Senior Staff Product Security Engineer

View full description

Requirements:

• Minimum of 5 years of experience in product security or a related field.
• Strong understanding of security principles, vulnerabilities, and attack vectors.
• Proven experience in conducting threat modeling and risk assessments.
• Experience working with SAST, SCA, DAST, IAST, and IaC tools.
• Experience with secure coding practices and security testing methodologies.
• Experience in incident response and remediation processes.
• Excellent communication and collaboration skills.
• Ability to work independently and as part of a team.
• Strong analytical and problem-solving skills.
• Passion for security and a desire to make products secure.
• Experience in cloud security and containerization technologies.
• Agile development environment experience.
• Security certifications like CISSP, CISA, or CEH.

Responsibilities:

• Identify potential security threats and vulnerabilities in products, applications, and infrastructure through threat modeling and risk assessment.
• Review and contribute to the design of secure systems considering technical and business requirements.
• Conduct thorough code reviews and implement security testing methodologies to identify and address software vulnerabilities.
• Lead the investigation and response to security incidents, including vulnerability patching and forensics.
• Develop and implement security awareness programs for stakeholders.
• Continuously research and stay updated on emerging security vulnerabilities and best practices.
• Collaborate with cross-functional teams to communicate security risks and solutions effectively.
• Contribute to the development of security policies and procedures.
• Develop and implement security automation tools.