Simplify Logo

Full-Time

Product Security Engineer

Programs Team

Posted on 7/16/2024

HashiCorp

HashiCorp

1,001-5,000 employees

Cloud infrastructure and security management solutions

Data & Analytics
Enterprise Software
Cybersecurity

Mid

Ontario, Canada

Category
Cybersecurity
IT & Security
Required Skills
Microsoft Azure
AWS
Go
Cryptography
Google Cloud Platform
Requirements
  • Secure development practices, and integration into broader engineering activities.
  • Modern engineering practices, processes, and tools, particularly related to the Go programming language and ecosystem.
  • Product and service architectures in modern, multi-tenant cloud environments (IaaS, SaaS, PaaS).
  • Amazon Web Services (AWS), Microsoft Azure, and/or Google Cloud Platform (GCP).
  • Security design / architecture and threat modeling.
  • Product vulnerability management lifecycle.
  • Cryptography and cryptographic libraries.
  • Secure operations practices, specifically with respect to cloud environments.
Responsibilities
  • Primarily, contribute to the development of security solutions across the product life-cycle, such as standalone security tools, “shift left” CI/CD pipeline components, security solution integrations, product security features/fixes, etc. You will be working on tooling to support other Product Security team members and the HashiCorp R&D organization more broadly.
  • Secondarily, support other Product Security teams in efforts to monitor threats and vulnerabilities impacting HashiCorp products and services; triage reported vulnerabilities, identify mitigations and assess/communicate associated risk. Identity and explore opportunities to strengthen these efforts with tooling / automation.
  • Contribute to secure architecture and design of HashiCorp products, across our cloud, self-managed, and community product portfolio.
HashiCorp

HashiCorp

View
Website

HashiCorp specializes in cloud infrastructure and security management, providing tools that help organizations automate and manage their operations across multiple cloud platforms and on-premises data centers. Their products enable businesses to efficiently set up, maintain, and secure their cloud resources while ensuring compliance with regulations. HashiCorp stands out from competitors by offering both open-source and enterprise versions of its tools, allowing a wide range of users to access their solutions. The company's goal is to help organizations optimize their cloud spending and effectively manage their infrastructure, addressing the challenges that come with the growing shift to cloud services.

Company Stage

IPO

Total Funding

$339.5M

Headquarters

San Francisco, California

Founded

2012

Growth & Insights
Headcount

6 month growth

0%

1 year growth

0%

2 year growth

0%
Simplify Jobs

Simplify's Take

What believers are saying

  • Increased demand for IaC tools boosts HashiCorp's market potential.
  • Recent investments indicate strong investor confidence in HashiCorp.
  • Transparent Sessions in Boundary enhance security, attracting enterprise clients.

What critics are saying

  • IBM's acquisition may lead to uncertainty about Terraform's open-source status.
  • UK's CMA investigation could delay IBM's acquisition of HashiCorp.
  • Developer unrest over licensing changes may impact HashiCorp's community support.

What makes HashiCorp unique

  • HashiCorp excels in multi-cloud and hybrid environment management solutions.
  • The company offers both open-source and enterprise versions of its products.
  • HashiCorp's tools like Terraform and Vault are industry standards in cloud infrastructure.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Medical, dental & vision

Life & disability insurance

Flexible spending account (FSA)

Vacation and Other Leaves

401(k)

Family Expansion Benefit

Maternity and Parental Leave

Expanded Mental Health Support

INACTIVE