Product Security Engineer - San Jose, Costa Rica

Datasite is where deals are made. We provide the data rooms and SaaS technology used in M&A and other high-value transactions, to deliver projects in more than 170 countries. Carrying that success into the future is all about you. Your useful skills, your unusual experience, your unique ideas. Everyone here brings something unexpected. What’s yours? Invest your talents in us, and we’ll return the compliment.

Job Description:

As a Product Security Engineer, leverage your expertise in identifying and mitigating security vulnerabilities, collaborating with cross-functional teams, and implementing robust security measures. With a strong foundation in web application security, authentication technologies, and development skills, you'll ensure our products remain secure and resilient against emerging threats. If you're passionate about security and thrive in a dynamic environment, this is the perfect opportunity to make a significant impact!

Duties and Responsibilities

• Implement and maintain product security capabilities into the Secure SDLC.
• Define baseline requirements and build integrations into the CI/CD to enable detection and prevention of misconfigurations and vulnerabilities.
• Perform code reviews focused on potential security risks and collaborate with engineering to remediate.
• Support the growth of the Product Security program to include establishing security pillars targeting key focus areas within the product lifecycle.
• Develop automation to scale security capabilities integrated into Datasite processes.
• Define security best practices relevant to our technology stack.
• Support security incident response processes for the Security Operations team.

Qualifications:

Education

• Required: Bachelor’s Degree in Computer Science, Cybersecurity, or similar technical degree.
• Highly Preferred: Certifications relevant to product security or software development. (i.e.. CSSLP, OSWE, CKS)

Experience

• Required: 2+ years in software development or product security
• Strong understanding of core software security principles and OWASP Top 10.
• Experience identifying and mitigating security vulnerabilities.
• Familiarity with application security tools such as web proxies, or fuzzers.
• Proficient in programming languages such as Java, JavaScript, and Python.
• Understanding of cloud principles and experience working with a major cloud provider.
• Familiarity with DevOps practices, CI/CD and containerization.
• Experience with Microservices architecture and MVC design pattern.
• Experience performing code reviews, identifying software bugs or security risks.
• Knowledge of networking principles and web protocols.
• Understanding of Agile methodologies and experience working with Agile teams.
• Experience collaborating as a team player in a cross-functional environment.
• Strong critical thinking and problem-solving skills.

Additional Requirements:

• Must be consistently available during core business hours of Monday – Friday, 8:00am - 5:00pm Central, to assist with global coverage. 
• This is a hybrid role (100% remote is not available), our employees work on average 2-3 days per week in our Heredia office.  Also, we require (1) in-person interview in Costa Rica.

As a global organization, Datasite knows that diverse perspectives are essential to our success. We’re committed to maintaining a diverse workforce to serve our customers around the world. Datasite is an equal opportunity employer (EEO) and furthers the principles of EEO through Affirmative Action.