IBM
Join to apply for the
Sr. Security Engineer
role at
IBM 3 days ago Be among the first 25 applicants Join to apply for the
Sr. Security Engineer
role at
IBM Introduction
A career in IBM Software means you'll be part of a team that transforms our customer's challenges into industry-leading solutions. We are an infinitely curious team, always seeking new possibilities, and dedicated to creating the world's leading AI-powered, cloud-native software solutions. Our renowned legacy creates endless global opportunities for our network of IBMers. We are a team of deep product experts, ensuring exceptional client experiences, with a focus on delivery, excellence, and obsession over customer outcomes. This position involves contributing to HashiCorp's offerings, now part of IBM, which empower organizations to automate and secure multi-cloud and hybrid environments. You will join a team managing the lifecycle of infrastructure and security, enhancing IBM's cloud solutions to ensure enterprises achieve efficiency, security, and scalability in their cloud journey. Introduction
A career in IBM Software means you'll be part of a team that transforms our customer's challenges into industry-leading solutions. We are an infinitely curious team, always seeking new possibilities, and dedicated to creating the world's leading AI-powered, cloud-native software solutions. Our renowned legacy creates endless global opportunities for our network of IBMers. We are a team of deep product experts, ensuring exceptional client experiences, with a focus on delivery, excellence, and obsession over customer outcomes. This position involves contributing to HashiCorp's offerings, now part of IBM, which empower organizations to automate and secure multi-cloud and hybrid environments. You will join a team managing the lifecycle of infrastructure and security, enhancing IBM's cloud solutions to ensure enterprises achieve efficiency, security, and scalability in their cloud journey.
Your Role And Responsibilities
We are looking for a senior-level Product Security Engineer to help scale our software supply chain and application security functions, providing innovative solutions across the HashiCorp suite of industry-leading products available as cloud, self-managed, and community offerings.
At HashiCorp, we're on a mission to enable organizations to provision, secure, connect, and run any infrastructure for any application. Our security team plays a critical role in this mission by ensuring the security and integrity of our products throughout their lifecycle.
Security at HashiCorp is largely a remote team. While prior experience working remotely isn't required, we are looking for team members who perform well given a high level of independence and autonomy while also collaborating effectively across engineering, product, and security teams.
In This Role, Your Responsibilities Will Include
Contribute to solutions that secure the software supply chain for HashiCorp products, across our cloud, self-managed, and community product portfolio. Monitor supply chain security threats and vulnerabilities impacting HashiCorp products and services, develop mitigations, and assess/communicate associated risks to stakeholders. Serve as subject matter expert (SME) on multiple supply chain and application security areas (e.g., ASPM, SCA, SAST, DAST, container security, etc.) Contribute to the development and maintenance of security solutions across the product life-cycle, such as standalone security tools, CI/CD pipeline integrations, and vulnerability management systems. Research emerging supply chain attack vectors and techniques, helping identify potential threats to HashiCorp's products. Collaborate with cross-functional teams to implement security standards and participate in secure code reviews.
The product security supply chain and application security team is composed of security engineers working to ensure HashiCorp delivers secure software to its customers. We provide tools and services that support product engineering teams at HashiCorp, embedding security into the development processes. We are primarily responsible for security scanning, secure code review, application security posture management, and contributing to vulnerability management across our entire product portfolio.
This Role Offers Opportunities To
Work with and learn from experienced security engineers. Develop technical expertise across HashiCorp's diverse product portfolio. Build relationships with industry peers and contribute to the broader security community. Drive initiatives that have significant impact on product security.
We're looking for a candidate with strong written and verbal communication skills, knowledge of supply chain and application security topics, who brings a pragmatic approach to security, and has the ability to empathize with engineers and product managers across the company.
Please note, as communication is a critical aspect of how we work, a cover letter is a great way to provide a sample of how you communicate. In your cover letter, describe why you're interested in working at HashiCorp, and what draws you to this role in particular.
This job can be performed from anywhere in the US.
Preferred Education
Bachelor's Degree
Required Technical And Professional Expertise
4+ years of security experience. Experience building or maintaining security automation within CI/CD pipelines; proficient with GitHub Advanced Security and GitHub Actions security considerations. Ability to balance security requirements with engineering velocity. Practical knowledge of application and infrastructure security testing methodologies and tools (SAST, DAST, SCA, Container security). Familiarity with modern engineering practices, processes, and tools, particularly related to the Go programming language and ecosystem. Experience with secure development practices and their integration into broader engineering activities. Understanding of software supply chain security concepts, such as SBOM generation and vulnerability management best practices. Experience working with and supporting product engineering teams in cloud environments.
