Product Security Engineer 5

About The Position

Requirements

• Expertise in security principles across application security, cloud security, network security, and incident response.
• Strong understanding of modern software development practices, CI/CD, and DevSecOps principles.
• Experience leading security assessments, threat modeling, and architecture reviews.
• Proven track record to work multi-functionally with engineering, product, and leadership teams.
• Strong written and verbal communication skills, with the ability to articulate sophisticated security concepts to both technical and non-technical audiences.
• Experience with regulatory compliance and security frameworks.
• Deep knowledge of security testing methodologies, attack techniques, and red teaming strategies.

Nice To Haves

• Hands-on experience with security tooling, automation, and offensive security techniques.
• Certifications such as CISSP, OSCP, and CISM are a plus.
• Experience contributing to open-source projects or publishing security articles.

Responsibilities

• Work closely with engineering leadership, product teams, and customer-facing teams, to integrate security into the software development lifecycle and support processes.
• Act as a trusted security advisor, offering mentorship on security architecture, risk management, and standard methodologies.
• Serve as a liaison between security-focused teams (AppSec, OpSec, Threat Intel, Red Teams, etc.) and product engineering teams.
• Identify, assess, and prioritize security risks across products and infrastructure.
• Define security requirements for products, services, and infrastructure while balancing security with business and engineering objectives.
• Lead security design reviews and threat modeling exercises for high-risk features and architectures.
• Lead security blocking issues and provide technical leadership during high-priority incidents.
• Coordinate forensic analysis, root cause investigations, post-incident reviews, and communications to improve security resilience.
• Plan and lead team exercises such as tabletop simulations, and adversarial attack simulations to test security defenses.
• Analyze findings from war games and translate them into actionable improvements.
• Write technical articles, research papers, and internal documentation to elevate security awareness across engineering teams.
• Present findings and recommendations to executive leadership and various engineering teams.
• Advocate for secure development standard methodologies and promote a culture of security throughout the organization.
• Help define security processes, runbooks, and policies to improve security operations and response.
• Drive the adoption of security tooling and automation to enhance security visibility and efficiency.
• Collaborate with compliance and governance teams to ensure regulatory and industry-standard alignment.

Benefits

• 401k
• health_insurance
• dental_insurance
• vision_insurance
• life_insurance
• disability_insurance
• paid_holidays
• paid_volunteer_time
• tuition_reimbursement
• professional_development
• flexible_scheduling
• employee_stock_purchase_plan
• wellness_programs