Senior Software Security Engineer

Senior Software Security EngineerEquinix is the world’s digital infrastructure company, operating 240+ data centers across the globe and providing interconnections to all the key clouds and networks. Businesses need one place to simplify and bring together fragmented, complex infrastructure that spans private and public cloud environments. Our global platform allows customers to place infrastructure wherever they need it and connect it to everything they need to succeed.At Equinix, we help the world’s digital leaders scale with agility, speed the launch of digital services, deliver world-class experiences, and transform people’s lives. Our culture is based on collaboration and the growth and development of our teams.   We hire hardworking people who thrive on solving challenging problems and give them opportunities to hone new skills, and try new approaches, as we grow our product portfolio with new software and network architecture solutions. We embrace diversity in thought and contribution and are committed to providing an equitable work environment. that is foundational to our core values as a company and is vital to our success.Job SummaryAs a Software Security Engineer at Equinix, you will play a pivotal role in strengthening the security posture of our software systems and services. Your expertise will contribute to safeguarding critical data and ensuring the uninterrupted operation of our interconnected platforms. You will work closely with the product security team & digital interconnection’s in-house development teams, architects & other DevSecOps professionals to implement robust security measures, identify potential vulnerabilities, and drive security best practices throughout the software development lifecycle. This role is a technical, hands-on, engineering role for security specialists knowing Java and having experience with distributed, highly automated environments or a developer who understands security and is open to learning new things.ResponsibilitiesConduct comprehensive security assessments, including code reviews, penetration testing, SAST/DAST scanning, and threat modeling, to identify and address potential security risks in our digital interconnection software products and their microservicesManaging configurations of security tools for your product in alignment with other products and Application SecurityCollaborate with development teams to integrate security practices into the software development process, ensuring secure coding standards, design principles, and threat mitigation strategies are followed.Adopting and improving cloud and infra security controlsMonitor and analyze security events and incidents, providing timely resolution and implementing preventive measures to protect against future threatsDesign and implement authentication, authorization, and encryption mechanisms to safeguard sensitive data and ensure secure access controlActively research and keep abreast of the latest security threats, vulnerabilities, and industry best practices, and apply this knowledge to continuously improve our security strategiesParticipate in the development and enhancement of security-related tools, scripts, and processes to streamline security operations and incident response capabilitiesCollaborate with external security partners and internal stakeholders to address security requirements and enhance security awareness across the organizationProvide expertise and support for compliance assessments, ensuring adherence to industry regulations and standards related to software securityConduct security training and awareness programs for developers and other team members to promote a security-conscious culture within the organizationContribute to the development and maintenance of security policies, procedures, and guidelines that align with industry best practices and regulatory requirementsQualifications7+ years experienceBachelor's in Computer Science or Computer EngineeringProfessional IT experience in Cybersecurity, or a related fieldProven work experience as a Software Security Engineer or similar role with a focus on securing large-scale, distributed software systems including configuration of docker, K8s, service mesh, etcStrong hands-on ability to identify, report & fix vulnerable libraries/packages in Java, Spring, ReactJS, NodeJS, Go, Kotlin, Message Queue frameworks or workflow enginesHands-on experience with security tools and frameworks for code analysis, vulnerability scanning, and penetration testing in software & network systemsStrong understanding of software security principles, secure coding practices, and common security vulnerabilities (OWASP Top 10, CWE, etc.)Familiarity with cloud security best practices and technologies, such as AWS, Azure, or Google Cloud PlatformSolid knowledge of network protocols, web application security, and data protection mechanismsUnderstanding of compliance frameworks like PCI, ISO, GDPR and SOC is a plusProfessional certifications such as CISSP, CSSLP, or equivalent are a plusDemonstrated ability to collaborate effectively with cross-functional teams and communicate complex security issues to both technical and non-technical stakeholdersStrong analytical and problem-solving skills with a keen eye for detailPassion for staying up to date with the latest security trends and technologies to proactively address emerging threatsEquinix is committed to ensuring that our employment process is open to all individuals, including those with a disability. If you are a qualified candidate and need assistance or an accommodation, please let us know by completing this form.Equinix is an Equal Employment Opportunity and, in the U.S., an Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to unlawful consideration of race, color, religion, creed, national or ethnic origin, ancestry, place of birth, citizenship, sex, pregnancy / childbirth or related medical conditions, sexual orientation, gender identity or expression, marital or domestic partnership status, age, veteran or military status, physical or mental disability, medical condition, genetic information, political / organizational affiliation, status as a victim or family member of a victim of crime or abuse, or any other status protected by applicable law.The targeted pay range for this position in the following location is / locations are:San Francisco, CA / Bay Area: $143,000 to $235,000California (Non-SF/Bay Area), Connecticut, Maryland, New York, New Jersey, Washington state: $137,000 to $225,000Colorado, Nevada, Rhode Island: $124,000 to $204,000Our pay ranges reflect the minimum and maximum target for new hire pay for the full-time position determined by role, level, and location. Individual pay is based on additional factors including job-related skills, experience, and relevant education and/or training.This position may be offered in other locations. Your recruiter can share more about the specific pay range for your preferred location during the hiring process.The targeted pay range listed reflects the base pay only and does not include bonus, equity, or benefits. Employees are eligible for bonus, and equity may be offered depending on the position.As an employee, you become important to Equinix’s success. Details about our company benefits can be found at the following link:USA Benefits eBookEquinix is committed to ensuring that our employment process is open to all individuals, including those with a disability.  If you are a qualified candidate and need assistance or an accommodation, please let us know by completing this form.