Back to all jobs

Senior Product Security Engineer

Snyk

Jul 21


All roles listed as ‘remote’ are available as remote within the same country.


Overview

Snyk is looking for a Senior Product Security Engineer with experience in the areas of application security, cloud native services and developing reusable security libraries. We are building out a world class Product Security function within Snyk’s R&D function to support the company’s rapid growth. 

You will have a unique opportunity to help build and shape the technical capabilities and the overall product security programme. 

You’ll spend your time:

  • Building innovative solutions that extend Snyk’s Product Security capabilities
  • Working with architecture, product and engineering teams ensuring security is at the heart of everything we do
  • Collaborating with your peers to define software/infrastructure guardrails and security abstractions
  • Engineering solutions that enable teams to self-serve on meaningful security metrics & tools leading to faster, safer code in production environments
  • Performing threat models and code reviews for products and services
  • Building out a best-in-breed application security pipeline for real time event monitoring and response
  • Triaging security reports and assessing risk

You should apply if you have:

  • 3+ years of experience working in security teams
  • The ability to articulate security as a business enabler
  • 2-3 years of experience writing battle tested production-level code
  • Strong understanding of cloud native ecosystems (AWS, GCP, or Azure)
  • Experience writing solid test cases and documentation
  • Experience doing content development for secure coding standards
  • Ability to work independently in a remote setting
  • Strong written and verbal communication skills

We’d especially love to hear from you if you:

  • 5+ years of experience working in product security/ application security
  • 5+ years of experience working in securing cloud platforms
  • Practical knowledge of common threats and exposures to web apps and services
  • Strong interest and experience in offensive security techniques
  • Experience working with architecture teams establishing common good practices
  • Information security certifications (e.g. OSCP, OSCE, AWAE, CKS, SANS)
  • Experience with either Golang, Python, Scala, Rust, TypeScript
  • Familiarity with data analysis / data science techniques
  • Bachelor’s degree in computer science, information security, or Information Technology

Interested?

Please apply below! We care deeply about the warm, inclusive environment we’ve created and we value diversity - we welcome applications from those typically underrepresented in tech. If you like the sound of this role, but are not totally sure whether you’re the right person, do apply anyway :)

About Snyk

Snyk’s mission is to help developers use open source code and stay secure. 

The use of open source is booming, but security is a key concern (https://snyk.io/stateofossecurity/). Snyk’s unique product enables developers and enterprise security teams to continuously find & fix vulnerable dependencies without slowing down, offering seamless integration into Dev, DevOps and DevSecOps workflows. We care deeply about the quality and usefulness of the tools we develop, always focusing on our customers and users. 

We are experiencing rapid growth - and we want you to join us! By the end of Q3 2019 alone, Snyk was already adopted by over 450,000 developers, and including multiple enterprise customers (such as Google, New Relic, ASOS and others). We also raised an additional $200 Million, announced on September 9, 2020, from investors such as Stripes and Salesforce Ventures, demonstrating that they are as excited as we are by Snyk’s progress and potential.

We believe open source software is a force for good, and we’re building Snyk to make it easier for developers who aren’t security experts to stay secure

#LI-TF1

#LI-Remote

About Snyk

Snyk is the leader in developer security. We empower the world's developers to build secure applications and equip security teams to meet the demands of the digital world. Our developer-first approach ensures organizations can secure all of the critical components of their applications from code to cloud, leading to increased developer productivity, revenue growth, customer satisfaction, cost savings and an overall improved security posture. 

At Snyk, we envision an inclusive technology industry powering a more sustainable and secure world. Since our founding, Snykers have cared deeply for one another and the developer and security communities as well as the larger world around us. Learn more about our Snyk Impact social and environmental mission and take action with us here.

Snyk's Developer Security Platform automatically integrates with a developer's workflow and is purpose-built for security teams to collaborate with their development teams. Snyk is used by 1,200 customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce.

Snyk is recognized on the Forbes Cloud 100 2021, the 2021 CNBC Disruptor 50 and was named a Visionary in the 2021 Gartner Magic Quadrant for AST.