Synopsys

We Are:

At Synopsys, we drive the innovations that shape the way we live and connect. Our technology is central to the Era of Pervasive Intelligence, from self-driving cars to learning machines. We lead in chip design, verification, and IP integration, empowering the creation of high-performance silicon chips and software content. Join us to transform the future through continuous technological innovation.

You Are:

As an ideal candidate for the Cyber Security Engineering, Staff Engineer role, you are a seasoned professional with a deep understanding of offensive security and a passion for safeguarding systems. You thrive in dynamic environments and are adept at identifying and mitigating security vulnerabilities. Your experience spans across various offensive security disciplines, including breach attack simulations, purple team exercises, and detection engineering. You possess a strong technical acumen, with hands-on experience in exploit development, network penetration testing, and familiarity with modern security assessment frameworks. You are proficient in scripting languages like PowerShell, Python, or Bash and have a knack for developing innovative security tools and methodologies. Your ability to communicate complex technical details in a clear and concise manner sets you apart, making you a valuable asset in collaborative, cross-functional teams. With industry certifications such as OSCP or OSCE, you bring credibility and expertise to the role. You are proactive, detail-oriented, and capable of balancing multiple tasks effectively. Your commitment to continuous learning and improvement drives you to stay updated with the latest attack vectors and security trends, ensuring that Synopsys remains at the forefront of cybersecurity.

What You’ll Be Doing:

• Leading offensive security assessments to strengthen Synopsys' defense capabilities.
• Identifying security weaknesses and validating detection mechanisms.
• Providing actionable recommendations to enhance security posture.
• Collaborating with architecture and engineering teams to improve security controls.
• Developing repeatable testing frameworks and metrics-driven security improvements.
• Conducting penetration testing exercises to assess defensive capabilities.
• Evaluating the security posture of third-party integrations and partnerships.
• Creating scripts, tools, or methodologies to enhance offensive security capabilities.
• Translating red team engagement findings for technical and executive audiences.
• Conducting Capture The Flag (CTF) challenges with the blue team.

The Impact You Will Have:

• Strengthening Synopsys' overall security posture by identifying and mitigating vulnerabilities.
• Enhancing the effectiveness of our detection mechanisms and security controls.
• Driving continuous improvement in our security practices through innovative solutions.
• Contributing to the development of a robust and resilient security infrastructure.
• Ensuring the security of Synopsys' products and services, thereby protecting our customers.
• Promoting a culture of security awareness and proactive defense within the organization.

What You’ll Need:

• 5-10 years of professional experience in offensive security.
• Experience in purple team exercises, breach attack simulation, and detection engineering teamwork.
• Proficiency in developing and modifying exploits, shellcode, or exploit tools.
• Experience with Command and Control (C2) frameworks.
• Hands-on experience with network penetration testing and manipulation of wired and wireless network infrastructure.
• Deep understanding of current attack vectors, patterns, and techniques (e.g., LotL).
• Practical experience with scripting languages such as PowerShell, Python, or Bash.
• Familiarity with tools like Metasploit, Burp Suite, and Kali Linux.
• Knowledge of various cloud environments (AWS, Azure, O365).
• Industry certifications such as OSCP or OSCE.

Who You Are:

• Proactive and detail-oriented with a strong commitment to continuous learning.
• Excellent communicator, capable of explaining complex technical details clearly.
• Adept at balancing multiple tasks and managing time effectively.
• Collaborative team player with a focus on cross-functional partnerships.
• Innovative thinker with a passion for developing new security tools and methodologies.

The Team You’ll Be A Part Of:

You will be part of a dedicated and dynamic InfoSec team that focuses on strengthening Synopsys' security posture. This team collaborates closely with detection engineers, external engineering partners, and various architecture and engineering teams to continuously validate and improve our security controls. Together, you will work towards creating a secure environment for our products and services, ensuring that Synopsys remains a leader in cybersecurity innovation.

Rewards and Benefits:

We offer a comprehensive range of health, wellness, and financial benefits to cater to your needs. Our total rewards include both monetary and non-monetary offerings. Your recruiter will provide more details about the salary range and benefits during the hiring process.

Inclusion and Diversity are important to us. Synopsys considers all applicants for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, military veteran status, or disability.