FlashBlade
With the FlashBlade product, we are building a scale-out all-flash file and object store, designed for the modern world. To really understand how our customers work with data, we are deeply immersed in AI, modern backup, log analytics with Splunk and Elastic, data pipeline with Kafka, cluster computing with Spark, and many more use cases. With the ObjectEngine product we are looking to modernize data protection by driving to a new architecture of F2F2C (Flash to Flash to Cloud)._
SHOULD YOU ACCEPT THIS CHALLENGE...
We are seeking an experienced and highly skilled Staff Software SecurityEngineer to join our dynamic team. In this role, you will lead and drive the securitystrategy for our products and applications, ensuring they meet the highest standards of securityand compliance. You will work closely with cross-functional teams as they design, implement, and maintain robust securitymeasures that protect our clients and their data. Additionally, you will play a crucial role in designing and developing security-related product features, integrating securityat every stage of the product's lifecycle.
SecurityStrategy and Leadership:
Assist in developing and implementing the overall securitystrategy for our software products and applications.
Provide technical leadership and mentorship to others on the securityengineering team.
Stay current with emerging securitythreats and industry trends to proactively address potential risks.
SecurityDesign and Architecture:
Collaborate with product managers, architects, and developers to design secure software features and architecture.
Conduct threat modeling, risk assessments, and vulnerability analysis for new and existing applications.
Define and enforce securitybest practices and standards throughout the software development lifecycle (SDLC).
Product and Application Security:
Lead efforts to identify, assess, and remediate securityvulnerabilities in our products and applications.
Implement and maintain securitytools and technologies for continuous monitoring and protection.
Perform code reviews, penetration testing, and securityaudits to ensure compliance with securityrequirements.
Development of Security-Oriented Product Features:
Drive the development of security-oriented product features, ensuring they are designed and implemented with the highest securitystandards.
Work closely with the product development team to provide securityinsights and guidance throughout the product lifecycle.
Evaluate and recommend new technologies and tools to enhance the securitycapabilities of our products.
Incident Response and Management:
Develop and maintain incident response plans and procedures.
Lead investigations and response efforts for securityincidents and breaches.
Conduct root cause analysis and implement corrective actions to prevent future incidents.
Collaboration and Communication:
Work closely with other engineering teams, including DevOps and IT, to integrate securitypractices into all aspects of the development and deployment processes.
Communicate securityrisks, incidents, and mitigation strategies to stakeholders, including executive leadership.
Provide training and awareness programs to promote a security-conscious culture within the organization.
WHAT YOU'LL NEED TO BRING TO THIS ROLE...
Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
4+ years of experience in securityengineering or a related role, with a focus on product and application security.
In-depth knowledge of securityprinciples, protocols, and best practices.
Experience with securityassessment tools, penetration testing, and vulnerability management.
Strong understanding of software development methodologies, including Agile and DevOps.
Proven experience in secure coding practices and secure software development lifecycle (SDLC).
Excellent problem-solving skills and the ability to think like an attacker.
Strong communication and leadership skills, with the ability to influence and drive securityinitiatives across the organization
You will be based in Santa Clara, CA. As this is an office-centric role, you are expected to be present in the office for 4 days a week. As outlined in Pure's Hybrid Work Policy, there will be variations over periods of time, depending on business need.
The annual base salary range is: $163,000 – $312,000. Salary ranges are determined based on role, level and location. For positions open to candidates in multiple geographical locations, the base salary range is reflective of the labor market across the applicable locations.
This role may be eligible for incentive pay and/or equity.
And because we understand the value of bringing your full and best self to work, we offer a variety of perks to manage a healthy balance, including flexible time off, wellness resources, and company-sponsored team events - check out purebenefits.com for more information.
There is no application deadline and we accept applications on an ongoing basis until the job is filled.