Sr. Product Security Engineer
New
Y
YipitDataMarket Research
This is a remote-friendly opportunity that can sit in NYC (where our headquarter is located), one of our office hubs in Austin, Miami, Los Angeles (CA), and Cupertino (CA), or anywhere else in the US., East and Central Time ZonesFull-TimeSenior
Salary215,000 - 230,000 USD per year OTE
Apply NowOpens the employer's application page
Job Details
- Experience
- 3–6 years
- Required Skills
- GitCI/CD
Requirements
- 3–6 years of experience in security operations, vulnerability management, application security, or DevSecOps.
- Hands-on experience with vulnerability management workflows.
- Working knowledge of common scanning tools (SCA, secrets scanning, IaC, container, SAST, DAST).
- Familiarity with Git-based workflows, CI/CD systems, and cloud-native development environments.
- Experience producing security metrics, dashboards, and reports.
- Strong organizational and follow-through skills.
- Clear written and verbal communication skills.
Responsibilities
- Own the end-to-end vulnerability lifecycle: intake, triage, assignment, remediation coordination, verification, and closure.
- Enforce severity-based SLAs and follow up with engineering teams for remediation.
- Manage exception and risk acceptance workflows.
- Produce vulnerability posture reports and dashboards.
- Assist the DevSecOps Lead with implementation of baseline security controls.
- Help integrate controls into repositories, CI/CD pipelines, and deployment workflows.
- Assist with onboarding new teams to the secure pipeline.
- Maintain and socialize the Secure Software Development Lifecycle policy.
- Prepare audit-ready evidence related to vulnerability management.
View Full Description & ApplyYou'll be redirected to the employer's site
