Now hiring

Security Engineer/Backend developer (StorageGRID) (Bangalore, Karnataka, IN) @ NetApp, Inc.

Bangalore, Karnataka, INOnsiteFull-timePosted 1 days ago

Opens on the employer's site

About this role

<div><div style="padding:10.0px 0.0px;border:1.0px solid transparent"><div style="font-size:16.0px;word-wrap:break-word"><H2 style="font-size:1.0em;margin:0.0px">Job Summary</H2> </div><div><p><span style="font-family:arial, helvetica, sans-serif">NetApp is pioneering the development of StorageGRID object storage – AWS cloud compatible software powering the exponential growth in AI data lakes. As a <strong>Security engineer,</strong> this is your chance to work alongside a group of talented developers, impart your vision, and launch the latest secure cloud storage software. Your deep security expertise and strategic insight will continuously strengthen security posture, proactively mitigate current risks and deterring emerging threats.</span></p></div></div><div style="padding:10.0px 0.0px;border:1.0px solid transparent"><div style="font-size:16.0px;word-wrap:break-word"><H2 style="font-size:1.0em;margin:0.0px">Job Requirements</H2> </div><div><p><span style="font-family:arial, helvetica, sans-serif"><strong>Key Responsibilities: </strong> </span></p> <ul> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Design, build, and deliver security features and security-by-design improvements across products and platforms. </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Perform <strong>threat modeling</strong> for new services and major changes; ensure mitigations are implemented and validated. </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Lead <strong>vulnerability assessments</strong> (SAST/DAST/SCA, manual review, Pen Test support) and drive remediation end-to-end. </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Provide security architecture and design reviews for services, APIs, identity flows and other artefacts </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Integrate security controls into CI/CD pipelines and developer workflows (guardrails, policies, secure libraries). </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Act as a security subject-matter expert supporting incident investigations and post-incident improvements. </span></li> </ul> <p><span style="font-family:arial, helvetica, sans-serif"><strong>Additional skills:</strong> </span></p> <ul> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Experience with authN/authZ systems (OAuth2/OIDC, SSO, JWT, RBAC/ABAC) and multi-tenant SaaS security would be plus </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Experience with fuzzing, secure protocol design, or security testing frameworks </span></li> </ul> <p><span style="font-family:arial, helvetica, sans-serif"><strong>Additional Qualification:</strong> </span></p> <ul> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Good exposure of AI and usage in engineering development lifecycle </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Strong knowledge of web, API, and distributed systems security; familiarity with OWASP Top 10 and common exploit chains. </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Experience with vulnerability management workflows (triage, prioritization, remediation, verification). </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Proficiency in secure coding and code review in at least one major language (e.g., Ruby, C++, Go, Python, Java). </span></li> <li style="font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif">Practical experience integrating security into CI/CD (SAST/DAST/SCA, secrets scanning, IaC/container scanning). </span></li> </ul></div></div><div style="padding:10.0px 0.0px;border:1.0px solid transparent"><div style="font-size:16.0px;word-wrap:break-word"><H2 style="font-size:1.0em;margin:0.0px">Education</H2> </div><div><p><span style="font-family:arial, helvetica, sans-serif">A minimum of 5 years of experience is required. 5 to 7 years of experience is preferred. </span></p></div></div></div>

Ready to apply?

Install the ResuMinder extension and we'll auto-fill the application in seconds — no rewriting.

Get the extension →
See how your CV scores — free