Senior Security Engineer - AppSec

We’re in an unbelievably exciting area of tech and are fundamentally reshaping the data storage industry. Here, you lead with innovative thinking, grow along with us, and join the smartest team in the industry.

This type of work—work that changes the world—is what the tech industry was founded on. So, if you're ready to seize the endless opportunities and leave your mark, come join us.

THE ROLE

As a Senior Security Engineer at Everpure, you will advance the scalability and maturity of application security across the enterprise by designing automated, paved-road solutions rather than acting as a traditional gatekeeper. Embedded within the Global Information Security Office (GISO), you will collaborate closely with product, platform, and engineering teams to integrate security directly into modern software development lifecycles. Your mission is to enable rapid engineering velocity while establishing consistent, robust defense-by-default standards that safeguard our global platform.

WHAT YOU'LL DO

• Own the CI/CD and GitOps security integration lifecycle, building automated, paved-road application security controls (including SAST, DAST, SCA, and secrets scanning) to eliminate manual engineering friction and ensure frictionless, secure-by-default code deployment across all Everpure product teams.
• Develop scalable automation and API-driven tooling using Python to streamline vulnerability detection, compliance reporting, and remediation tracking, directly scaling the operational capability of the GISO without impeding developer velocity.
• Establish and drive company-wide AppSec standards, baselines, and metrics in partnership with Security Architecture, translating abstract compliance guidelines into practical, uniform development baselines that measurably mature Everpure's engineering risk posture.
• Collaborate as a trusted security partner with product, platform, and DevOps teams at our Santa Clara headquarters to champion secure coding practices, support large-scale vulnerability prioritization, and architect robust protection across core applications, APIs, and microservices.

WHAT YOU BRING

• AppSec & DevSecOps Expertise: Demonstrated mastery in embedding security controls natively into modern CI/CD pipelines, Git-based workflows, and GitOps environments to automate risk detection.
• Automation & Scripting Skills: Advanced proficiency in Python or equivalent programming languages to construct custom automation, interface with web APIs, and integrate security tooling directly into developer platforms.
• Architecture & Secure Development Knowledge: Deep technical understanding of secure coding practices, modern cloud-native architectures (including microservices, APIs, and containerized workloads), and industry-standard software vulnerability frameworks (such as OWASP).
• Collaboration & Governance Capabilities: Proven ability to build consensus, drive engineering alignment, and influence the adoption of uniform security baselines across distributed engineering, product, and DevOps teams.
• Location: We are primarily an in-office environment and therefore, you will be expected to work from the Santa Clara, CA office in compliance with Everpure’s policies, unless you are on PTO, or work travel, or other approved leave.

#LI-ONSITE #LI-KQ1

WHAT YOU CAN EXPECT FROM US:

• Innovation: We celebrate those who think critically, like a challenge, and aspire to be trailblazers.
• Growth: We give you the space and support to grow along with us and to contribute to something meaningful. We have been named Fortune's Best Workplaces in Technology™, Fortune's Best Workplaces in the Bay Area™, and certified as a Great Place to Work®!
• Team: We build each other up and set aside ego for the greater good.

And because we understand the value of bringing your full and best self to work, we offer a variety of perks to manage a healthy balance, including flexible time off, wellness resources, and company-sponsored team events. Check out purebenefits.com for more information.

ACCOMMODATIONS AND ACCESSIBILITY:

Candidates with disabilities may request accommodations for all aspects of our hiring process. For more on this, contact us at TA-Ops@purestorage.com if you’re invited to an interview.

OUR COMMITMENT TO A STRONG AND INCLUSIVE TEAM:

We’re forging a future where everyone finds their rightful place and where every voice matters. Where uniqueness isn’t just accepted but embraced. That’s why we are committed to fostering the growth and development of every person, cultivating a sense of community through our Employee Resource Groups and advocating for inclusive leadership.

Everpure is proud to be an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or any other characteristic legally protected by the laws of the jurisdiction in which you are being considered for hire.

Join us and bring your best.

Bring your bold.

Pure and simple.