Job Description

The CORTX Solutions Engineering group within Seagate's Cloud Systems organization is tasked with realizing world-class storage solutions that combine the market-leading capabilities of Seagate hardware with our recently-announced open-source CORTX software stack.

About the role - you will:

As an Object Storage Security Lead, you will join the CORTX Solutions Engineering team within Seagate Cloud Systems to help us design and deliver object storage solutions that adhere to corporate and market-expected security best practices.   You will work with product line management to refine security-focused requirements into actionable work items to be incorporated into hardware and software system designs.   You will engage with other engineering teams to ensure your vision is being realized, and you will represent product security in various corporate forums.  You will help ensure that our open-source object storage software stack, CORTX, incorporates appropriate security hooks and settings that will enable realization of hardened object storage systems by Seagate and the open source community.

•    Plug into corporate and Lyve ecosystem security discussions by attending periodic meetings
•    Understand and contribute to corporate strategy as it relates to scale-out s3-based object storage products
•    Bring or acquire understanding of security elements of competing object stores and cloud storage providers
•    Represent security aspects/plans/challenges for the Lyve Rack solution
•    Ensure security requirements are appropriately represented in marketing requirements and design requirements
•    Help map security needs to required work
•    Coordinate and facilitate any contracted testing (e.g. penetration testing)
•    Work with QA to ensure security aspects of the product are adequately tested
•    Ensure that CORTX, either inherently or via settings/configuration it exposes, allows for CORTX-based solutions to meet required security parameters

About you:

•    Self-starter
•    Detail-oriented
•    Able to drive consensus across multiple technical teams

Your experience includes:

•    Storage system security analysis and design
•    Penetration testing
•    Cloud storage, including AWS S3
•    Key management systems (KMS)
•    Network security analysis
•    Storage security analysis
•    Firewalls
•    Linux hardening
•    Intrusion detection and prevention
•    Knowledge of industry data privacy, preservation, and protection standards (e.g. HIPPA, GDPR, FINRA, SEC 17a-4, etc.)
•    Bachelor’s degree in Computer engineering or equivalent education and 10+ years’ experience or Master’s degree in the same and 8+ years’ experience or equivalent education and experience