Senior Cyber Security Engineer

Sandisk understands how people and businesses consume data and we relentlessly innovate to deliver solutions that enable today’s needs and tomorrow’s next big ideas. With a rich history of groundbreaking innovations in Flash and advanced memory technologies, our solutions have become the beating heart of the digital world we’re living in and that we have the power to shape. Sandisk meets people and businesses at the intersection of their aspirations and the moment, enabling them to keep moving and pushing possibility forward. We do this through the balance of our powerhouse manufacturing capabilities and our industry-leading portfolio of products that are recognized globally for innovation, performance and quality. Sandisk has two facilities recognized by the World Economic Forum as part of the Global Lighthouse Network for advanced 4IR innovations. These facilities were also recognized as Sustainability Lighthouses for breakthroughs in efficient operations. With our global reach, we ensure the global supply chain has access to the Flash memory it needs to keep our world moving forward. We are seeking a highly experienced Senior Cybersecurity Engineer to lead the design, assessment, and continuous improvement of our security posture, with a primary focus on protecting and hardening our external attack surface. This role requires deep technical expertise across multiple security domains, combined with the ability to architect scalable, automated solutions and proactively defend against emerging threats—including those leveraging artificial intelligence. You will operate as both a strategic architect and a hands-on engineer, partnering closely with cross-functional teams while independently driving key security initiatives. ESSENTIAL DUTIES AND RESPONSIBILITIES: Perimeter & Attack Surface Security Lead discovery, assessment, and continuous monitoring of external attack surface (domains, IP space, cloud assets, shadow IT) Design and implement controls to reduce exposure and improve resilience Conduct and oversee penetration testing activities, coordinating third parties and providing augmentation and oversight Build and mature vulnerability management programs, including prioritization and remediation workflows Security Engineering Design and implement security solutions across network, cloud, and application layers aligning with industry best practice and compliance standards Evaluate and integrate tools for threat detection, prevention, and response Define and enforce security standards, patterns, and best practices Extend attack surface discovery to include OT assets and unmanaged devices Improve unified visibility across IT, cloud, and manufacturing environments Address shadow OT / undocumented assets Automation & Scalability Identify opportunities to automate security processes (e.g., vuln triage, asset discovery, alerting, reporting) Develop scripts, pipelines, or tooling to improve efficiency and reduce manual effort Partner with engineering teams to embed security into CI/CD and operational workflows Assess and secure third-party access (vendors, OEMs, remote maintenance channels) Evaluate risks in hardware, firmware, and software supply chains Support SBOM (Software Bill of Materials) and component traceability initiatives AI & Emerging Threats Assess risks related to AI-driven threats (e.g., automated attacks, deepfakes, adversarial AI) Support design and implement defensive strategies leveraging AI/ML where appropriate Provide guidance on secure adoption and creation of guardrails for AI technologies internally Collaboration & Leadership Work closely with infrastructure, DevOps, product, and leadership teams to align on security priorities Translate technical risks into business impact for stakeholders Lead or influence security initiatives from concept through execution Mentor junior engineers and promote a strong security culture EDUCATION & EXPERIENCE Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or equivalent practical experience 5–10+ years of experience in cybersecurity engineering, architecture, or related roles Relevant certifications (e.g., CISSP, OSCP, CEH, GIAC) — valued but not required           REQUIRED QUALIFICATIONS Attack surface management and external asset discovery Penetration testing methodologies and tools Vulnerability management programs and tooling Experience securing cloud environments (AWS, Azure, or GCP) Solid scripting or programming skills (e.g., Python, Bash, Go) Experience building or implementing automation in security workflows Strong understanding of networking, systems, and application security principles Proven ability to work cross-functionally and drive initiatives independently Familiarity with frameworks such as: NIST CSF / NIST 800-82 (ICS security) ISO 27001 TECHNICAL SKILLS Experience with AI/ML in security (defensive or adversarial contexts) Familiarity with modern security tooling (EDR/XDR, SIEM, SOAR) Familiarity with commercial or open ASM tooling Familiarity with commercial OT security tools (e.g. Claroty / Nozomi / Dragos) Experience with DevSecOps and CI/CD security integration SUCCESS Clear visibility and control over the organization’s external attack surface Reduced vulnerability exposure and faster remediation cycles Increased automation leading to measurable efficiency gains Practical, forward-looking defenses against emerging AI-driven threats Strong alignment between security and business objectives Reduction in exposed assets Time-to-remediation improvements Automation coverage Improved Asset visibility growth and accuracy (IT / cloud / OT) Sandisk is committed to providing equal opportunities to all applicants and employees and will not discriminate against any applicant or employee based on their race, color, ancestry, religion (including religious dress and grooming standards), sex (including pregnancy, childbirth o