Key skills
Application SecurityProduct SecurityCloud SecurityInfrastructure SecuritySecurity EngineeringAI Coding AssistantsSecure Software Development PracticesCommon Vulnerability ClassesPythonGoJavaScriptTypeScriptJavaC++Cloud PlatformsContainerized WorkloadsCI/CD PipelinesLinux SystemsDeveloper ToolingSecurity AutomationKubernetesTerraformGitLab CIGitHub CICloud-native Security ControlsComplianceSecure Development LifecycleThreat ModelingDesign ReviewIncident AnalysisVulnerability ResearchSystems ThinkingCAIClaudeGitHubGitLabCI/CDProduct ManagementCollaboration
About this role
NVIDIA has been transforming computer graphics and accelerated computing for over 25 years, now focusing on the potential of AI to redefine computing. They are seeking a Security Engineer to enhance product and service security throughout the software development lifecycle and facilitate collaboration between security, engineering, and product management.
Responsibilities:
- Constantly improve automation, develop new tools and skills that make our secure practices easier for users to adopt and deploy
- Partner with engineering and product management from earliest design through release. This entails tracking evolving discussions, surfacing security implications, and translating them into practical mentorship
- Run security reviews across code, dependencies, containers, cloud, and CI/CD. Triage, prioritize, and drive remediation to closure
- Build automation and developer-facing tooling that make secure-by-default the easy path
- Ask sharp questions. Challenge assumptions. Surface risks that don't appear on standard checklists
- Improve secure development practices, standards, and workflows
- Communicate risk crisply to technical and non-technical audiences
- Stay ahead of emerging threats relevant to modern software and cloud
Requirements:
- BS, MS, or PhD in Computer Science, Cybersecurity, Information Security, or a related field, or equivalent experience
- 5+ years of experience in application security, product security, cloud security, infrastructure security, or related security engineering work
- Hands-on proficiency with AI coding assistants (Claude, Codex, Cursor, Codeium, Perplexity, or equivalent) in real production work, not experimentation. We'll ask how these tools have changed how you build, review, and secure code
- Proven ability to think critically, creatively, and abstractly about technical systems and contribute useful security perspectives before all details are fully defined
- Proactive, fast paced operating style. You drive outcomes; you don't wait for tickets
- Strong understanding of secure software development practices and common vulnerability classes
- Hands-on experience with at least one major programming or scripting language such as Python, Go, JavaScript, TypeScript, Java, or C++
- Familiarity with cloud platforms, containerized workloads, CI/CD pipelines, Linux systems, and modern developer tooling
- Clear communicator. Collaborates well with engineers and PMs
- Experience building security automation or developer-facing security tools
- Familiarity with Kubernetes, Terraform, GitLab/GitHub CI, or cloud-native security controls
- Experience with compliance, secure development lifecycle programs, or release security gates
- Background in threat modeling, design review, incident analysis, vulnerability research, or systems thinking
- Ability to connect technical details to broader organizational, product, or operational risk