Cybersecurity Engineer - Super Micro Computer, Inc.
San Jose, CA 95002
About the Job
About Supermicro:
Supermicro® is a Top Tier provider of advanced server, storage, and networking solutions for Data Center, Cloud Computing, Enterprise IT, Hadoop/ Big Data, Hyperscale, HPC and IoT/Embedded customers worldwide. We are the #5 fastest growing company among the Silicon Valley Top 50 technology firms. Our unprecedented global expansion has provided us with the opportunity to offer a large number of new positions to the technology community. We seek talented, passionate, and committed engineers, technologists, and business leaders to join us.
Job Summary:
We are looking for a Software Engineer to join our team and collectively ensure the security of websites or software application used by our clients. As a Software Engineer, you will be responsible for conduct website/application code scanning, vulnerability analysis, and penetration testing. Additionally, you will be responsible for investigating security vulnerabilities reported by customers or announced in global security incidents. You will need to respond to such security inquiries from customers in timely manner with investigation results and suggested mitigations.
Essential Duties and Responsibilities:
Includes the following essential duties and responsibilities (other duties may also be assigned):
- Conduct Vulnerability Assessments: Identify and assess vulnerabilities in computer systems, networks, and applications through various methods, including automated tools and manual testing
- Security Support: Investigate and PoC security issues reported by customers or global security incident regarding vulnerabilities and respond in timely manner
- Penetration Testing: Perform ethical hacking and simulate cyberattacks to identify and exploit vulnerabilities, emphasizing on unauthorized access, privilege escalation, and data breaches
- Security Analysis: Analyze and evaluate security risks and propose mitigations, considering industry best practices and compliance requirements.
- Report Generation: Prepare detailed and comprehensive reports outlining vulnerabilities, potential impacts, and recommendations for remediation
- Collaboration: Work closely with IT and security teams to understand the organization's infrastructure, applications, and security controls. Provide guidance on security best practices
- Stay Informed: Keep abreast of the latest cybersecurity threats, vulnerabilities, and industry trends. Continuously update skills and knowledge to adapt to evolving security landscapes
- Tool Evaluation: Assess and utilize various penetration testing tools and frameworks to enhance testing efficiency and effectiveness. Research and Development: Engage in ongoing research to develop new techniques, tools, and methodologies to enhance penetration testing capabilities and stay ahead of emerging threats.
Qualifications:
- Education: A bachelor's or master's degree in Computer Science, Information Technology, Cybersecurity, or related fields
- Any Security Certifications: CEH, OSCP, CISSP, GPEN, ECSA, or other information security-related participation certificates or course certificates
- Skills: Proficient in various operating systems (Windows, Linux, Unix, etc.), knowledge of networking protocols and technologies, programming and scripting skills, web application security testing skills, wireless network security testing skills, familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Nmap)
- Experience: 3+ yearsexperience in conducting penetration tests, understanding of security vulnerabilities and exploitation techniques, and knowledge of security best practices and standards
- Communication Skills: Ability to communicate findings effectively to technical and non-technical stakeholders and strong report writing skills to document test results and recommendations
- Ethical Standards: Adherence to a strong code of ethics and a commitment to conducting tests in a lawful and responsible manner.
Please note that this position requires regular in-office attendance. The successful candidate is expected to be present in the office during standard working hours as determined by the company. In-office collaboration and participation in team meetings, training sessions, and other on-site activities are essential aspects of this role. Candidates should consider the commuting distance and be prepared to fulfill their responsibilities in the designated office location.
Salary Range
$101,000 - $160,000
The salary offered will depend on several factors, including your location, level, education, training, specific skills, years of experience, and comparison to other employees already in this role. In addition to a comprehensive benefits package, candidates may be eligible for other forms of compensation, such as participation in bonus and equity award programs.
EEO Statement
Supermicro is an Equal Opportunity Employer and embraces diversity in our employee population. It is the policy of Supermicro to provide equal opportunity to all qualified applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or special disabled veteran, marital status, pregnancy, genetic information, or any other legally protected status.