Product Security Response Engineer - Intern
Start Date: March 2022
The elevator pitch: Why will you enjoy this new opportunity?
The world is changing fast, and the security engineering space is changing even faster! Corporations, governments, schools, hospitals are in desperate need for digital transformation at a rapid space. VMware is driving this transformation for 350,000 customers (which includes 98% of Fortune 500). You won’t find another company that offers the breadth of innovative technology. Now imagine the opportunity to work on securing the products and services which VMware creates on cutting edge technologies. You would be exposed to the broad technology stack which you can break / hack into / identify fixes to externally reported vulnerabilities and help secure. This opportunity provides an endless possibility to learn, grow and flourish as a security response engineer.
This security response engineer role is part of the S.C.O.P.E organization, which expands to Security, Compliance, and Privacy Engineering. This organization is responsible for the complete security state of all the Products and SaaS offerings from VMware. This includes Security Architecture, Security Development Lifecycle, Offensive Security and Security Response functions.
As part of this role in the VMware Security Response Center (vSRC), you will be responsible for reproducing and validating externally reported vulnerabilities and working with our development organization to guide on fix and workarounds for the vulnerability. Also, you will have the opportunity to collaborate with, but not limited to, security architects, blue team, red team and development teams across VMware, and other security engineers in the team, who work on various areas such as, virtualization, software-defined networking, cloud security, and Kubernetes.
Success in the Role: What are the performance goals over the first 3-6 months you will work toward completing?
In addition to support from your manager you will be assigned an experienced security response engineer who will be your “buddy” and go-to-person for the internship to ensure a smooth onboarding and support during your time at VMware.
You will gain valuable experience across VMware Product and Services and learn how to both proactively and reactively guide remediation of security vulnerabilities.
You will be assigned tasks and deliverables which you will be responsible for, and you will be given the appropriate training and support to manage these deliverables.
The Work: What type of work will you be doing? What assignments, requirements, or skills will you be performing on a regular basis?
You will be executing the following tasks:
Observe and support on day-to-day activities of the team.
Assist in working with product teams to identify and mitigate security issues in VMware products and services.
Participate in developing tools such as fuzzers to look deeper into VMware Products and improve the security posture.
Participate in Product Penetration tests supporting the Security Blue Team.
Work in technologies such as systems management, virtualization, cloud and software defined networking.
Communicate effectively with internal stakeholders to explain a vulnerability, its severity and CVSSv3 score and guide with remediation.
What is leadership like for this role? What is the structure and culture of the team like?
S.C.O.P.E is headed by Ashok Banerjee, who is the Vice President based out of U.S. vSECR, which is widely known, is part of this organization. The leadership of S.C.O.P.E reporting to Ashok is based out of India, U.S, and Ireland. As part of this role, you will be joining a globally dispersed team led by Emer O’Neill, Director of the VMware Security Response Center. Emer is an experienced technical engineer and manager who joined VMware as a technical support engineer in 2007, and later went into management roles in both Global Support and Research & Development. The team is spread across the globe with some team members working remote and others in VMware Offices including Cork, IE, Palo Alto, CA and Bangalore, India.
The team culture is one based on sharing knowledge for ongoing development, building trust and participating in social events along with giving back to the community through service learning.
Where is the role located?
The role is based in Ireland with the option of working remotely. VMware has a policy to empower employees to work from where they feel most productive and healthy whether that is at home, a VMware office, or a coffee shop.
What are the perks of working at VMware as an Intern ?
You will be in a work environment that promotes your health and wellbeing through flexible working hours, EPIC 2 Days Off and other Wellness Actives.
Grow your career through various programs such as Women Connecting Women Mentorship Program, involvement in our DE&I Power of Difference Communities and a range of fun social activities and specific Intern Learning and Development Tracks.
You will have the opportunity to build your network across the EMEA region and beyond and give back to your local community with 8hrs of VMware Service Learning.
Category : University and Recent Grads
Full Time/ Part Time: Full Time
Posted Date: 2021-09-15
VMware Company Overview: At VMware, we believe that software has the power to unlock new opportunities for people and our planet. We look beyond the barriers of compromise to engineer new ways to make technologies work together seamlessly. Our cloud, mobility, and security software form a flexible, consistent digital foundation for securely delivering the apps, services and experiences that are transforming business innovation around the globe. At the core of what we do are our people who deeply value execution, passion, integrity, customers, and community. Shape what’s possible today at http://careers.vmware.com.
Equal Employment Opportunity Statement: VMware is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: VMware is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at VMware are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. VMware will not tolerate discrimination or harassment based on any of these characteristics. VMware encourages applicants of all ages. Vmware will provide reasonable accommodation to employees who have protected disabilities consistent with local law.