Senior Software Engineer - Product Security
About The Position
The Product Security team is responsible for managing the security processes, policies and controls to secure Plaid’s developer and consumer facing products.The product security team is focused on areas like Application Security, Vulnerability Management, Secure Development Lifecycle, Penetration Testing and Cloud Security. We build the services and components that protect Plaid’s products. We move security "left" by engineering common libraries, modules, and workflows that make the secure path the easiest path for all Plaid engineers. Plaid is looking for a Product Security Engineer who is a builder to join our Product Security team. Unlike traditional Product security roles, this position is for a Senior software engineer who wants to solve security challenges at scale by designing and building production-grade services, libraries, and frameworks. Our goal is to make the "secure path" the only path for Plaid developers.
Requirements
- 5 + years of professional experience building and scaling production services
- Ability to architect and build software systems to meet security, privacy, usability, scalability and cost requirements.
Nice To Haves
- Experience building systems or services related to vulnerability management, data encryption, key management, secret management, user authentication, service authentication, authorization systems, and security policy enforcement.
- Experience designing distributed systems and microservices with a focus on performance and reliability.
- Familiarity with modern cloud infrastructure (AWS, Kubernetes, Terraform) and how to integrate security controls into them.
- A passion for creating tools and libraries that other engineers love to use.
- Passionate about educating others on security and privacy.
Responsibilities
- Lead, design and develop security capabilities to manage vulnerabilities lifecycle and automate workflows to reduce KTLO toil.
- Own, maintain, and build Plaid’s VM Orchestration service and build solutions to eliminate the entire vulnerability classes.
- Partner with product and engineering teams to architect and build security controls to make our products even more secure.
- Consult with product engineers to ensure Plaid services meet security standards.
- Help educate and support other engineering teams to improve security in their own products and services.
- Assist with Plaid’s incident response and security awareness programs.
- Collaborate with other security platform members and build necessary engineering solutions to meet their needs.
- Build the secure engineering foundations that secure the future of digital finance.
- Develop maintainable and secure software to enhance Plaid's security posture and create paved roads for developers for easy and default integration of security controls.
- Design, develop, and maintain security-critical services and components.
- Develop internal tooling to automate vulnerability detection, dependency management, and remediation workflows within the CI/CD pipeline.
- Replace manual security gates with engineered solutions that allow product teams to ship faster and more securely.
- Communicate effectively with managers and team members regarding project deliverables and progress.
- Design and implement technical solutions that align with the evolving needs of the business.
- Proactively identify and address security vulnerabilities in products and services.
- Actively participate in incident response and security awareness initiatives.
Benefits
- medical
- dental
- vision
- 401(k)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
