Principal Product Security Engineer

Posted:
10/22/2024, 5:00:00 PM

Location(s):
Bengaluru, Karnataka, India ⋅ Karnataka, India

Experience Level(s):
Expert or higher ⋅ Senior

Field(s):
IT & Security ⋅ Software Engineering

  • Define and lead implementation guidelines and standards to ensure products are secure by default, perform security design review for new product features

  • Drive shift left strategy across organizations, help team adopt best practices with in SDLC

  • Advise product teams when they are implementing security controls and support the team throughout SDLC

  • Able to drive continuous improvement within the SDLC with data analysis and insights

  • Develop and oversee security programs like security tool selection, security requirements baseline, threat modeling, Learning and Development, etc.

  • Audit teams practice and recommend areas where they can improve detection of security issues (SAST, SCA, DAST, etc.)

Required Experience/Skills

  • Overall 15+ years of experience in software engineering, 5+ years of experience programming in at least two of the following languages: Java, C#, C, C++, JavaScript, Python, Ruby, Go

  • 5+ years of experience in a software security role such as pen testing, or architecture

  • Organized and a self-starter - able to work under moderate supervision

  • Strong negotiation skills - ability to influence decisions and guide behaviour

  • Extensive knowledge of common vulnerabilities - able to explain and remediate the OWASP Top 10 vulnerabilities across multiple programming languages

  • Deep experience with Amazon Web Services or Microsoft Azure to be able to advise teams on securing their deployments

  • Experience with containers and Kubernetes to be able to guide best practices

Nice-to-Haves

  • 4+ years of experience working in a globally distributed team

  • Certifications such as CSSLP, GWAPT, CEH, CISSP, etc.

  • Experience in other security functional areas such risk management, forensics, threat hunting, or network security

Education

  • Bachelors degree with 14+ years of experience, or equivalent work experience.

About Us:

Citrix and TIBCO recently merged to create Cloud Software Group, now one of the world’s largest cloud solution providers, serving more than 100 million users around the globe. When you join Cloud Software Group, you are making a difference for real people, each of whom count on our suite of cloud-based products to get work done — from anywhere. Members of our team will tell you that we value diverse lived experiences, passion for technology, and the courage to take risks.  Everyone is empowered to learn, dream, and build the future of work. We are on the brink of another Cambrian leap -- a moment of immense evolution and growth. And we need your expertise and experience to do it. Now is the perfect time to move your skills to the cloud.

Cloud Software Group is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination. All qualified applicants will receive consideration for employment without regard to age, race, color, creed, sex or gender, sexual orientation, gender identity, gender expression, ethnicity, national origin, ancestry, citizenship, religion, genetic carrier status, disability, pregnancy, childbirth or related medical conditions (including lactation status), marital status, military service, protected veteran status, political activity or affiliation, taking or requesting statutorily protected leave and other protected classifications.

If you need a reasonable accommodation due to a disability during any part of the application process,  please contact us at (800) 424-8749 or email us at [email protected] for assistance.

Cloud

Website: https://cloud.com/

Headquarter Location: San Francisco, California, United States

Employee Count: 101-250

Year Founded: 2013

IPO Status: Private

Last Funding Type: Series A

Industries: Corporate Training ⋅ DevOps ⋅ EdTech ⋅ Education ⋅ Enterprise Software ⋅ Information Technology ⋅ Internet ⋅ SaaS ⋅ Trading Platform