SonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company, ensuring our partners and their customers are never alone in the fight against cybercrime. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall provides relentless security against the most evasive cyberattacks across endless exposure points for increasingly remote, mobile and cloud-enabled users. With its own threat research center, SonicWall can quickly and economically provide purpose-built security solutions to enable any organization—enterprise, government agencies and SMBs—around the world. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.
About the Role
SonicWall is hiring a Senior Software Engineer to develop and maintain the Content Filtering Service client embedded in SonicOS — the firmware running on SonicWall firewall appliances worldwide. This module intercepts live traffic, queries the CFS rating servers in real time, and enforces URL-based content filtering policies at the packet level. This is security-critical code: a policy bug is a traffic bypass on a deployed security appliance.
The codebase is in C with a split Control Plane / Data Plane architecture, multi-blade cache synchronization, and multiple firmware version upgrade paths.
Responsibilities
- Maintain, harden, and extend the CFS client module across both the control plane and data plane.
- Own the binary UDP protocol implementation between the firewall and the CFS rating servers, ensuring correctness and compatibility across protocol versions.
- Develop and maintain complete IPv4 and IPv6 support across all code paths.
- Own the firmware upgrade and migration paths, ensuring they are atomic, failure-safe, and correctly handle all supported version transitions.
- Improve reliability of inter-blade cache synchronization on multi-blade appliances.
- Collaborate with the server-side on coordinated protocol changes.
- Document the concurrency model, upgrade invariants, and dataplane integration for long-term maintainability.
- Collaborate asynchronously with a US-based team and the India-based server team.
Requirements
- Expert-level C (not C++): disciplined manual memory management, pointer arithmetic, and systems design.
- Multi-core concurrency in C: reader-writer locks, spinlocks, atomic operations, and memory ordering.
- Kernel-level networking: deep understanding of how a packet moves through a firewall dataplane — TCP/UDP processing, flow cache, connection tracking. Userspace socket programming alone is not sufficient.
- Strong IPv4 and IPv6 across all code paths.
- Comfortable navigating and owning a large C codebase with multiple subsystems.
- Experience with network testing and debugging tools: packet capture (Wireshark/tcpdump), traffic generators, GDB.
- Good written English for remote, asynchronous collaboration.
Nice to have:
- Experience with multi-blade or multi-ASIC hardware platforms (Octeon/CVMX or similar).
- Understanding of symmetric encryption (AES-CBC, DES) at the C implementation level.
- Prior experience on a security appliance, network device, or UTM firmware codebase.
- Familiarity with TLV binary protocol design and versioning.
- Experience with C fuzz testing or sanitizers (AFL, AddressSanitizer, ThreadSanitizer).
Education & Experience
At least 8 years of related experience with a Bachelor's degree; or 6 years with a Master's degree; or a PhD with 3 years' experience; or equivalent experience preferred. Degree in Computer Science, Engineering, or related field preferred.
#LI-KB7
#LI-Hybrid
#C
#Firewall
#Networking
SonicWall is an equal opportunity employer.
We are committed to creating a diverse environment and are an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.
At SonicWall, we pride ourselves on recruiting a diverse mix of talented people and providing active security solutions in 100+ countries.
Applicant Privacy Notice
Skills Required
- Expert-level C (manual memory management, pointer arithmetic, systems design)
- Multi-core concurrency in C (reader-writer locks, spinlocks, atomic ops, memory ordering)
- Kernel-level networking (firewall dataplane packet flow, TCP/UDP processing, connection tracking)
- Strong IPv4 and IPv6 support across all code paths
- Experience navigating and owning a large C codebase with multiple subsystems
- Experience with network testing and debugging tools (Wireshark, tcpdump), traffic generators, and GDB
- Good written English for remote, asynchronous collaboration
- Education/Experience: Minimums such as 8 years with Bachelor's, 6 years with Master's, or equivalent experience
- Experience with multi-blade or multi-ASIC hardware platforms (e.g., Octeon/CVMX)
- Understanding of symmetric encryption (AES-CBC, DES) at C implementation level
- Prior experience on security appliance, network device, or UTM firmware codebase
- Familiarity with TLV binary protocol design and versioning
- Experience with C fuzz testing or sanitizers (AFL, AddressSanitizer, ThreadSanitizer)
SonicWall Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about SonicWall and has not been reviewed or approved by SonicWall.
-
Healthcare Strength — Health, dental, vision, mental-health support, and wellness programs are part of the package. Feedback suggests coverage breadth is a dependable component of total rewards.
-
Leave & Time Off Breadth — Generous PTO, paid holidays and sick time, and bereavement leave are described alongside flexible or remote options. Feedback suggests ample time away meaningfully supports balance.
-
Retirement Support — A 401(k) and core financial protections such as life and disability insurance are included. Feedback suggests these fundamentals meet standard expectations for many.
SonicWall Insights
What We Do
SonicWall has been fighting the cyber-criminal industry for over 25 years defending small, medium-size businesses and enterprises worldwide. Backed by research from the Global Response Intelligent Defense (GRID) Threat Network, our award-winning real-time breach detection and prevention solutions, coupled with the formidable resources of over 10,000 loyal channel partners around the globe, are the backbone securing more than a million business and mobile networks and their emails, applications and data. This combination of products and partners has enabled a real-time cyber defense solution tuned to the specific needs of the more than 500,000 global businesses in more than 215 countries and territories.
.jpeg)






