IBM
Join to apply for the
Security Engineer
role at
IBM
At IBM Software, we transform client challenges into solutions by building AI‑powered, cloud‑native products that shape the future of business and society. Our legacy of innovation creates endless opportunities for IBMers to learn, grow, and make an impact on a global scale. Working in Software means joining a team fueled by curiosity and collaboration. You’ll work with diverse technologies, partners, and industries to design, develop, and deliver solutions that power digital transformation. With a culture that values innovation, growth, and continuous learning, IBM Software places you at the heart of IBM’s product and technology landscape.
Role and Responsibilities We are looking for a Product Security Engineer to help scale our software supply chain and application security functions, providing innovative solutions across the HashiCorp suite of industry‑leading products available as cloud, self‑managed, and community offerings. At HashiCorp, our security team ensures the security and integrity of our products throughout their lifecycle.
In This Role, Your Responsibilities Will Include
Contribute to solutions that secure the software supply chain for HashiCorp products across our cloud, self‑managed, and community product portfolio.
Monitor supply chain security threats and vulnerabilities impacting HashiCorp products and services, develop mitigations, and assess/communicate associated risks to stakeholders.
Serve as subject‑matter expert (SME) on multiple supply‑chain and application security areas (e.g., ASPM, SCA, SAST, DAST, container security).
Contribute to the development and maintenance of security solutions across the product life‑cycle, such as standalone security tools, CI/CD pipeline integrations, and vulnerability management systems.
Research emerging supply‑chain attack vectors and techniques, helping identify potential threats to HashiCorp’s products.
Collaborate with cross‑functional teams to implement security standards and participate in secure code reviews.
This Role Offers Opportunities To
Work with and learn from experienced security engineers.
Develop technical expertise across HashiCorp’s diverse product portfolio.
Build relationships with industry peers and contribute to the broader security community.
Drive initiatives that have significant impact on product security.
Preferred Education Bachelor's Degree
Required Technical And Professional Expertise
5+ years of security experience.
Experience building or maintaining security automation within CI/CD pipelines; proficiency with GitHub Advanced Security and GitHub Actions security considerations.
Ability to balance security requirements with engineering velocity.
Practical knowledge of application and infrastructure security testing methodologies and tools (SAST, DAST, SCA, Container security).
Familiarity with modern engineering practices, processes, and tools, particularly related to the Go programming language and ecosystem.
Experience with secure development practices and their integration into broader engineering activities.
Understanding of software supply chain security concepts, such as SBOM generation and vulnerability management best practices.
Experience working with and supporting product engineering teams in cloud environments.
Preferred Technical And Professional Experience
Familiarity with container security and Kubernetes or Nomad environments.
Seniority level Mid‑Senior level
Employment type Full‑time
Job function Information Technology
Industries IT Services and IT Consulting
Referrals increase your chances of interviewing at IBM by 2x
#J-18808-Ljbffr
Security Engineer
role at
IBM
At IBM Software, we transform client challenges into solutions by building AI‑powered, cloud‑native products that shape the future of business and society. Our legacy of innovation creates endless opportunities for IBMers to learn, grow, and make an impact on a global scale. Working in Software means joining a team fueled by curiosity and collaboration. You’ll work with diverse technologies, partners, and industries to design, develop, and deliver solutions that power digital transformation. With a culture that values innovation, growth, and continuous learning, IBM Software places you at the heart of IBM’s product and technology landscape.
Role and Responsibilities We are looking for a Product Security Engineer to help scale our software supply chain and application security functions, providing innovative solutions across the HashiCorp suite of industry‑leading products available as cloud, self‑managed, and community offerings. At HashiCorp, our security team ensures the security and integrity of our products throughout their lifecycle.
In This Role, Your Responsibilities Will Include
Contribute to solutions that secure the software supply chain for HashiCorp products across our cloud, self‑managed, and community product portfolio.
Monitor supply chain security threats and vulnerabilities impacting HashiCorp products and services, develop mitigations, and assess/communicate associated risks to stakeholders.
Serve as subject‑matter expert (SME) on multiple supply‑chain and application security areas (e.g., ASPM, SCA, SAST, DAST, container security).
Contribute to the development and maintenance of security solutions across the product life‑cycle, such as standalone security tools, CI/CD pipeline integrations, and vulnerability management systems.
Research emerging supply‑chain attack vectors and techniques, helping identify potential threats to HashiCorp’s products.
Collaborate with cross‑functional teams to implement security standards and participate in secure code reviews.
This Role Offers Opportunities To
Work with and learn from experienced security engineers.
Develop technical expertise across HashiCorp’s diverse product portfolio.
Build relationships with industry peers and contribute to the broader security community.
Drive initiatives that have significant impact on product security.
Preferred Education Bachelor's Degree
Required Technical And Professional Expertise
5+ years of security experience.
Experience building or maintaining security automation within CI/CD pipelines; proficiency with GitHub Advanced Security and GitHub Actions security considerations.
Ability to balance security requirements with engineering velocity.
Practical knowledge of application and infrastructure security testing methodologies and tools (SAST, DAST, SCA, Container security).
Familiarity with modern engineering practices, processes, and tools, particularly related to the Go programming language and ecosystem.
Experience with secure development practices and their integration into broader engineering activities.
Understanding of software supply chain security concepts, such as SBOM generation and vulnerability management best practices.
Experience working with and supporting product engineering teams in cloud environments.
Preferred Technical And Professional Experience
Familiarity with container security and Kubernetes or Nomad environments.
Seniority level Mid‑Senior level
Employment type Full‑time
Job function Information Technology
Industries IT Services and IT Consulting
Referrals increase your chances of interviewing at IBM by 2x
#J-18808-Ljbffr