Logo for Collibra

Senior Product Security Engineer

Role overview

Qualifications

  • 5+ years of application/product security experience
  • 2+ years of experience securing Java, Python, and/or JavaScript web applications
  • Knowledge of enterprise-level software architecture components and cloud infrastructure
  • A bachelor’s degree or equivalent related working experience

Responsibilities

  • Application security for products and/or features supported by your assigned development teams
  • Performing security testing and triaging findings identified by SAST, SCA, IAST, DAST, and penetration tests
  • Providing remediation consulting services to assigned development teams
  • Coordinating third-party penetration testing engagements, analyzing reports, and opening tickets for remediation

About the company

Collibra logo

Collibra

Information Technology & Services

Since 2008, Collibra has been uniting organizations by delivering trusted data for every use, for every user, and across every source. Our Data Intelligence Cloud brings flexible governance, continuous quality and built-in privacy to all types of data. The Global 2000 relies on Collibra to create the critical alignment that accelerates workflows and delivers better results faster. We have a diverse global footprint, with offices in the U.S., Belgium, Australia, Czech Republic, France, Poland and the U.K. Recruitment Fraud Alert Collibra has received reports of employment scams that may offer employment or seek financial commitments from job candidates. Unsuspecting job seekers have reported receiving unsolicited contacts via LinkedIn, phone, email or text from individual(s) purporting to represent Collibra or our recruiter(s). The fictitious jobs may be advertised on employment-search websites, such as Indeed or Craigslist, or using fraudulent websites that have names similar to the relevant company website. Please take note that Collibra does not extend unsolicited employment offers. Furthermore, neither Collibra nor any of its recruiting partners will ever charge prospective employees with any fees or a security deposit during the recruitment process. If a person pretending to provide recruitment services for Collibra for a fee to the applicant or requires a security deposit, please be advised that this person is not affiliated in any way with Collibra. If you would like to pursue employment opportunities with Collibra, please visit our official careers website at https://www.collibra.com/careers. Job postings or employment applications that do not originate from our careers website may not be legitimate. You may report any such behavior via our Contact Us page at https://www.collibra.com/contact-us. If you have been defrauded or suspect identity theft as a result of an employment scam, please contact your local law enforcement agency for guidance.

Company details

Company typeLarge
IndustryInformation Technology & Services
Company size1001 - 5000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Joining Collibra’s Product Security team

Collibra is seeking a Senior Product Security Engineer to join our high-impact team. You will be a key individual responsible for identifying vulnerabilities and providing expert remediation consulting for our global product development teams. This role provides critical technical leadership and oversight, ensuring Collibra continues to deliver secure, resilient products and services to our customers. You will act as an application security evangelist, partnering with engineers to accelerate secure time-to-value while leveraging cutting-edge AI and MCP to create context-aware security automation.

Product Security Engineers at Collibra are responsible for

  • Application security for products and/or features supported by your assigned development teams.
  • Performing security testing and triaging findings identified by SAST, SCA, IAST, DAST, and penetration tests.
  • Leverage AI and MCP to create intelligent, context-aware security guidance and automation.
  • Providing remediation consulting services to assigned development teams.
  • Assist with vulnerability management reporting and tracking.
  • Coordinating third-party penetration testing engagements, analyzing reports, and opening tickets for remediation.
  • Contribute to the configuration and management of security tools.

You have

  • 5+ years of application/product security experience.
  • 2+ years of experience securing Java, Python, and/or JavaScript web applications.
  • Knowledge of enterprise-level software architecture components and cloud infrastructure.
  • Experience building trusted advisor relationships with engineers, product owners, and engineering management (up to director level).
  • Experience with AI security tooling, context-aware automation for SSDLC.
  • Understanding of AI privacy and governance in developer workflows.
  • Experience using and building agentic AI systems that work collaboratively.
  • Experience advocating for the remediation of application security risk and, simultaneously, the associated development/engineering team(s).
  • Experience in identifying vulnerabilities in source code, providing detailed steps to reproduce exploitation, and providing recommendations to engineering teams on how to remediate issues.
  • A bachelor’s degree or equivalent related working experience is required.

You are

  • Knowledgeable of CI/CD concepts and experience with integrated SAST, SCA, and DAST tooling.
  • Proficient at triaging application vulnerabilities associated with source code, open-source library dependencies, and 3rd party containers.
  • Able to assess and communicate the impact of Common Vulnerability Weaknesses (CVEs) on custom application software and advise on risk acceptance/deferment for false positive scenarios, severity adjustments, and acceptable reasoning for operational requirements.
  • Experienced in executing as a matrixed/embedded security resource (within a development team) responsible for product, application, or feature group vulnerability assessments, ensuring they are appropriately enumerated and executed.
  • Possess a working knowledge of Python, Java, and/or JavaScript software development languages.
  • Experienced in Linux and containerization in a cloud environment.
  • Experienced in communicating the impact of security vulnerabilities to engineering teams and product leaders.
  • Experienced in using SAST, DAST, and SCA tooling.
  • Experienced in being a point of contact for outside/3rd party security assessments (pen tests, questionnaires, etc.).
  • knowledgeable of vulnerability management concepts, challenges, and reporting.
  • Possess a working knowledge of the OWASP Top 10 and can explain its concepts to a diverse audience of engineers and people leaders.
  • Familiarity with AI standards and regulations, EU AI Act, SAIF and ISO 42001.

Measures of success

  • Within your first month, you will absorb fundamental knowledge about Collibra processes/tools and SDLC.
  • Within your third month, you will own application security engineering tasks for one or more development teams responsible for product features.
  • Within your sixth month, you will be responsible for managing triaging efforts for 3rd party pen testing and be able to resolve customer product security inquiries independently.

 

Benefits at Collibra

Collibra recognizes and values that everyone has different needs, interests, and life goals. We built our benefits program with flexibility in mind to support you and your loved ones through a diverse range of circumstances and life events. These flexible offerings sit on a foundation of competitive compensation, health coverage, and time off. Learn more about Collibra’s benefits.

We create inclusion and belonging through how we onboard, meet, connect, engage, and communicate. Learn more about diversity, equity, and inclusion at Collibra.

At Collibra, we’re proud to be an equal opportunity employer. We realize the key to creating a company with a world-class culture and employee experience comes from who we hire and creating a workplace that celebrates everyone.

With this, we proudly consider qualified applicants without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sexual orientation, pregnancy, sex, gender identity, gender expression, genetic information, physical or mental disability, HIV status, registered domestic partner status, caregiver status, marital status, veteran or military status, citizenship status or any other legally protected category. If you have a need that requires accommodation, let us know by completing our Accommodations for Applicants form.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Security Engineer Related jobs

Other jobs at Collibra

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.