Hewlett Packard Enterprise
Principal Software Engineer - Security
Full details on LinkedIn
The complete job description, requirements, and application details are available on the original posting.
About Hewlett Packard Enterprise
Hewlett Packard Enterprise (HPE) is an American multinational information technology company based in Spring, Texas. Established on November 1, 2015, as part of the separation from the original Hewlett-Packard Company, HPE focuses on providing enterprise solutions. The company serves around 55,000 organizations worldwide and is recognized as one of the leading enterprise technology firms. HPE offers a wide range of enterprise technology solutions, including servers, storage solutions, networking equipment, containerization software, and consulting services. The company specializes in digital transformation, hybrid cloud infrastructure, and AI-native solutions, helping businesses adapt to evolving IT demands. HPE's target customers include commercial enterprises, public sector organizations, and those needing advanced compute, networking, and storage solutions.
Security at Hewlett Packard Enterprise
Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.
Security Philosophy
- HPE's AppSec philosophy centers on embedding security directly into the Software Development Life Cycle (SDLC) through partnership with engineering and DevOps.
- The approach prioritizes developer enablement and automation, particularly within CI/CD pipelines.
- There is a strong emphasis on proactive risk management, including design and threat reviews, and a commitment to transparency through Board-level reporting of significant incidents.
- The philosophy also extends to emerging tech, with a focus on governing secure application architecture patterns for AI.
Security Team
HPE maintains a global security presence with a Cybersecurity Defense Center in Houston. Leadership includes a Deputy CISO (Antony Abraham) who oversees operational security. The AppSec team functions by partnering with engineering and DevOps to embed security into the SDLC. Specific reporting lines (e.g., 'reports to CISO') and exact team sizes are not publicly available. Active job postings for roles like 'Senior Application Security Engineer' and 'AppSec AI Security Architect' indicate ongoing recruitment for specialized security functions.
Key Initiatives
- Key initiatives at HPE include the operation of a Security Champions program to scale security expertise across development teams. The Product Security Response Team (PSRT) manages external vulnerability reports and collaborates with the security community.
- Technical initiatives focus on 'shifting left' by automating security scanning (SAST, DAST, SCA) in build pipelines and implementing supply chain security measures like artifact signing and SBOM generation.
- Recent focus areas include securing AI applications and digital transformation projects.
Preparing for an AppSec interview?
Get the weekly briefing 2,000+ security pros trust.