Principal Product Security Engineer

Principal Product Security Engineer

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Principal Product Security Engineer in India.

In this role, you will help shape the security foundation of next-generation networking products used by millions worldwide. You will work closely with engineering teams to strengthen product resilience, elevate secure development practices, and implement advanced techniques for vulnerability identification. Operating within a highly technical environment, you will play a key part in ensuring trusted, secure, scalable product experiences. This position offers the opportunity to influence engineering standards, drive innovation, and contribute directly to key security decisions across the product lifecycle.

Accountabilities:

• Your main responsibilities include:
• Acting as the product security subject-matter expert, partnering with development teams to identify, analyze, and resolve security issues.
• Driving secure coding and defensive programming practices, including automation to prevent recurring vulnerabilities.
• Monitoring and applying the latest trends in security, threat intelligence, and vulnerability research to product development.
• Using modern bug-hunting and analysis tooling to detect vulnerabilities at scale and guide remediation.
• Continuously improving secure software development processes and contributing to security best-practice adoption.

Requirements:

• To succeed in this role, you should bring:
• 10+ years of experience in application, hardware, IoT, or network device security, including pen-testing and vulnerability research.
• Proven experience implementing and scaling security tools such as SAST, OSS/SCA, dependency scanning, and secure coding workflows.
• Strong hands-on skills with fuzzing, reverse engineering, writing SAST rules, semgrep, CodeQL, or similar tooling.
• Deep knowledge of common security weaknesses and relevant mitigation strategies, including OWASP standards.
• Understanding of network security concepts and vulnerabilities related to networking devices.
• Strong analytical abilities, problem-solving capabilities, and experience collaborating with diverse technical teams.
• Excellent communication skills in English and a degree in computer science, information security, or a related field.
• Preferred: participation in CTFs or security communities, experience with firmware/software development, published CVEs, bug bounty awards, or contributions to security-focused research or open-source projects.

Benefits:

• Employees can expect:
• Competitive compensation aligned with experience and market standards.
• Hybrid work flexibility based in Bengaluru.
• Opportunities to innovate, contribute to meaningful security advancements, and influence product strategy.
• Professional development support and ongoing learning culture.
• A collaborative environment built on trust, creativity, and technical excellence.