Cyber Security Engineer

We Are:

At Synopsys, we drive the innovations that shape the way we live and connect. Our technology is central to the Era of Pervasive Intelligence, from self-driving cars to learning machines. We lead in chip design, verification, and IP integration, empowering the creation of high-performance silicon chips and software content. Join us to transform the future through continuous technological innovation.

You are a proactive and analytical Cyber Security Engineer who thrives on challenges and is passionate about safeguarding complex digital environments. With a strong background in vulnerability management and a deep understanding of enterprise security, you excel at identifying, assessing, and remediating vulnerabilities across diverse infrastructures. Collaboration is second nature to you; you engage effectively with teams across geographies and cultures, building strong partnerships to drive security initiatives forward.

Your communication skills enable you to articulate risks, propose solutions, and influence decision-makers at all levels. With a strong sense of ownership, you are comfortable working independently and taking initiative, yet you also thrive in dynamic, fast-paced environments where teamwork is key. If you are eager to make a measurable impact on the security posture of a global technology leader, Synopsys is the place for you.

We are currently hiring for our Hillsboro, Oregon office; however, we are also accepting applications from candidates interested in joining our offices located in Austin, Texas or Morrisville, North Carolina.

• Managing the end-to-end vulnerability life cycle, from initial discovery through resolution and closure.
• Leading the development, maintenance, and enhancement of vulnerability management data and reporting platforms for enterprise-wide visibility.
• Designing and implementing comprehensive reports and dashboards tailored to demonstrate assessment scope, remediation progress, and risk posture for various stakeholders.
• Conducting in-depth vulnerability assessments to identify weaknesses, recommend countermeasures, and deliver timely, actionable reports to key stakeholders.
• Driving automation initiatives to streamline vulnerability management processes and improve operational efficiency.
• Monitoring vulnerability disclosure mailing lists and threat intelligence feeds to proactively assess emerging threats relevant to Synopsys infrastructure and applications.
• Contributing to the ongoing strategic direction and maturity of Synopsys’ vulnerability management capabilities.
• Supporting compliance and risk management efforts by recommending security controls and corrective actions to mitigate identified vulnerability risks.

• Strengthening Synopsys’ security posture by proactively identifying and mitigating vulnerabilities across a global infrastructure.
• Increasing stakeholder confidence with clear, actionable, and timely communication of security risks and remediation efforts.
• Driving alignment between technical teams, risk management, and compliance through collaborative solutions and best practices.
• Reducing the organization’s exposure to evolving threats by staying ahead of the latest vulnerability disclosures and threat intelligence.
• Supporting Synopsys’ mission to deliver secure, high-performance products and services to customers worldwide.

• Bachelor’s degree in Computer Science, Information Systems, Electrical Engineering, or equivalent experience.
• 5+ years of experience designing and implementing vulnerability management programs in large, global enterprise environments.
• Strong data analytics skills with the ability to analyze large datasets and proficiency in using databases/data warehouses and visualization tools (e.g., Grafana, Power BI, Tableau, or similar).
• Extensive hands‑on experience with enterprise vulnerability scanning tools such as Rapid7 Nexpose, Qualys, Tenable Nessus, and Unified Vulnerability Management (UVM) solutions.
• Proven experience managing vulnerabilities in cloud environments, including GCP, AWS, and Azure.
• Familiarity with security testing tools (e.g., Kali/Metasploit, Burp…