Own Every Moment at NetApp
At NetApp, your ideas power innovation. We lead in intelligent data infrastructure—delivering unified storage, integrated data services, and solutions that help organizations unlock the full potential of their data, from AI to multicloud.
Ready to innovate and contribute to our path to $10B? Here, you'll collaborate with passionate teams, tackle real-world challenges, and see your impact in how customers transform and grow. If you're ready to bring curiosity, creativity, and drive to every moment, NetApp is where your journey begins.
NetApp is pioneering the development of StorageGRID object storage – AWS cloud compatible software powering the exponential growth in AI data lakes. As a Security engineer, this is your chance to work alongside a group of talented developers, impart your vision, and launch the latest secure cloud storage software. Your deep security expertise and strategic insight will continuously strengthen security posture, proactively mitigate current risks and deterring emerging threats.
Key Responsibilities:
-
Design, build, and deliver security features and security-by-design improvements across products and platforms.
-
Perform threat modeling for new services and major changes; ensure mitigations are implemented and validated.
-
Lead vulnerability assessments (SAST/DAST/SCA, manual review, Pen Test support) and drive remediation end-to-end.
-
Provide security architecture and design reviews for services, APIs, identity flows and other artefacts
-
Integrate security controls into CI/CD pipelines and developer workflows (guardrails, policies, secure libraries).
-
Act as a security subject-matter expert supporting incident investigations and post-incident improvements.
Additional skills:
-
Experience with authN/authZ systems (OAuth2/OIDC, SSO, JWT, RBAC/ABAC) and multi-tenant SaaS security would be plus
-
Experience with fuzzing, secure protocol design, or security testing frameworks
Additional Qualification:
-
Good exposure of AI and usage in engineering development lifecycle
-
Strong knowledge of web, API, and distributed systems security; familiarity with OWASP Top 10 and common exploit chains.
-
Experience with vulnerability management workflows (triage, prioritization, remediation, verification).
-
Proficiency in secure coding and code review in at least one major language (e.g., Ruby, C++, Go, Python, Java).
-
Practical experience integrating security into CI/CD (SAST/DAST/SCA, secrets scanning, IaC/container scanning).
A minimum of 5 years of experience is required. 5 to 7 years of experience is preferred.
At NetApp, we embrace a hybrid working environment designed to strengthen connection, collaboration, and culture for all employees. This means that most roles will have some level of in-office and/or in-person expectations, which will be shared during the recruitment process.
Equal Opportunity Employer:
NetApp is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination based on age, race, color, gender, sexual orientation, gender identity, national origin, religion, disability or genetic information, pregnancy, protected veteran status, and any other protected classification.
Why You'll Thrive at NetApp
At NetApp, you won't wait for the perfect moment—you'll make it. The early planning, the extra thought, the bold idea that turns good into great: That's how our people operate and how we continue to push the boundaries of data infrastructure.
NetApp is the trusted partner for organizations transforming data into opportunity. As the only enterprise-grade storage service natively embedded in Google Cloud, AWS, and Microsoft Azure, we empower customers to run everything from traditional workloads to enterprise AI with unmatched performance, resilience, and security.
Our culture
We celebrate mold breakers, bold thinkers, and problem solvers. We reward initiative, impact, and ownership. We provide flexibility so you can balance professional ambition with your personal life. Here, differences are not just welcomed—they drive everything we do.
If you're ready to innovate, rise to the challenge, and own every moment - make your next move your best one. now.
Submitting an application
To ensure a streamlined and fair hiring process for all candidates, our team only reviews applications submitted through our company website. This practice allows us to track, assess, and respond to applicants efficiently. Emailing our employees, recruiters, or Human Resources personnel directly will not influence your application.
