Senior Security Engineer

Senior Security Engineer

Nasuni is seeking a highly skilled Senior Security Engineer to strengthen our security engineering program. This role is pivotal in securing our infrastructure, applications, and data while enabling teams to move quickly and safely. You will work closely with software engineering, product, compliance, and other teams to design, implement, and maintain secure systems at scale. 

Key Responsibilities: 

• Serve as the primary management point of contact for product cybersecurity requirements, initiatives and escalations. 
• Lead continuous product and application security reviews combining automated and manual testing methods. 
• Design, develop, evaluate and implement security controls, tools and processes across infrastructure and applications 
• Evaluate the existing product ecosystem and propose product changes to security, product and engineering leadership. 
• Lead threat modeling, security architecture reviews, and secure code review for new and existing products. 
• Collaborate with architects, developers and product managers to secure CI/CD pipelines, automate security testing, and achieve a mission of secure design. 
• Lead internal and external vulnerability and penetration testing. 
• Manage vulnerability assessment and remediation processes across cloud, on-prem, and hybrid environments. 
• Focus on security process efficiencies, prioritizing advanced tasks to keep pace with product demand. 
• Collaborate with team members and align with security, audit and risk management leadership. 
• Mentor junior security team members and foster a security-first culture across engineering and product teams. 
• Stay informed on emerging threats, vulnerabilities, and best practices to proactively improve defenses. 
• Perform other duties as assigned. 

Required Qualifications: 

• Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or related field, or equivalent experience. 
• Seven-plus years’ experience in cybersecurity with a product and application security engineering background. 
• Five-plus years of experience with public cloud providers (AWS, Azure, GCP). 
• Experience with SAST, DAST, IAST and RASP. 
• Experience with container security, such as Docker and Kubernetes. 
• Knowledge of CI/CD platforms, such as Jenkins and CircleCI. 
• Experience building prototypes of tools and exploits, as well as conducting vulnerability and penetration tests. 
• Proficiency in software development (Java, Rust, Golang, Python, C++, Ruby, etc.) and familiarity with automation frameworks 
• Experience with security requirements for APIs. 
• Strong knowledge of common security frameworks and standards (OWASP, NIST, CIS, MITRE ATT&CK). 

Preferred Qualifications: 

• Relevant certifications such as CISSP, OSCP, AWS Security Specialty, GIAC, GWAPT, GWEB, GCSA 
• Experience in enterprise SaaS environments and multi-tenant architecture. 

About Nasuni.

Nasuni is the leading hybrid cloud storage solution that powers business growth with effortless scalability, built-in security, and fast edge performance using a unique cloud-native architecture. The Nasuni File Data Platform delivers operational excellence by consolidating NAS and backup, eliminating data silos, and making management easy and flexible without changes to apps or workflows. Its built-in security offers proactive defense and rapid recovery, lowering organization’s risk from the detrimental effects of ransomware attacks and other disasters. Synchronized access to file data everywhere ensures user productivity by supporting remote and hybrid work.

Why work at Nasuni?

As part of our commitment to your well-being, we are pleased to offer comprehensive benefits packages to employees across the US.  Benefits packages generally include:

• Best in class employee onboarding and training
• “Take What You Need” paid time off policy
• Comprehensive health, dental and vision plans
• Company-paid life and disability insurance
• 401(k) and Roth IRA retirement plan
• Generous employee referral bonuses
• Flexible remote work policy
• 10 paid holidays
• Wide array of wellbeing offerings
• Pre-tax savings accounts with company contributions
• An Employee Assistance Program to help deal with life’s difficulties and stressors
• Great team culture and social activities
• Collaborative workspaces
• Free on-site fitness centers and stocked kitchens in select office locations
• Professional development resources

To all recruitment agencies: Nasuni does not accept agency resumes. Please do not forward resumes to our job boards, Nasuni employees or any other company location. Nasuni is not responsible for any fees related to unsolicited resumes.

Nasuni is an equal opportunity employer. The equal employment opportunity policy at Nasuni protects employees and job applicants from discrimination on the bases of race, religion, color, sex (including pregnancy, gender identity, and sexual orientation), parental status, national origin, age, disability, family medical history or genetic information, political affiliation, military service, or other non-merit based factors. These protections extend to all management practices and decisions, including recruitment and hiring practices, appraisal systems, promotions, and training and career development programs.