Lead Product Security Engineer
Dremio
Be Part of Building the Future
Dremio is the unified lakehouse platform for self-service analytics and AI, serving hundreds of global enterprises, including Maersk, Amazon, Regeneron, NetApp, and S&P Global. Customers rely on Dremio for cloud, hybrid, and on-prem lakehouses to power their data mesh, data warehouse migration, data virtualization, and unified data access use cases. Based on open source technologies, including Apache Iceberg and Apache Arrow, Dremio provides an open lakehouse architecture enabling the fastest time to insight and platform flexibility at a fraction of the cost. Learn more at www.dremio.com.
About the role
As a Product Security Engineer you’ll be responsible for the security of the infrastructure and the code running on the Dremio systems. You will be one of the first Product Security hires and will be reporting to the Head of Security.
What you’ll be doing
- Review the security impact for major product initiatives.
- Lead projects to reduce product security risks, contribute to the architecture and design of Dremio products.
- Provide security guidance to the Engineering and Product teams.
- Identify, triage and minimize the security vulnerabilities in Dremio Products.
- Tackle modern CI/CD pipeline security automation challenges.
- Perform internal penetration tests and pour the foundations for a future red team.
What we’re looking for
- B.S. or M.S in Computer Science or a related technical field or equivalent practical experience.
- 5+ years of cybersecurity experience preferably in the product security/application security field.
- Experience on evaluating, implementing and supporting security tools and processes.
- Strong written/oral communication skills.
Bonus points if you have
- Familiarity with cloud deployments, cloud architecture, cloud security, large scale web applications and backend services, multi cloud applications.
- Agile methodology, Sprint planning.
- Curious mindset.
- Experience on SDL process
What we value
At Dremio, we hold ourselves to high standards when it comes to People, Thinking, and Action. Our Gnarlies (that's what we call our employees) communicate with clarity, drive accountability, and are respectful towards each other. We confront brutal facts and focus on results while operating with a sense of urgency and building a "flywheel". People who like to jump in and drive momentum will thrive in our #GnarlyLife.
Dremio is an equal opportunity employer supporting workforce diversity. We do not discriminate on the basis of race, religion, color, national origin, gender identity, sexual orientation, age, marital status, protected veteran status, disability status, or any other unlawful factor.
Dremio is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request accommodation due to a disability, please inform your recruiter.
Dremio has policies in place to protect the personal information that employees and applicants disclose to us. Please click here to review the privacy notice.
Important Security Notice for Candidates
At Dremio, we uphold trust and transparency as paramount values in all our interactions with customers, partners, employees, and the general public. We have been targeted by individuals creating fake domains similar to ours to scam prospects and candidates. Please note that all official communications from us will be from an @dremio.com domain. If you suspect you've been targeted by a scam, it's imperative to report the incident to your local law enforcement agencies. For more information about this type of scam, please refer to Dremio's official statement here.
Dremio is not responsible for any fees related to unsolicited resumes and will not pay fees to any third-party agency or company that does not have a signed agreement with the Company.