Senior Offensive Security Engineer - Product Security
Bengaluru, India
Applications have closed
Rubrik
Organizations rely on Rubrik for resilience against cyber attacks and operational disruptions with automation, fast recovery and easy cloud adoption.About the team
Rubrik’s mission is to secure the World’s Data.
Information Security Engineering team (a.k.a. ProdSec team) at Rubrik provides guidance to the core platforms and systems that enable product engineers to efficiently build and operate scalable and reliable applications in the cloud and also the on-prem version of the control plane. Product Security has a horizontal charter with Polaris Platform Bangalore working with Rubrik internal teams in Engineering, Legal, and Compliance.
About Role
Presently, the ProdSec team is working on security around enabling product led trials, license management & enforcement, making its cloud deployment infrastructure more efficient. The ProdSec team also owns security for the on-prem RSC (RSC-P) version and is currently working on supporting security for it on different deployments, while ensuring it scales and is performant like its cloud counterpart.
As a senior cloud engineering architect on the Information Security Engineering - Product Security team, you’ll own the fundamental security of the cloud infrastructure components that all other Rubrik Security Cloud product teams at Rubrik build upon. You’ll own product security architecture for both online and analytics/offline use cases. This role requires strong Storage expertise including Data Lakes and Cloud design and performance tuning. This is an exciting time to join as we are constantly innovating on scaling and operating our foundational services to support product growth.
What You’ll Do:
Rubrik Security Cloud Engineering Architects are self-starters, driven, and can manage themselves. We believe in giving architects responsibility, not tasks. Our goal is to motivate and challenge people to do their best work. Bottom line, if you have a limitless drive and like to win, we want to talk to you - Come make history!
Experience You’ll Need:
- Hands-On Coding in Security Engineering (5 - 10 years)
- Cloud Delivery Engineer / Architect (10 – 15 years)
- Solid knowledge of concepts of designing and developing dynamic Cloud solutions and moving parts involved in continuous integration and continuous delivery (CI/CD).
- Experience with Tooling and Automation to enable seamless automation of infrastructure provisioning and configuration.
- Pipeline Design and Architecture to improve development flow and delivery.
- Solid understanding and skill with DevOps, web services and application programming interfaces (APIs).
- Experience with Servers, Infrastructure, Platform Sizing, Infrastructure Cost Reduction
- Experience with multi-cloud governmental or large corporate environments
- Create, maintain, and troubleshooting skills for cloud infrastructure
Preferred qualifications:
- Google – Professional Cloud Architect certification
- AWS – Solution Architect – Professional certification
- Azure – MCSE: Cloud Platform and Infrastructure certification
- Experience in database design and architecture supporting large enterprise customers with high SLO and SLA requirements.
- Deep expertise in MySQL or relational database internals and diagnosing issues around storage, memory, performance and tuning. ETL experience is also preferred.
- Other skills: Containerization, Linux, Database skills, security and recovery, web services and applications programming interfaces (APIs)
About the job
- Design and deliver dynamically scalable, available, fault-tolerant, reliable, and secure cloud solutions on Azure, AWS, GCP.
- Strong understanding of Infrastructure as Code (IaC).
- Chaos engineering experience.
- Strong understanding of virtual networks and general network management functions.
- Solid knowledge of concepts of designing and developing dynamic cloud solutions.
- Solid knowledge of concepts and moving parts involved in continuous integration and delivery.
- Expert guidance to development teams regarding infrastructure.
- Interpret and provide solutions on complex technologies/architectures.
- Cloud Formation / automation / Ansible / PowerShell / DSC / Comparable Linux scripting.
- Experience equivalent to site reliability engineering, DevOps, and/or DevSecOps
- Provide strategic and support representing Design Services and our client's Cloud Strategy as a Subject Matter Expert.
- Identify and prioritize critical business functions in collaboration with organizational stakeholders.
- Build and maintain relationships across organizational teams.
- Consult with vendor product specialists/sales, independent research organizations, on-site support engineers and fellow architects and administrators on best-fit technologies to ensure compliance to department policies & standards and technology roadmap.
- Coordinate with the Enterprise Architecture team for technology validation or suggestions for alternative solutions. If necessary, initiate Solution Assessments, Infrastructure Service.
- Infrastructure provisioning and configuration.
- Document and Knowledge transfer; document pipeline architecture, design decisions, and setup instructions for future reference and onboarding of new team members.
- Conduct knowledge transfer sessions and provide training to relevant stakeholders to ensure a smooth transition and adoption of the infrastructure deployment pipeline.
- Requests, and any applicable required documentation to implement new technology.
- Advocate the use of emerging cyber security best practices, technologies, developing standards and procedures, promoting the usage of automated tools, developing strategies, and aligning practices with enterprise strategic initiatives.
- Lead the development of technical artifacts including Requirements Traceability Matrix (RTM), Detailed Technical Design, Security Architecture Plan, Services Description Document, etc.
- Produce architectural framework documents (i.e., white papers, guidance documents, best practices, technical reports, etc.).
