Senior Product Security Engineer
Remote
Who We AreRed Canary was founded to create a world where every organization can make its greatest impact without fear of cyber threats. We’re a cyber security company who protects, supports and empowers organizations to make better security decisions so they can focus on their mission without fear of cyber threats.
The combination of our market-defining technology and expertise prevents breaches every day and sets a new standard for partnership in the industry. We’re united in our commitment to customers and grounded in our values, which earned us a place on the Forbes Best Start-up Employers 2022 list. If our mission resonates with you, let’s talk.
What We Believe In- Do what’s right for the customer- Be kind and authentic- Deliver great quality- Be relentless
Challenges You Will SolveDelivering excellent, secure software is paramount to Red Canary's mission! Some of the best security teams in the world depend on our software to protect their organizations, and in turn we expect the highest standards of security for our platform.
Our Senior Product Security Engineers collaborate across product teams to mature our product security program and help ensure secure outcomes for software development at scale. Under your guidance, the Red Canary product security model will be viewed as the standard by which all other security providers are measured. The program you will join enables rapid development of our product features for our customers, by providing repeatable secure patterns and seamless guardrails.
A continuous improvement mentality is crucial for success! In this role you’ll get the opportunity to craft and implement security standard methodologies at every stage of the development lifecycle, from design through production. Not only will you have the chance to uncover exploitable bugs in software, but more meaningfully, you’ll be an integral piece of getting them fixed as early in the process as possible.
The application deadline is December 13th, 2024.
Why Red Canary?Red Canary is where people embody our mission to improve security outcomes for all. People work hard to maintain a culture that encourages authenticity in order to do your best work. Our people are driven and committed to finding the best security outcomes, delivering real and actionable answers, and being transparent along the way.
At Red Canary, we offer a very rich benefits program to our full-time team members so they can focus on their families and improving our customers’ security. For a full list of benefits, please review our Benefits Summary:https://resource.redcanary.com/rs/003-YRU-314/images/RedCanary_2024BenefitsSummary.pdf?version=0
Individuals seeking employment at Red Canary are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. Apply
The combination of our market-defining technology and expertise prevents breaches every day and sets a new standard for partnership in the industry. We’re united in our commitment to customers and grounded in our values, which earned us a place on the Forbes Best Start-up Employers 2022 list. If our mission resonates with you, let’s talk.
What We Believe In- Do what’s right for the customer- Be kind and authentic- Deliver great quality- Be relentless
Challenges You Will SolveDelivering excellent, secure software is paramount to Red Canary's mission! Some of the best security teams in the world depend on our software to protect their organizations, and in turn we expect the highest standards of security for our platform.
Our Senior Product Security Engineers collaborate across product teams to mature our product security program and help ensure secure outcomes for software development at scale. Under your guidance, the Red Canary product security model will be viewed as the standard by which all other security providers are measured. The program you will join enables rapid development of our product features for our customers, by providing repeatable secure patterns and seamless guardrails.
A continuous improvement mentality is crucial for success! In this role you’ll get the opportunity to craft and implement security standard methodologies at every stage of the development lifecycle, from design through production. Not only will you have the chance to uncover exploitable bugs in software, but more meaningfully, you’ll be an integral piece of getting them fixed as early in the process as possible.
What You'll Do
- Embed with the product teams and attend regular stand-ups and planning meetings and build positive relationships with key partners
- Serve as the security authority on your product, ensuring the corporate security controls are working as designed, that security requirements are provided to the team before coding begins, and that vulnerabilities are being fixed within their SLAs
- Ensure s-SDLC controls are embedded in your product and serve as control owner for a subset of these controls, mentoring other team members
- Engage in application and domain-specific threat modeling, and attack surface analysis and reduction
- Work alongside engineers, performing peer review and mentoring as needed
- Assist in continuous improvement efforts and serve as a resource for more junior members
What You'll Bring
- At least 5 years experience in securing enterprise-grade web applications and services with demonstrated expertise in threat modeling and attack surface analysis.
- Solid understanding of common languages such as Ruby, Javascript, Go, etc.
