Senior Engineer, Product Security

• Perform security reviews and threat modeling of product features and architectures. 

• Lead and execute comprehensive penetration testing of web applications, APIs, mobile applications. 

• Provide security guidance and support to product teams throughout the software development lifecycle. 

• Maintain security tooling (SAST, DAST, WAF etc.) and develop security guidelines and standards for product development. 

• Research and evaluate new security technologies and solutions. 

• Stay up to date with the latest security trends and threats. 

• Integrate security tools into CI/CD and finetune rules to reduce false positives. 

• Write scripts to automate manual tasks. 

• Perform other duties that support the overall objective of the position. 

• Knowledge of AI Security will be a plus.  

Education Required:     

• Bachelor's degree in computer science, Engineering, or related field. 

• Or, any combination of education and experience which would provide the required qualifications for the position. 

Experience Required: 

• 5+ years of experience in product security/application security, or software engineering. 

• Experience with security tools and frameworks (e.g., OWASP, NIST etc.). 

• Experience with security testing methodologies and tools (e.g., static analysis, dynamic analysis, penetration testing, etc.). 

• Proven experience in application penetration testing 

• Good writing skills to provide clear penetration test reports and assist the developer to fix the vulnerabilities. 

Knowledge, Skills & Abilities: 

• Knowledge of: Strong knowledge of web and mobile security, cloud security, cryptography. Proficiency in security technology, frameworks, security testing methodologies and tools.  

• Skill in: Excellent communication, interpersonal, and collaboration skills. Problem solving, analytical skills.