Preferred Technical And Professional Experience
Familiarity with container security and Kubernetes or Nomad environments. Familiarity with Wiz to enable code-to-cloud security and observability.
Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Information Technology Industries IT Services and IT Consulting Referrals increase your chances of interviewing at IBM by 2x Get notified about new Senior Security Engineer jobs in
San Jose, CA . Security Researcher - Malware Reverse Engineer (Remote)
Sunnyvale, CA $80,000.00-$120,000.00 1 day ago Senior Security Engineer - Northwest region (San Jose, CA)
Senior Staff Engineer, Offensive Security (REMOTE)
Senior Staff Engineer, Offensive Security (REMOTE)
Sr. Staff Security Operations Engineer – VM & Offensive Security - REMOTE
Linux Cryptography and Security Engineer
Back-End Engineer – Security & Integrity
Staff Security Operations Engineer (Observability & Automation)
Fremont, CA $100,000.00-$105,000.00 3 weeks ago Sr. Engineer - Sensor Security Platform (Remote)
Sunnyvale, CA $135,000.00-$215,000.00 1 week ago Staff Security Operations Engineer (Observability & Automation)
San Jose, CA $140,000.00-$180,000.00 2 weeks ago Front-End Engineer – Security & Integrity
Security Compliance Content Engineer III - NG-SIEM Compliance (Remote)
Sunnyvale, CA $110,000.00-$180,000.00 3 days ago Fullstack Engineer – Security & Integrity
Sunnyvale, CA $95,000.00-$155,000.00 6 hours ago Security Certification Engineer, FIPS/CC - Mobile Devices
Mountain View, CA $158,800.00-$218,100.00 2 weeks ago Sr. Identity and Access Management (IAM) Engineer, Enterprise Identity Transformation (Remote)
Sunnyvale, CA $110,000.00-$180,000.00 2 weeks ago Insider Risk Analyst, Personnel Security (Remote)
Sunnyvale, CA $65,000.00-$110,000.00 5 days ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Sr. Security Engineer
role at
IBM 3 days ago Be among the first 25 applicants Join to apply for the
Sr. Security Engineer
role at
IBM Introduction
A career in IBM Software means you'll be part of a team that transforms our customer's challenges into industry-leading solutions. We are an infinitely curious team, always seeking new possibilities, and dedicated to creating the world's leading AI-powered, cloud-native software solutions. Our renowned legacy creates endless global opportunities for our network of IBMers. We are a team of deep product experts, ensuring exceptional client experiences, with a focus on delivery, excellence, and obsession over customer outcomes. This position involves contributing to HashiCorp's offerings, now part of IBM, which empower organizations to automate and secure multi-cloud and hybrid environments. You will join a team managing the lifecycle of infrastructure and security, enhancing IBM's cloud solutions to ensure enterprises achieve efficiency, security, and scalability in their cloud journey. Introduction
A career in IBM Software means you'll be part of a team that transforms our customer's challenges into industry-leading solutions. We are an infinitely curious team, always seeking new possibilities, and dedicated to creating the world's leading AI-powered, cloud-native software solutions. Our renowned legacy creates endless global opportunities for our network of IBMers. We are a team of deep product experts, ensuring exceptional client experiences, with a focus on delivery, excellence, and obsession over customer outcomes. This position involves contributing to HashiCorp's offerings, now part of IBM, which empower organizations to automate and secure multi-cloud and hybrid environments. You will join a team managing the lifecycle of infrastructure and security, enhancing IBM's cloud solutions to ensure enterprises achieve efficiency, security, and scalability in their cloud journey.
Your Role And Responsibilities
We are looking for a senior-level Product Security Engineer to help scale our software supply chain and application security functions, providing innovative solutions across the HashiCorp suite of industry-leading products available as cloud, self-managed, and community offerings.
At HashiCorp, we're on a mission to enable organizations to provision, secure, connect, and run any infrastructure for any application. Our security team plays a critical role in this mission by ensuring the security and integrity of our products throughout their lifecycle.
Security at HashiCorp is largely a remote team. While prior experience working remotely isn't required, we are looking for team members who perform well given a high level of independence and autonomy while also collaborating effectively across engineering, product, and security teams.
