Skip to main content

Stay protected from job fraud. When conducting a job search, you’re bombarded with outreach. Click here for tips to keep you safe from recruitment fraud.

NetApp Logo

Careers

Search jobs

Search jobs

View all

Only cities with current job openings will appear in search. Please sign up for job alerts if your city is not listed.

A group of employees working together on the same laptop

If you run toward knowledge and problem-solving, join us

Security Engineer

Bengaluru, India

Apply

Overview

At NetApp, we have a history of helping customers turn challenges into business opportunities. That’s because we bring new thinking to age-old problems, like how to use data most effectively in the most efficient possible way. As an Engineer with NetApp, you’ll have the opportunity to work with modern cloud and container orchestration technologies in a production setting. You’ll play an important role in scaling systems sustainably through automation and evolving them by pushing for changes to improve reliability and velocity.

Success profile

Ready to be an engineer at NetApp? Explore the traits that can help you thrive.

  • Analytical
  • Adaptable
  • Communicator
  • Detail-oriented
  • Quick-thinking
  • Problem solver

Responsibilities

Bengaluru, India Job category: Engineering Job ID: 130069-en_US

About NetApp

NetApp is the intelligent data infrastructure company, turning a world of disruption into opportunity for every customer. No matter the data type, workload or environment, we help our customers identify and realize new business possibilities. And it all starts with our people.

If this sounds like something you want to be part of, NetApp is the place for you. You can help bring new ideas to life, approaching each challenge with fresh eyes. Of course, you won't be doing it alone. At NetApp, we're all about asking for help when we need it, collaborating with others, and partnering across the organization - and beyond.

Job Summary

This role encompasses a broad range of security responsibilities, including advanced offensive security operations, application security reviews, secure code reviews, and implementation of the Secure Software Development Lifecycle (SSDLC). The successful candidate will simulate sophisticated attacks, conduct secure code reviews, and contribute to the development of security tools. Responsibilities also include ensuring cloud security and Kubernetes security. The ideal candidate will possess the ability to conduct offensive security operations and apply their expertise to application security. They will perform threat modeling exercises with an attacker's mindset, leveraging their experience in bug bounty programs and red teaming simulations. The candidate will implement mitigations at the code level and support the Blue Team in improving detection capabilities using SIEM tools. This role requires a unique blend of skills and knowledge across multiple security domains.

Job Requirements

•    Conduct Red Team exercises, simulating APTs in cloud, container, and AD environments.
•    Develop and execute adversary simulations based on the MITRE ATT&CK framework, focusing on assume breach scenarios.
•    Simulate attacks on software supply chains and CI/CD pipelines.
•    Perform in-depth penetration testing (both black-box and white-box) for web applications, APIs, and networks.
•    Conduct secure code reviews in collaboration with development teams to identify, exploit and implement mitigations on code level.
•    Integrate security tools and practices into the CI/CD pipeline, emphasizing DevSecOps methodologies.
•    Conduct threat modeling, design, and architectural reviews to identify potential security risks in the software development lifecycle.
•    Provide security guidance to development teams, assisting in risk mitigation and secure development practices.
•    Collaborate with the Blue Team to improve detection capabilities and test defensive measures.
•    Utilize SIEM tools for incident detection and response, providing insights to enhance monitoring and alerting mechanisms.
•    Develop and maintain custom security tools and frameworks to automate security testing and monitoring.
•    Stay informed about emerging threats, attack techniques, and security technologies.

Education

•    Bachelor’s degree in computer science, information security, or a related field (or equivalent experience).
•    At least 6 years of experience in offensive security and Application security.
•    Proven experience in offensive security, with a strong understanding of attack vectors and techniques.
•    Relevant certifications such as OSWE, OSCP, CRTO, or similar.
•    Significant contributions to security through Bug bounty programs, CVEs or recognized security research.
•    Recognized public acknowledgments in security research.
•    Experience with scripting or programming languages like Python, Go, or Ruby for developing custom attack tools/exploits.
•    Familiarity with CI/CD tools such as GitHub Actions, Jenkins, or TeamCity.
•    Knowledge of security practices of cloud computing platforms like AWS, Azure, GCP, as well as k8s.

At NetApp, we embrace a hybrid working environment designed to strengthen connection, collaboration, and culture for all employees. This means that most roles will have some level of in-office and/or in-person expectations, which will be shared during the recruitment process.

