Application Security Engineer

<h2>About the team:</h2> <p>The Information Security organization advances the overall state of security at Rubrik through purposeful initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect data and systems with appropriate security controls. Information Security also develops systems to monitor and respond to attacks against our systems, provides awareness education to teams on security best practices for data protection, and ensures data sharing relationships with third parties in order to securely protect Rubrik information.</p> <h2>About the role:</h2> <p>Rubrik is seeking an Application Security Engineer.  In this role, you will be responsible for ensuring that Rubrik's products and services are designed and implemented to the highest possible security standards.  You will partner with a variety of stakeholders across the business to achieve successful security outcomes in product and feature deliverables.</p> <h2>What you'll do:</h2> <ul> <li>Integrate security controls and practices into Rubrik’s secure SDLC and collaborate with Engineering to embed security into every phase of the development process.</li> <li>Architect the agentic scaffolding, including containment boundaries and intervention points, required to govern and scale AI agents performing machine-speed vulnerability triage, research, and remediation.</li> <li>Perform security assessments of applications, identifying vulnerabilities and weaknesses through both automated and manual testing techniques.</li> <li>Carry out detailed analysis of identified vulnerabilities to ensure high fidelity findings are provided to Engineering teams.</li> <li>Assist in identifying and implementing frictionless "shift-left" strategies to seamlessly and proactively prevent vulnerabilities earlier in the SDLC.</li> <li>Aid in the collection, management and reporting of key Application Security metrics to track progress and identify trends.</li> <li>Analyze and harden existing applications, automation, and deployment processes</li> <li>Participate in security design reviews and threat modeling of proposed products and feature releases</li> <li>Work with development teams, operations, governance, and other stakeholders to document security guidance, processes and standards for Rubrik products and services</li> </ul> <h2>Experience you'll need:</h2> <ul> <li>Bachelor’s degree required; BS or MS in Computer Science, Information Technology, or a related field</li> <li>5+ years’ experience in Application Security, with experience across SDLC activities such as threat modeling, secure code review, vulnerability managemen