Senior Product Security Engineer
Remote - US
The Basics:
The Senior Product Security Engineer will be responsible for helping engineering teams improve the security of the Tanium's codebase via ongoing assessments and education throughout the entire software development lifecycle. The Senior Product Security Engineer may also take ownership of special projects such as security enhancements to the Tanium codebase or creation of internal tooling that aim at improving the overall security posture of Tanium software. In addition, the Senior Product Security Engineer will perform research on industry trends and developments and share such perspectives in appropriate forums.
What you’ll do:
- Collaborate with Platform, Product, and Cloud Engineering teams to educate them on threats and vulnerabilities applicable to Tanium’s software
- Perform security assessments of Tanium’s software (manual and automated pen testing) Perform secure source code reviews
- Assess the design of new products and major updates to existing products, and provide recommendations to improve security
- Develop tools that make it easier to ship secure code and harder to ship insecure code
- Develop and share research in the area of product security and vulnerability management
We’re looking for someone with:
Education
- Bachelor’s Degree or equivalent work experience
Experience
- 7+ years relevant work experience preferred
Other
- Expertise with common security testing methodologies
- Strong understanding of web and native application security
- Expertise in manual and automated pen testing
- Experience performing source code reviews
- Experience with using Burp Suite or similar tools
- Experience with Cloud Platform (AWS or Oracle preferred)
- Experience with at least one of the following programming languages: Golang, JavaScript, Node.js, TypeScript, C++, React, Python (to perform source code reviews)
- Experience with fuzz testing
- Experience with the process of developing, building, and shipping secure code
- Expertise in determining the severity of a vulnerability and their impact to the business
About Tanium
Tanium delivers the industry's only true real-time cloud-based endpoint management and security offering. Its platform is real-time, seamless, and autonomous, allowing security-conscious organizations to break down silos between IT and Security operations that results in reduced complexity, cost, and risk. Securing more than 32M endpoints around the world, Tanium's customers include Fortune 100 organizations, top US retailers, top US commercial banks, and branches of the U.S. Military. It also partners with the world's biggest technology companies, system integrators, and managed service providers to help customers realize the full potential of their IT investments. Tanium has been named to the Forbes Cloud 100 list for nine consecutive years and ranks on the Fortune 100 Best Companies to Work For. For more information on The Power of Certainty™, visit www.tanium.com and follow us on LinkedIn and X.
On a mission. Together.
At Tanium, we are stewards of a culture that emphasizes the importance of collaboration, respect, and diversity. In our pursuit of revolutionizing the way some of the largest enterprises and governments in the world solve their most difficult IT challenges, we are strengthened by our unique perspectives and by our collective actions.
We are an organization with stakeholders around the world and it’s imperative that the diversity of our customers and communities is reflected internally in our team members. We strive to create a diverse and inclusive environment where everyone feels they have opportunities to succeed and grow because we know that only together can we do great things.
Each of our team members has 5 days set aside as volunteer time off (VTO) to contribute to the communities they live in and give back to the causes they care about most.
What you’ll get
The annual base salary range for this full-time position is $120,000 - $355,000. This range is an estimate for what Tanium will pay a new hire. The actual annual base salary offered may be adjusted based on a variety of factors, including but not limited to, location, education, skills, training, and experience.
In addition to an annual base salary, team members will receive equity awards and a generous benefits package consisting of medical, dental and vision plan, family planning benefits, health savings account, flexible spending account, transportation savings account, 401(k) retirement savings plan with company match, life, accident and disability coverage, business travel accident insurance, employee assistance programs, disability insurance, and other well-being benefits.
For more information on how Tanium processes your personal data, please see our Privacy Policy
ApplyJob Profile
Remote
Benefits/PerksCollaboration and respect culture Diverse and inclusive environment Equity awards Family planning benefits Flexible Spending Account Health savings account Volunteer time off
Tasks- Assess product design
- Conduct pen testing
- Develop security tools
- Improve security of codebase
- Perform security assessments
- Review source code
- Share research on product security
Automated pen testing AWS Burp Suite C C++ Endpoint Management Fuzz Testing Golang Javascript Manual pen testing Native application security Node.js Operations Oracle Programming Python React Research Secure Code Development Security Security Testing Source code reviews Tanium Typescript Vulnerability assessment Web application security
Experience7 years
EducationBachelor's degree Business Equivalent work experience Relevant Work Experience
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9