Senior Product Security Engineer

Responsibilities:

• Provides support to cross-functional teams, with a high attention to detail
• Conducts security assessments, threat modeling, and vulnerability reporting.
• Performs application security reviews for our products and services to identify and/or validate vulnerabilities and attack chains.

Essential Functions:

• Serves as point of contact on secure development and security best practices
• Ensures s-SDLC controls are embedded in assigned product and serves as control owner for a subset of these controls
• Engages in application and domain-specific threat modeling, as well as attack surface analysis and reduction.

Requirements:

• Ability to identify application vulnerabilities and advise on appropriate remediation
• Strong foundation in core information security principles and concepts (encryption, authentication, etc.)
• Effective communication skills, with the ability to explain sophisticated security topics in simple terms to technical and non-technical stakeholder