware products.

You'll analyze externally reported vulnerabilities.

You'll design vulnerability mitigations and workarounds.

Required Skills:

You have a deep interest in security and want to enhance your skills through training, mentorship and experience.

You are passionate about applying your security knowledge to working on systems management, virtualization, cloud, software defined networking and more.

You can read and find bugs in at least one coding language (Java, C/C++, Go, etc).

Preferred Skills:

You communicate clearly and write well and can explain just about anything to anyone, and you're comfortable communicating in writing and on the phone

College degree in Computer Science or similar experience

VMware is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: VMware is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at VMware are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. VMware will not tolerate discrimination or harassment based on any of these characteristics. VMware encourages applicants of all ages. VMware will provide reasonable accommodation to employees who have protected disabilities consistent with local law.

Back to top