Senior Product Security Engineer

Stelle nicht auf LinkedIn

🕒 vor 2 Monaten

🇺🇸 Vereinigte Staaten – Remote

💵 $113.000 - $125.000 / Jahr

⏰ Vollzeit

🟠 Senior

👮‍♂️ IT-Sicherheitsingenieur

🦅 H1B-Visum-Sponsor

Dieses Unternehmen hat in der Vergangenheit H1B-Visa gesponsert.

Jetzt Bewerben

Ähnliche Remote-Jobs finden

E-Mails für Remote-Jobs erhalten

📊 Überprüfen Sie Ihre Lebenslauf-Bewertung für diese Stelle

Verbessern Sie Ihre Chancen auf ein Vorstellungsgespräch, indem Sie Ihre Lebenslauf-Bewertung vor der Bewerbung überprüfen.

Lebenslauf hochladen

Harness

WebsiteLinkedInAlle Stellen

501 - 1000 Mitarbeiter

Gegründet 2016

☁️ SaaS

🔒 Cybersecurity

Software • SaaS • Cybersecurity

Harness ist eine Softwarebereitstellungsplattform, die es Organisationen ermöglicht, den Entwicklungsprozess durch Continuous Integration (CI) und Continuous Delivery (CD) zu optimieren. Die Plattform bietet Werkzeuge zur Verwaltung von Code-Repositories, Infrastruktur als Code und Feature Flags und liefert Einblicke in Software-Engineering-Prozesse. Harness befähigt Entwickler, die Produktivität zu steigern und gleichzeitig Sicherheit und Zuverlässigkeit im Software-Bereitstellungszyklus sicherzustellen.

Beschreibung

• Design and develop product security APIs, tools, and utilities for internal and external stakeholders. • Conduct threat modeling and secure design reviews for application backend services and business integrations. • Perform advanced penetration tests and adversarial attack simulations against Harness modules, APIs, and codebase using industry-standard frameworks. • Lead manual and automated code review efforts to discover vulnerabilities, weaknesses, and anti-patterns in the Harness platform. • Implement and operate security tooling including SAST, DAST, and SCA, and integrate these into CI/CD pipelines. • Consult and advise developers and Product Managers on security standards, vulnerability remediation, and security architecture. • Assess risks and trade-offs, and propose solutions for product security features such as authentication and authorization. • Participate in the creation, review, and implementation of technical security standards across global engineering teams. • Use the Harness platform to integrate security processes like vulnerability management into the SDLC. • Collaborate cross-functionally with Engineering and Product to accelerate the release of software with security by design.

🎯 Anforderungen

• BS in Computer Science or a related degree. • 5+ years of relevant industry experience with a strong security focus. • Solid experience with DevSecOps practices and secure SDLC methodologies. • Good working knowledge of cyber security frameworks including OWASP, SANS, NIST, and CIS. • Ability to describe software supply chain risks and Secure SDLC best practices. • Experience with public or private cloud environments such as K8s, AWS, GCP, or Azure. • Professional knowledge of enterprise applications, API development, and modern software delivery processes. • Previous experience in a cloud-native environment. • Proficiency in Java or a comparable language and object-oriented programming methodology. • Hands-on experience with security testing tools and vulnerability management workflows.