Senior Security Engineer

HyTrust offers IT managers and administrators of virtual infrastructure a centralized, single point of control for hypervisor configuration, compliance, and access management. By combining best practices, processes, and controls of physical infrastructure security into a comprehensive solution for virtual infrastructure, HyTrust enables virtual infrastructure to achieve the same level of operational readiness as that of existing physical infrastructure.

If you’re an experienced security engineer looking for an opportunity to influence the security of the largest commercial and government networks on the planet, consider joining HyTrust, a rapidly growing cloud security leader based in Mountain View, CA.

* Develop the strategy and design a suite of security challenges that HyTrust products must meet to satisfy the high-security needs of our Fortune 500 and government customers. * Conduct penetration testing and attack surface analysis. * Build security test suites with the goal of passing 3rd-party security audits and obtaining various security certifications. * Act as a researcher (and co-author) for security-focused publications further solidifying HyTrust’s stature as security industry experts. * Participate in code reviews with developers, helping them avoid and patch security related bugs. * Consult with the HyTrust product team on security-specific functions for future product releases. * Identify the hardware and software tools necessary to maintain a rigorous security testing regime.

**Minimum Qualifications:** * BA, BS, or equivalent in a technical field of study (such as computer science, electrical engineering, or mathematics) or equivalent work experience * 6 or more years of experience designing and operating security tests for software, operating systems, and networks. * Strong security-focused knowledge of one or more of the following: Linux, Java, Networking, virtualization, vSphere, KVM, Xen. * Hands on experience with one or more virtualization platforms: vSphere, KVM, Xen, Openstack, AWS * Proficiency with Linux/*nix * Deep understanding of SQL injection, cross-site scripting, web session management, SSL/TLS, fuzz testing, static code analysis, etc. * Experience with one or more data security standards: Common Criteria, FIPS, ISO/IEC 15408, PCI, HIPAA, FISMA, etc. * Excellent verbal and written communication skills * Ability to work on multiple projects and products at the same time, develop work estimates, and coordinate schedules with your colleagues while prioritizing and working to **Desired Qualifications:** * SQL, Java * Experience in Security technologies including AAA (authentication, authorization and auditing) Services, firewalls, SSL, and PKI * Familiarity with Java GUI frameworks like Wicket, GWT, Struts, Tapestry, etc. * HTML 5, CSS, JavaScript, and XML * Experience working in an Agile/Scrum environment * OpenStack development experience * Knowledge of PCI, HIPAA, FISMA Compliance * Knowledge of LDAP or Active Directory