Career Opportunities

Success Starts Here

As a leading global supplier of wafer fabrication equipment and services to the semiconductor industry, Lam Research develops innovative solutions that help our customers build smaller, faster, and more power-efficient devices.

We are a company comprised of people who work hard, deliver outstanding results and maintain a sense of humor during even the most challenging times. Our success results from our employees' diverse technical and business expertise, which fuels close collaboration and ongoing innovation. We know that our dynamic, global team of exceptional employees is essential to our continued growth.

Join the Lam Research team, where you can play a vital role in the future of electronics and write your own success story.

Product Security Lead

Date: Nov 4, 2020

Location: Fremont, CA, US, 94538

Req ID: 147672

Apply now

Apply for Job

About Lam….

 

Together we move the Atoms that move the World:

Imagine working on the front lines of innovation! As one of the semiconductor industry's leading suppliers of wafer fabrication equipment and services, our technology depends on finding and hiring the best and the brightest employees. We know that our dynamic, global team of exceptional employees is essential to our continued growth.

 

Lam Research - where successful people want to work:

We are a company comprised of people who work hard, deliver outstanding results and maintain a sense of humor during even the most challenging times. This is truly a rare opportunity. Lam Research is a market leader where our core values are not just words on the back of your badge. Given the criticality of this role to Lam Research's success, this philosophy starts with you.

Job Responsibilities

This technical role will orchestrate and integrate security processes and technologies (as needed) into the development CI/CD pipeline around SDLC of Lam software products.  The role supports enterprise application security development by guiding them through secured SDLC modeling.  This person must have in-depth knowledge of OWASP top 10 and other similar frameworks to lead a team of product security analysts. 

  • Design and guide the implementation of secure software development life cycle practices including code review, static and dynamic code analysis, secured GIT/CVS/SVN, peer review, and vulnerability assessment.
  • Develop DevSecOps capabilities including identifying security scanning tools (SAST, DAST, IAST, SCA) to be integrated into scrum processes
  • Guide and evangelize the organization in establishing end to end strong secure SDLC/DevOps policies and standards to foster security of CI/CD pipeline
  • Strong experience working with Agile framework
  • Strong experience working with Static/Dynamic/Interactive Application Security Tools and Run-time Application Security Protection tools
  • Hands on experience working with tools (Jenkins/Bitbucket/Artifactory) that goes into CI/CD pipeline
  • Strong experience working in Azure cloud environment, utilizing Microsoft DevOps tools to architect secured coding to protect sensitive data
  • Research, evaluate and implement new security prototypes to meet an ever-evolving security risk posture
  • Demonstrate a passion for engineering and a proven track record of delivering great software
  • Ability to drive product and program conversations to negotiate tradeoffs between tactical and strategic goals.
  • Experience with security activities throughout the software development lifecycle – design reviews, threat modeling, fuzzing, code reviews, tooling, penetration testing.
Minimum Qualification
  • B. S. / M. S. in Computer Science or related field
  • 7+ years of experience in product security
  • 3+ years in offensive security – experience in demonstrating real world offensive attack code/malware
  • 5+ years SAST, DAST, IAST, RASP, SCA
  • 5+ years application security vulnerability
  • Must be proficient in at least one computer language
  • Must be a self-starter, problem solver who utilizes critical thinking
  • Excellent oral and written communication  
Preferred Qualification
  • Act as the security business relationship manager for Engineering teams to facilitate application security practices.
  • Understand and implement a FIPS 140-2 level framework
  • Experience with BSIMM framework
  • Experience with bug bounty programs

 

#LI-MG1

IND123

GLD2017

More About Us ….

 

Our work is everywhere you look – even if you can’t actually see it. Lam Research goes deeper than software or chips to the heart of the process that enables chip creation. So if you want to help power the components that empower everything, join us.

 

All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Apply now

Apply for Job