Staff Product Security Engineer

View full description

Requirements:

• Proven experience in threat modeling and architecture reviews.
• Experience delivering critical org-wide product security initiatives.
• Application, cloud, and mobile penetration testing experience.
• 8-10 years of experience in Technical Product Security and SSDLC tooling.
• Ability to provide pragmatic security advice for web and mobile applications.
• Experience in Agile development and cloud environments such as AWS.
• Familiarity with application security testing tools and Continuous Integration processes.
• Knowledge of security protocols, threats, and secure SaaS architecture.

Responsibilities:

• Act as the tech lead for high-priority product security initiatives.
• Ensure timely delivery of impactful initiatives.
• Advise strategy and roadmap for the Product Security Program.
• Drive key initiatives like Supply Chain Security, Authentication, and Authorization improvements.
• Review product designs for security defects and conduct threat modeling.
• Work with engineers to recommend ideal security designs.
• Develop security tools and processes for development teams.
• Provide training and guidance to development teams during the SSDLC.
• Bring visibility to product vulnerabilities for prioritization and remediation.