Equal Opportunity Employer:

NetApp is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all laws that prohibit employment discrimination based on age, race, color, gender, sexual orientation, gender identity, national origin, religion, disability or genetic information, pregnancy, and any protected classification.

Why NetApp?

We are all about helping customers turn challenges into business opportunity. It starts with bringing new thinking to age-old problems, like how to use data most effectively to run better - but also to innovate. We tailor our approach to the customer's unique needs with a combination of fresh thinking and proven approaches.

We enable a healthy work-life balance. Our volunteer time off program is best in class, offering employees 40 hours of paid time off each year to volunteer with their favourite organizations. We provide comprehensive benefits, including health care, life and accident plans, emotional support resources for you and your family, legal services, and financial savings programs to help you plan for your future. We support professional and personal growth through educational assistance and provide access to various discounts and perks to enhance your overall quality of life.

If you want to help us build knowledge and solve big problems, let's talk.

Submitting an application

To ensure a streamlined and fair hiring process for all candidates, our team only reviews applications submitted through our company website. This practice allows us to track, assess, and respond to applicants efficiently. Emailing our employees, recruiters, or Human Resources personnel directly will not influence your application.


Apply

Our values

Put the customer at the center. Care for each other and our communities. Think and act like owners. Build belonging every day. Embrace a growth mindset.

Benefits

Volunteer time off

40 hours of paid volunteer time each year.

Well-being

Employee Assistance Program, fitness, and mental health resources to help employees be their best.

Time away

Paid time off for vacation and to recharge.

Jobs for you

Your recently viewed jobs will appear here.

You have no saved jobs. Start browsing jobs here

Recruitment scam warning

When conducting a job search, you’re bombarded with outreach. Here are tips to keep you safe from recruitment fraud.

Stay protected from job fraud

Equal Opportunity Employer*

NetApp is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination based on age, race, color, gender, sexual orientation, gender identity, national origin, religion, disability or genetic information, pregnancy, protected veteran status and any other protected classification. We pledge to take every reasonable step to ensure that our applicants and employees are respected, treated fairly and with dignity. See the EEO poster, Know your rights poster, and NetApp EEO policy. NetApp makes reasonable accommodations, consistent with applicable laws, for religious purposes and for the known physical or mental limitations of an otherwise qualified applicant or employee with a disability, who can perform the essential job functions unless undue hardship would result.

State-specific postings/notices to applicants regarding contract compliance can be found here in English and here in Spanish, and fair employment practice information can be found here.

Reasonable accommodation

If you are an applicant with a physical or mental disability requiring an accommodation, or you require a religious accommodation for any part of our application process, please email gdib@netapp.com. Each request for reasonable accommodation will be considered on a case-by-case basis, consistent with applicable laws and regulations. Please note, this email address is only for accommodation requests; we do not accept unsolicited resumes.

Data privacy

We care about your privacy and therefore ask that you read our Applicant Privacy Policy (PDF) before you submit any personal information to us.

NetApp may use an automated employment evaluation tool or similar tool as one of several tools, actions, and/or steps to assist with NetApp’s review of candidate applications for various hiring needs. Currently, when addressing certain hiring needs, NetApp uses the Eightfold tool which can provide an initial ranking of a candidate’s skills and experience, based on information provided by the applicant in the application and/or supporting documentation, in comparison to the NetApp designated key requirements of a specific role. Additionally, the tool may be used to help review and /or rank internal employees seeking promotion or other internal mobility.

An independent audit of the Eightfold Matching Model tool can be found at https://eightfold.ai/nyc-eightfoldmatching-model.

Candidates may request an alternative selection process which will not be subject to the Eightfold matching tool or to any electronic automated employment evaluation by contacting NetApp at careers@netapp.com. To bypass the Eightfold matching tool or any electronic automated employment evaluation, you must include a resume and job ID with your email to careers@netapp.com and you must include in the subject line of your email: Data Privacy Request. Candidates who have questions or want to request additional information on the source of data, type of data, and/or collection of data related to the candidate review process should contact NetApp at careers@netapp.com

Submitting an application

To ensure a streamlined and fair hiring process for all candidates, our team only reviews applications submitted through our company website. This practice allows us to track, assess, and respond to applicants efficiently. Emailing our employees, recruiters, or Human Resources personnel directly will not influence your application.

*Applies to applicants for employment in the United States.