Security Engineer (application Security, Devsecops) Job in Netapp
Security Engineer (application Security, Devsecops)
- Bengaluru, Bangalore Urban, Karnataka
- Not Disclosed
- Full-time
Responsibilities
Bengaluru, Karnataka, India Job category: Engineering Job ID: 127561-en_USAbout NetApp
NetApp is the intelligent data infrastructure company, turning a world of disruption into opportunity for every customer. No matter the data type, workload or environment, we help our customers identify and realize new business possibilities. And it all starts with our people.
If this sounds like something you want to be part of, NetApp is the place for you. You can help bring new ideas to life, approaching each challenge with fresh eyes. We embrace diversity and openness because it's in our DNA. Of course, you won't be doing it alone. At NetApp, we're all about asking for help when we need it, collaborating with others, and partnering across the organization - and beyond.
"At NetApp, we fully embrace and advance a diverse, inclusive global workforce with a culture of belonging that leverages the backgrounds and perspectives of all employees, customers, partners, and communities to foster a higher performing organization."-George Kurian, CEO
Job Summary
This role involves collaborating with different teams to develop and maintain secure cloud architectures in line with best practices. It includes setting up continuous asset monitoring, administering security controls across cloud infrastructure, and implementing secure practices in development lifecycle and containerization platforms. The role also requires developing automated security tools for integration into the CI/CD pipeline, conducting regular security testing and vulnerability scanning, and assessing data flows for potential security risks. Furthermore, the role involves providing guidance to other teams, managing vulnerability resolution, and participating in incident response efforts. Understanding of secure software development practices and DevSecOps methodologies.
Job Requirements
- Experience in security engineering and DevSecOps.
- Lead and oversee all aspects of the Secure Software Development Lifecycle.
- Implement and manage security tools within the CI/CD pipeline, focusing on DevSecOps practices.
- Conduct threat modeling, design, and architectural reviews to identify potential risks.
- Support third-party penetration testing by analyzing vulnerabilities and assessing their potential impact and exploitability.
- Possess a foundational understanding of web application security.
- Demonstrate strong knowledge of cloud computing platforms like AWS, Azure, GCPand their associated security services and features.
- Experience with SAST, SCA, and DAST, with the ability to address real-world challenges in these areas.
- Understand runtime security, image scanning, network security, access control, host OS hardening, and vulnerability management in the container lifecycle.
- Knowledgeable in Kubernetes and the implementation of best practices.
- Proven expertise in using Terraform and other infrastructure as code tools, managing vulnerabilities, policies and implementing best practices.
- Handle vulnerability management for images.
- Adaptable and capable of exploring various products with a wide range of tools and pipelines.
- Familiarity with CI/CD tools such as GitHub Actions, Jenkinsor TeamCity.
- Stay informed about emerging security threats and technologies, offering recommendations for security enhancements.
- Experience in automating security controls.
- Understanding of networking and communication protocols likeTCP/IP, UDP, SSL/TLS, IPSEC, HTTP, HTTPS, BGP.
- Proficiency in scripting or programming languages like Python, Gol, Rubyfor security automation and integration.
Education
- Required 4 years of experience in the security domain.
- Bachelor's degree in computer science, Information Security, or a related field.
Equal Opportunity Employer:
NetApp is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all laws that prohibit employment discrimination based on age, race, color, gender, sexual orientation, gender identity, national origin, religion, disability or genetic information, pregnancy, and any protected classification.
Did you know...
Statistics show women apply to jobs only when they're 100% qualified. But no one is 100% qualified. We encourage you to shift the trend and apply anyway! We look forward to hearing from you.
Why NetApp?
We are all about helping customers turn challenges into business opportunity. It starts with bringing new thinking to age-old problems, like how to use data most effectively to run better - but also to innovate. We tailor our approach to the customer's unique needs with a combination of fresh thinking and proven approaches.
We enable a healthy work-life balance. Our volunteer time off program is best in class, offering employees 40 hours of paid time off each year to volunteer with their favourite organizations. We provide comprehensive benefits, including health care, life and accident plans, emotional support resources for you and your family, legal services, and financial savings programs to help you plan for your future. We support professional and personal growth through educational assistance and provide access to various discounts and perks to enhance your overall quality of life.
If you want to help us build knowledge and solve big problems, let's talk.
Qualification : Bachelor's degree in computer science, Information Security, or a related field.
Minimum 4 Years
2 - 4 Hires