- Leverage broad-based understanding of technology areas and end-to-end knowledge of current installations to craft architectural solutions or standards that can be applied across the enterprise.
- Define and build hypothesis around steady state behavior.
- Run experiments around real world events to define potential impact or estimate frequency.
- Tooling and Automation: Evaluate and select appropriate tools and technologies to support the infrastructure deployment pipeline. Implement and configure the chosen tools to enable seamless automation of infrastructure provisioning and configuration.
- Integrate pipelines with existing Continuous Integration/Continuous Deployment (CI/CD) systems and other relevant tools.
- Enable self-service capabilities for infrastructure provisioning and promote collaboration among development and operations teams.
- Provide support and subject matter expertise with respect to adherence to best practice security framework controls and other industry-based regulatory compliance requirements (e.g., NIST 800-37, 800-53, 800-171, 800-204, 800-207, CIS, PCI, IRS-Pub 1075, CJIS, and related).
- Assist with cloud infrastructure design and develop detailed architecture models for the client to host test, development, and production environments.
- Communicate complex technical concepts to individuals of various technical abilities.
- Provide performance analysis & troubleshooting.
- Design and test large-scale workload and data migrations.
- Provide direct support to technical and non-technical entities to define requirements and deliver solutions to meet organizational needs including new environment deployment, upgrades, performance tuning, testing and disaster recovery.
- Integrate cloud services with on-premises technologies from Microsoft, Dell, EMC, HP, Nutanix, Cohesity, Pure Storage, VMware, Cisco, and Rubrik
- Ensure we maintain high availability and durability of our databases
- Ensure our customers can backup and recover their data without any glitches
- Design, implement and maintain relational database systems for performance and reliability
- Own and evolve the data model for various Rubrik cloud product lines
- Establish best practices for internal teams to write performant SQL queries
- Tune and configure our databases as well as build tools and scripts to monitor, troubleshoot, and automate our systems
- Propose test plans, interface with external groups, developers and application owners to arrive at optimal solutions
- Perform periodic database upgrades minimizing downtime for our customers
- Design and enhance disaster recovery and backup procedures
With your technical expertise, you design, implement and improve processes, procedures and automation for all database-centric areas. You also test the systems in place and interface with external groups.
Responsibilities
- Identify customer pain-points proactively, and help improve customer experience through software enhancements, tools, documentation, guidelines, and more.
- Develop relationships with internal product teams, product managers, and key enterprise customers and engage with them to address issues and recommend best practices like query tuning, schema design, instance sizing, flag settings, extensions, and the likes. Help customers perform experiments and scale with different settings to tune (MySQL) instances for their workloads.
- Perform capacity planning, scaling strategies on production databases to support projected growth.
- Contribute code actively to improve the product and the core database observability, and to make it more secure and robust.
- Provide advisory and training to the engineering team.
- Partner and help drive great cross-functional relationships with internal leadership, stakeholders, and partners to help create highly reliable database services experience for our feature engineering teams.
Join Us in Securing the World's Data
Rubrik (NYSE: RBRK) is on a mission to secure the world’s data. With Zero Trust Data Security™, we help organizations achieve business resilience against cyberattacks, malicious insiders, and operational disruptions. Rubrik Security Cloud, powered by machine learning, secures data across enterprise, cloud, and SaaS applications. We help organizations uphold data integrity, deliver data availability that withstands adverse conditions, continuously monitor data risks and threats, and restore businesses with their data when infrastructure is attacked.
Linkedin | X (formerly Twitter) | Instagram | Rubrik.com
Diversity, Equity & Inclusion @ Rubrik
At Rubrik we are committed to building and sustaining a culture where people of all backgrounds are valued, know they belong, and believe they can succeed here.
Rubrik's goal is to hire and promote the best person for the job, no matter their background. In doing so, Rubrik is committed to correcting systemic processes and cultural norms that have prevented equal representation. This means we review our current efforts with the intent to offer fair hiring, promotion, and compensation opportunities to people from historically underrepresented communities, and strive to create a company culture where all employees feel they can bring their authentic selves to work and be successful.
Our DEI strategy focuses on three core areas of our business and culture:
-
Our Company: Build a diverse company that provides equitable access to growth and success for all employees globally.
-
Our Culture: Create an inclusive environment where authenticity thrives and people of all backgrounds feel like they belong.
-
Our Communities: Expand our commitment to diversity, equity, & inclusion within and beyond our company walls to invest in future generations of underrepresented talent and bring innovation to our clients.
Equal Opportunity Employer/Veterans/Disabled
Rubrik is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
Rubrik provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Rubrik complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact us at hr@rubrik.com if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.
EEO IS THE LAW - POSTER SUPPLEMENT
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Ansible APIs Automation AWS Azure CI/CD Cloud Compliance DevOps DevSecOps GCP Linux Machine Learning MySQL NIST NIST 800-53 Offensive security PowerShell Product security RDBMS SaaS Scripting SQL Strategy VMware Zero Trust
Perks/benefits: Career development Equity / stock options Startup environment Team events Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.