What are the responsibilities and job description for the Senior Principal Engineer, Product Security - Silicon Compute & Connectivity Dev position at Marvell Semiconductor, Inc.?
About Marvell
Marvell's semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, and carrier architectures, our innovative technology is enabling new possibilities.
At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead.
Your Team, Your Impact
Marvell develops silicon and software for some of the largest companies in the world in the growing datacenter/AI and enterprise markets. If there is a bit being processed, moved, secured, or stored in infrastructure equipment it is likely Marvell's products are involved.Marvell requires a Senior Principal Engineer focused on Product Security. The candidate will be responsible for Product Security for software products in Marvell and ensure Marvell products are designed, developed, and maintained with security as a priority. This individual has a broad reach across the company and with our business partners.
What You Can Expect
Architecture and influence for current and future hardware and software designs (HW/SW interface, algorithms)
Generating anddriving threat models for software components and products overall
Working with our customers to understand their security requirements in future and current products
Security Development Lifecycle (SDL) management for software,and solutions
Supportingsecurity audits and compliance (software vulnerabilities, fault injection, penetration testing)
Defining and coordinatingsupply chain security (code / artifact signing and traceability)
Working with our Vulnerability management (PSIRT) team to improve best practices related to identification and mitigation of product security vulnerabilities
What We're Looking For
Bachelor's degree in Computer Science, Electrical Engineering or related fields and 10-15 years of related professional experience or Master's degree in Computer Science, Electrical Engineering or related fields with 5-10 years of experience
Proven experience as asenior technical leaderwith strong communication skills
Deep knowledge ofproduct securityfrom bothsoftwareperspectives,hardware perspective highly preferred
Ability todrive product security requirements and processesacross multiple markets
Experience withthreat modelingacross diverse software projects
Skilled inidentifying threatsin software modules and products
Strong understanding ofencryption and authentication algorithmsin hardware and software, some examples including:AES, PQC, SHA, Caliptra; SPDM, DICE, TLS, TDISP
Experience withLinux-based systemsandembedded firmwaredevelopment
Solid understanding ofC/C and Rust
Ability tounderstand how software worksand how vulnerabilities can be introduced
Strongcommunication skillsand ability tofacilitate process changeacross teams
Familiarity withSecurity Development Lifecycle (SDL)and ability to drive its adoption
Understanding ofhardware-based root of trust, including provisioning flows and secure key management
Preferred Qualifications
Experience withproduct and supply chain vulnerability management
Background in conductingsecurity auditsand ensuringcompliancewith relevant standards
Familiarity with a range of product types, fromlarge silicon compute devicestosmall embedded cable connectivity devices.
Experience interfacing with multiple software teamsand maintaing a pulse on security across the org
Awareness ofopen-source security frameworksand customer expectations around transparency (e.g., Caliptra)
Expected Base Pay Range (USD)
168,920 - 253,000, $ per annumThe successful candidate's starting base pay will be determined based on job-related skills, experience, qualifications, work location and market conditions. The expected base pay range for this role may be modified based on market conditions.
Additional Compensation and Benefit Elements
At Marvell, we offer a total compensation package with a base, bonus and equity.Health and financial wellbeing are part of the package. That means flexible time off, 401k, plus a year-end shutdown, floating holidays, paid time off to volunteer. Have a question about our benefits packages - health or financial? Ask your recruiter during the interview process.All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.
Any applicant who requires a reasonable accommodation during the selection process should contact Marvell HR Helpdesk at TAOps@marvell.com.
Interview Integrity
As part of our commitment to fair and authentic hiring practices, we ask that candidates do not use AI tools (e.g., transcription apps, real-time answer generators like ChatGPT, CoPilot, or note-taking bots) during interviews.
Our interviews are designed to assess your personal experience, thought process, and communication skills in real-time. If a candidate uses such tools during an interview, they will be disqualified from the hiring process.
This position may require access to technology and/or software subject to U.S. export control laws and regulations, including the Export Administration Regulations (EAR). As such, applicants must be eligible to access export-controlled information as defined under applicable law. Marvell may be required to obtain export licensing approval from the U.S. Department of Commerce and/or the U.S. Department of State. Except for U.S. citizens, lawful permanent residents, or protected individuals as defined by 8 U.S.C. 1324b(a)(3), all applicants may be subject to an export license review process prior to employment.
#LI-AP1