Remoote.app

Work from anywhere. Start here.

JobsFree resume builderCompaniesLog in
Apply

Senior Product Security Engineer

Posted 22 days agoViewed

View full description

💎 Seniority level: Senior, Experience in software development or product security engineering, with additional full-time product or information security experience

📍 Location: United States

💸 Salary: 150000.0 - 200000.0 USD per year

🔍 Industry: IT and Security

🏢 Company: Cribl👥 251-500💰 $150,000,000 Series D over 2 years agoReal TimeBig DataInformation TechnologySoftware

⏳ Experience: Experience in software development or product security engineering, with additional full-time product or information security experience

🪄 Skills: AWSDockerPythonSoftware DevelopmentKubernetesOAuthMicroservicesCompliance

Requirements:
  • Experience in software development or product security engineering, with additional experience in information security.
  • Proven experience performing security design reviews for complex applications including distributed systems, APIs, and services.
  • Expert knowledge of information security disciplines, including web application, network, and operating systems security.
  • Fluency with OWASP Top 10 and common vulnerabilities, with the ability to define countermeasures.
  • Deep understanding of application and network protocols, cryptographic technologies, and authentication and authorization protocols.
  • Knowledge of compliance requirements for industry certifications like PCI DSS, SOC2, HIPAA, FedRAMP.
  • Direct experience supporting cloud operational models, including SaaS security architecture and microservices.
Responsibilities:
  • Evaluate results from Cribl’s Cloud Security Posture Management (CSPM) and educate engineering teams on secure AWS patterns.
  • Perform application security assessments including AWS architecture review, threat modeling, and secure code review.
  • Assist product teams to follow secure development practices, empowering them to own security within their area.
  • Consult with development and operations teams to recommend secure design patterns.
  • Perform security assessments on new and existing products to identify risks and establish baseline security requirements.
  • Establish and drive security standards to improve software and systems architecture.
Apply

Related Jobs

Apply
🔥 Senior Product Security Engineer
Posted 5 months ago

📍 United States

🧭 Full-Time

💸 150000 - 200000 USD per year

🔍 Financial Technology

  • Deep understanding of web application architecture and design principles.
  • Experience with modern software development techniques for cloud-based services; preferred languages include Python, Kotlin, Java, as well as AWS and Azure.
  • Knowledge of common security flaws as per OWASP and SANS.
  • Experience with PCI or other regulated environments.
  • Experience in threat modeling for complex distributed products.
  • Familiarity with standard authentication mechanisms like SAML and OAuth2.
  • Understanding of continuous integration and deployment processes and tools.
  • BS or equivalent in a related field; MS or equivalent preferred.

  • Partner with Affirm product teams to ensure security in all phases of product development.
  • Conduct threat modeling and architecture reviews to mitigate understood threats.
  • Review product source code for vulnerabilities and recommend secure implementations.
  • Identify opportunities for automation in processes.
  • Detect and develop solutions for emerging classes of vulnerabilities.
  • Assist teams in security-focused test cases to meet security requirements.
  • Advise on business security requirements early in product development.
  • Decompose projects into tasks, manage scope, and drive project closure.

AWSPythonSoftware DevelopmentJavaKotlinProduct DevelopmentAzure

Posted 5 months ago
Apply