In This Role, Your Responsibilities Will Include
Contribute to solutions that secure the software supply chain for HashiCorp products, across our cloud, self-managed, and community product portfolio. Monitor supply chain security threats and vulnerabilities impacting HashiCorp products and services, develop mitigations, and assess/communicate associated risks to stakeholders. Serve as subject matter expert (SME) on multiple supply chain and application security areas (e.g., ASPM, SCA, SAST, DAST, container security, etc.) Contribute to the development and maintenance of security solutions across the product life-cycle, such as standalone security tools, CI/CD pipeline integrations, and vulnerability management systems. Research emerging supply chain attack vectors and techniques, helping identify potential threats to HashiCorp's products. Collaborate with cross-functional teams to implement security standards and participate in secure code reviews.
The product security supply chain and application security team is composed of security engineers working to ensure HashiCorp delivers secure software to its customers. We provide tools and services that support product engineering teams at HashiCorp, embedding security into the development processes. We are primarily responsible for security scanning, secure code review, application security posture management, and contributing to vulnerability management across our entire product portfolio.
This Role Offers Opportunities To
Work with and learn from experienced security engineers. Develop technical expertise across HashiCorp's diverse product portfolio. Build relationships with industry peers and contribute to the broader security community. Drive initiatives that have significant impact on product security.
We're looking for a candidate with strong written and verbal communication skills, knowledge of supply chain and application security topics, who brings a pragmatic approach to security, and has the ability to empathize with engineers and product managers across the company.
Please note, as communication is a critical aspect of how we work, a cover letter is a great way to provide a sample of how you communicate. In your cover letter, describe why you're interested in working at HashiCorp, and what draws you to this role in particular.
This job can be performed from anywhere in the US.
Preferred Education
Bachelor's Degree
Required Technical And Professional Expertise
4+ years of security experience. Experience building or maintaining security automation within CI/CD pipelines; proficient with GitHub Advanced Security and GitHub Actions security considerations. Ability to balance security requirements with engineering velocity. Practical knowledge of application and infrastructure security testing methodologies and tools (SAST, DAST, SCA, Container security). Familiarity with modern engineering practices, processes, and tools, particularly related to the Go programming language and ecosystem. Experience with secure development practices and their integration into broader engineering activities. Understanding of software supply chain security concepts, such as SBOM generation and vulnerability management best practices. Experience working with and supporting product engineering teams in cloud environments.
Preferred Technical And Professional Experience
Familiarity with container security and Kubernetes or Nomad environments. Familiarity with Wiz to enable code-to-cloud security and observability.
Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Information Technology Industries IT Services and IT Consulting Referrals increase your chances of interviewing at IBM by 2x Get notified about new Senior Security Engineer jobs in
San Jose, CA . Security Researcher - Malware Reverse Engineer (Remote)
Sunnyvale, CA $80,000.00-$120,000.00 1 day ago Senior Security Engineer - Northwest region (San Jose, CA)
Senior Staff Engineer, Offensive Security (REMOTE)
Senior Staff Engineer, Offensive Security (REMOTE)
Sr. Staff Security Operations Engineer – VM & Offensive Security - REMOTE
Linux Cryptography and Security Engineer
Back-End Engineer – Security & Integrity
Staff Security Operations Engineer (Observability & Automation)
Fremont, CA $100,000.00-$105,000.00 3 weeks ago Sr. Engineer - Sensor Security Platform (Remote)
Sunnyvale, CA $135,000.00-$215,000.00 1 week ago Staff Security Operations Engineer (Observability & Automation)
San Jose, CA $140,000.00-$180,000.00 2 weeks ago Front-End Engineer – Security & Integrity
Security Compliance Content Engineer III - NG-SIEM Compliance (Remote)
Sunnyvale, CA $110,000.00-$180,000.00 3 days ago Fullstack Engineer – Security & Integrity
Sunnyvale, CA $95,000.00-$155,000.00 6 hours ago Security Certification Engineer, FIPS/CC - Mobile Devices
Mountain View, CA $158,800.00-$218,100.00 2 weeks ago Sr. Identity and Access Management (IAM) Engineer, Enterprise Identity Transformation (Remote)
Sunnyvale, CA $110,000.00-$180,000.00 2 weeks ago Insider Risk Analyst, Personnel Security (Remote)
Sunnyvale, CA $65,000.00-$110,000.00 5 days ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr