Staff Software Engineer (Cloud Security)
Bengaluru, India (Office)
Cohesity
Cohesity gives you both data security and data management. Defend against ransomware with immutable backup, AI-based early threat detection, and rapid data recovery.Cohesity is a leader in AI-powered data security and management. Aided by an extensive ecosystem of partners, Cohesity makes it easy to secure, protect, manage, and get value from data — across the data center, edge, and cloud. Cohesity helps organizations defend against cybersecurity threats with comprehensive data security and management capabilities, including immutable backup snapshots, AI-based threat detection, monitoring for malicious behavior, and rapid recovery at scale.
We’ve been named a Leader by multiple analyst firms and have been globally recognized for Innovation, Product Strength, and Simplicity in Design.
Join us on our mission to shape the future of our industry.
About This Role:
We are actively seeking seasoned, senior trendsetters in a role as Staff Software Technical Leader, Security Products. As part of our Security Engineering team, you will be responsible for architecture, end-to-end system design from inception through product delivery and lifecycle of multiple security products in one or more of: Detection, Remediation, Prevention of any "kill-chain" at any stage. This can include research, development and delivery, partner integrations among but not limited to Malware, Ransomware, IAM, KMS, DSPM, CSPM, UEBA, SIEM/SOAR and many more.
Day-to-day role involves developing system security software service at a fast paced development environment in a hybrid cloud & on-prem deployment and continuously improving product security posture. The role will serve as a Security Specialist in cloud, container, Kubernetes security, coherence caching, control plane - data plane connectivity and associated security & hardening needs, scale-out DB & managed services, monitoring & metrics, hands-on with cloud-infra CI/CD tools, performant and efficient cloud backend development (full-stack would be a benefit), KMS, identify & access management.
You are working in lock step with cross-BU platform, cloud SaaS engineering and infrastructure teams, enabling and delivering security products in the ecosystem with monthly release cycles. Writing design specs, implementing the design, and communicating with stakeholders will be a regular part of the job. We're looking for an individual who is motivated by technology and enjoys problem-solving, mentoring, reviewing and collaborating with engineers (not as a people manager, but as their tech lead and architect).
Responsibilities
Architect, technically leads teams as a hands-on Principal to guide, mentor and deliver Cloud Security Products in SaaS distributed environments. This includes Anti-Ransomware solutions, AI/ML based attack vector analysis with solution & product design to address customer needs to ensure Data Security, Data Sovereignty.
Bring core value with current and innovative solutions for Cohesity leadership in securing customer data in hosted SaaS and enterprise environments.
Engineering, implementing and supervising security measures for the protection of Cloud Infrastructure and integrations
Perform security architecture reviews for Cloud Infrastructure for existing and new services
Conduct assessments of security controls and configuration and continuous verification with automation
Threat Modeling and Pen Testing of Cloud security Infrastructure & services
Design and implement Cloud Infrastructure Monitoring use cases.
Implement and Manage Egress and Ingress security controls Network Firewall, WAF, DDoS
Perform Security training and outreach to internal development tools.
An advocate for policy of code, security, and automation. Embracing DevSecOps towards all cloud activities
Design, develop, and implement system, container, and Cloud Security related product features (MUST HAVE)
Deep understanding of Linux Internals, Containers, and Cloud security that can be efficient at running as On-Prem software or as SaaS on public clouds
Coordinate features and deliverables across multiple teams to achieve project goals
Collaborate with cloud operations to establish KPI for different services and own end to end delivery and lifecycle management
Lead initiatives and projects. Provide technical leadership and mentoring to team members.
An advocate for policy as a code, security, and automation.
Requirements
B.S. or M.S. in Computer Science, Electrical Engineering or related experience.
At least 12+ years of experience in Information Security including 4+ years of experience in Cloud Security.
Demonstrated success and influence in the Cloud Security space with relevant experience in one or more of: AD, WAF, Firewall, Intrusion Prevention, Data Encryption and Compliance needs.
Hands-on working experience in architecting/operating solutions and security frameworks built on AWS, Azure, or Google Cloud.
Meaningful experience in high level programming languages (Java, Python, C++, Go).
Experience defining security policy, technology requirements, and control objectives.
Experience in logging, monitoring, and responding to detected incidents in the cloud environment.
Ability to translate compliance requirements into technical controls.
Strong working experience in protecting databases, networks, and compute security controls including Docker / Kubernetes architecture and security configuration.
Deep understanding of Cloud Security fundamentals (Cloud networks and Cloud-based Systems), including cryptography and the shared responsibility model
Expert knowledge of secure infrastructure architectures, application architectures, encryption, Cloud Security and broader security technologies.
An interest and desire to stay abreast of emerging security threats, vulnerabilities, and controls.
Experience in implementing Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platforms (CWPP) is a plus
Experience working in a regulated environment (SOC, ISO, PCI, DSS, HIPAA, etc.)
Hands-on development experience using Cryptography algorithms, API / User Authentication, and authorization design and implementations
Strong cloud backend development experience in one or more of: Java, Golang, C++
REST API and GRPC-based application development.
Deep understanding of Cloud Security (Cloud networks and Cloud-based Systems)
Motivated to solve complex problems and challenges.
Distributed systems design and development is plus
Strong analytical and problem-solving skills
Data Privacy Notice for Job Candidates:
For information on personal data processing, please see our Privacy Policy.
Equal Employment Opportunity Employer (EEOE)
Cohesity is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law.
If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at 1-855-9COHESITY or talent@cohesity.com for assistance.
In-Office Expectations
Cohesity employees who are within a reasonable commute (e.g. within a forty-five (45) minute average travel time) work out of our core offices 2-3 days a week of their choosing.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Automation AWS Azure C CI/CD Cloud Compliance Computer Science Cryptography CSPM DDoS DevSecOps Docker DSPM Encryption Firewalls Full stack GCP Golang HIPAA IAM Intrusion prevention Java Kubernetes Linux Malware Monitoring Pentesting Privacy Product security Python REST API SaaS SIEM SOAR SOC Threat detection Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Information Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Network Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open IT Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Security Consultant jobs
- Open Security Operations Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Information Security Architect jobs
- Open SOC-related jobs
- Open Risk assessment-related jobs
- Open Agile-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open SaaS-related jobs
- Open DevSecOps-related jobs