Apply on Employer Site

IBM · 2 weeks ago

Security Engineer

United States

Full-time

Remote

Senior Level

5+ years exp

IBM Software is transforming client challenges into solutions through innovative AI-powered, cloud-native products. The Product Security Engineer will be responsible for scaling software supply chain and application security functions, ensuring the security and integrity of HashiCorp's products throughout their lifecycle.

Business DevelopmentBusiness Information SystemsCRMData ManagementFoundational AISoftware

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Contribute to solutions that secure the software supply chain for HashiCorp products, across our cloud, self-managed, and community product portfolio

Monitor supply chain security threats and vulnerabilities impacting HashiCorp products and services, develop mitigations, and assess/communicate associated risks to stakeholders

Serve as subject matter expert (SME) on multiple supply chain and application security areas (e.g., ASPM, SCA, SAST, DAST, container security, etc.)

Contribute to the development and maintenance of security solutions across the product life-cycle, such as standalone security tools, CI/CD pipeline integrations, and vulnerability management systems

Research emerging supply chain attack vectors and techniques, helping identify potential threats to HashiCorp's products

Collaborate with cross-functional teams to implement security standards and participate in secure code reviews

Qualification

Security automationApplication security testingSupply chain securityCI/CD pipelinesGo programming languageVulnerability managementCommunication skillsCollaboration skills

Required

5+ years of security experience

Experience building or maintaining security automation within CI/CD pipelines; proficient with GitHub Advanced Security and GitHub Actions security considerations

Ability to balance security requirements with engineering velocity

Practical knowledge of application and infrastructure security testing methodologies and tools (SAST, DAST, SCA, Container security)

Familiarity with modern engineering practices, processes, and tools, particularly related to the Go programming language and ecosystem

Experience with secure development practices and their integration into broader engineering activities

Understanding of software supply chain security concepts, such as SBOM generation and vulnerability management best practices

Experience working with and supporting product engineering teams in cloud environments

Preferred

Bachelor's Degree

Familiarity with container security and Kubernetes or Nomad environments

Company

IBM

Glassdoor4.1

IBM is an IT technology and consulting firm providing computer hardware, software, infrastructure, and hosting services.

Founded in 1911

Armonk, New York, USA

10001+ employees

http://www.ibm.com

H1B Sponsorship

IBM has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (3032)

2024 (3301)

2023 (2160)

2022 (1809)

2021 (1157)

2020 (2669)

Funding

Current Stage

Public Company

Total Funding

unknown

2011-01-14IPO

Leadership Team

Alain Bénichou

Chief Executive Officer, IBM Greater China Group

Alex Yang

CTO and Chief Architect

Recent News

Pulse 2.0

IBM Launches Sovereign Core Software To Help Organizations Run AI Workloads Under Local Control And Compliance

2026-01-17

GlobeNewswire

Financial Risk Management Software Market to Hit USD 12.91 Billion by 2033, Driven by Regulatory Compliance and Industry Volatility | SNS Insider

2026-01-17

The Hindu

IBM introduces new software to address growing digital sovereignty imperative

2026-01-17

Company data provided by crunchbase