- Strong experience in web application security issues and standards (ex. OWASP Top 10, SANS Top 25, etc.)
- Understanding and experience with securing public cloud deployments, including AWS and/or Azure, and serverless architecture
- Familiarity with CI/CD tools and processes, such as GitHub, Travis CI, CircleCI, Docker, and Kubernetes
- Strong foundation in core information security principles and concepts (encryption, authentication, etc.)
- Experience with automated application security tools and technologies (SAST, DAST, SCA etc.)
- Excellent communication skills and the ability to explain sophisticated security topics in simple terms
The application deadline is December 13th, 2024.
Why Red Canary?Red Canary is where people embody our mission to improve security outcomes for all. People work hard to maintain a culture that encourages authenticity in order to do your best work. Our people are driven and committed to finding the best security outcomes, delivering real and actionable answers, and being transparent along the way.
At Red Canary, we offer a very rich benefits program to our full-time team members so they can focus on their families and improving our customers’ security. For a full list of benefits, please review our Benefits Summary:https://resource.redcanary.com/rs/003-YRU-314/images/RedCanary_2024BenefitsSummary.pdf?version=0
Individuals seeking employment at Red Canary are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. Apply
Job Profile
RestrictionsRemote
Benefits/PerksBonus Bonus eligibility Equity Equity opportunities
Tasks- Assist in continuous improvement
- Collaborate with product teams
- Engage in threat modeling
- Ensure security controls are effective
- Perform peer reviews
Attack surface analysis Authentication Automated application security tools AWS Azure CI/CD CircleCI Cloud Communication Cyber Security DAST Docker Encryption GitHub Go Identity Information security Javascript Kubernetes Mentoring OWASP Product Security Ruby SANS SAST SCA SDLC Security Serverless Architecture Software Development Threat modeling Travis CI Web applications Web application security
Experience5 years
Remote Jobs in North America
Remote Jobs in Europe
Remote Jobs in Asia/Pacific
Remote Jobs in South America
Remote Jobs in Africa
Remote Jobs in Middle East
Full Time Remote Jobs
Part Time Remote Jobs
Contract Remote Jobs
Internship Remote Jobs
Temporary Remote Jobs
Freelance Remote Jobs
Mid-Level Remote Jobs
Senior-Level Remote Jobs
Entry-Level Remote Jobs
Exec-Level Remote Jobs
Lead-Level Remote Jobs
Remote Business Development Jobs
Remote Event Jobs
Remote Platform Jobs
Remote Scientist Jobs
Remote Senior Software Engineer Jobs
Remote Sales Manager Jobs
Remote Analytics Jobs
Remote Technician Jobs
Remote Sales Specialist Jobs
Remote Contract Jobs
Remote Customer Service Jobs
Remote Customer Success Jobs
Remote Engineer I Jobs
Remote Sales Rep Jobs
Remote Advisor Jobs
Remote Program Manager Jobs
Remote Quality Jobs
Remote Retirement Plan Specialist Jobs
Remote Associate Director Jobs
Remote Associate Dir Jobs
Remote Jobs with EUR > 100K in Salary
Remote Jobs with GBP > 120K in Salary
Remote Jobs with CAD > 140K in Salary
Remote Jobs with EUR > 120K in Salary
Remote Jobs with CAD > 160K in Salary
Remote Jobs with GBP > 140K in Salary
Remote Jobs with PLN > 40K in Salary
Remote Jobs with PLN > 60K in Salary
Remote Jobs with PLN > 80K in Salary
Remote Jobs with PLN > 100K in Salary
Remote Jobs with PLN > 120K in Salary
Remote Jobs with PLN > 160K in Salary
Remote Jobs with PLN > 180K in Salary
Remote Jobs with PLN > 140K in Salary
Remote Jobs with PLN > 200K in Salary
Remote Jobs with PLN > 220K in Salary
Remote Jobs with CAD > 180K in Salary
Remote Jobs with EUR > 140K in Salary
Remote Jobs with PLN > 260K in Salary
Remote Jobs with GBP > 160K in Salary