Senior Product Security Engineer

Vaga não está no LinkedIn

🕒 Abril 9

🇺🇸 Estados Unidos – Remoto (EUA)

💵 $113.000 - $125.000 / ano

⏰ Tempo Integral

🟠 Sênior

👮‍♂️ Cibersegurança / Engenheiro de Segurança

🦅 Patrocina Visto H1B

Esta empresa já patrocinou vistos H1B no passado.

Candidatar-se

Encontrar Vagas Remotas Similares

Receber Emails de Vagas Remotas

📊 Verifique sua pontuação de currículo para esta vaga

Melhore suas chances de conseguir uma entrevista verificando sua pontuação de currículo antes de se candidatar.

Enviar Currículo

Harness

SiteLinkedInTodas as Vagas

501 - 1000 funcionários

Fundada em 2016

☁️ SaaS

🔒 Cibersegurança

Software • SaaS • Cybersecurity

A Harness é uma plataforma de entrega de software que permite às organizações simplificar o processo de desenvolvimento por meio de Integração Contínua (CI) e Entrega Contínua (CD). A plataforma oferece ferramentas para gerenciamento de repositórios de código, infraestrutura como código e feature flags, e fornece insights sobre processos de engenharia de software. A Harness capacita os desenvolvedores a aumentar a produtividade enquanto garante a segurança e a confiabilidade no ciclo de vida de implantação de software.

Descrição

• Design and develop product security APIs, tools, and utilities for internal and external stakeholders. • Conduct threat modeling and secure design reviews for application backend services and business integrations. • Perform advanced penetration tests and adversarial attack simulations against Harness modules, APIs, and codebase using industry-standard frameworks. • Lead manual and automated code review efforts to discover vulnerabilities, weaknesses, and anti-patterns in the Harness platform. • Implement and operate security tooling including SAST, DAST, and SCA, and integrate these into CI/CD pipelines. • Consult and advise developers and Product Managers on security standards, vulnerability remediation, and security architecture. • Assess risks and trade-offs, and propose solutions for product security features such as authentication and authorization. • Participate in the creation, review, and implementation of technical security standards across global engineering teams. • Use the Harness platform to integrate security processes like vulnerability management into the SDLC. • Collaborate cross-functionally with Engineering and Product to accelerate the release of software with security by design.

🎯 Requisitos

• BS in Computer Science or a related degree. • 5+ years of relevant industry experience with a strong security focus. • Solid experience with DevSecOps practices and secure SDLC methodologies. • Good working knowledge of cyber security frameworks including OWASP, SANS, NIST, and CIS. • Ability to describe software supply chain risks and Secure SDLC best practices. • Experience with public or private cloud environments such as K8s, AWS, GCP, or Azure. • Professional knowledge of enterprise applications, API development, and modern software delivery processes. • Previous experience in a cloud-native environment. • Proficiency in Java or a comparable language and object-oriented programming methodology. • Hands-on experience with security testing tools and vulnerability management workflows.