GrepJob
DigitalOcean

Staff Product Security Engineer

DigitalOcean
Apply
1 day ago
Denver, CO, USA
Staff+
H1B Sponsor

Base Salary

$170k - $200k/yr

Responsibilities

  • Threat model application designs and solutions and provide security risk assessments.
  • Provide deep technical expertise in software and network architecture during assessments.
  • Collaborate with product teams to architect secure and resilient systems.
  • Identify trade-offs of different solutions and recommend efficient designs.
  • Provide hands-on remediation guidance to development teams.
  • Design and build internal tooling for secure-by-default configurations.
  • Write robust software primarily in Go and Python.
  • Integrate vendor tools into development pipelines without adding friction.
  • Champion an internal security culture through training and initiatives.
  • Mentor software engineering teams in security best practices.
  • Oversee the vulnerability management program.

Requirements

  • Experience leading architectural changes to mitigate security vulnerabilities.
  • Ability to communicate security topics and provide actionable direction.
  • Record of partnering with engineering teams to tackle security problems.
  • Strong knowledge of modern development concepts like containerization and CI/CD.
  • 6+ years experience guiding software teams on secure architecture design is preferred.
  • 5+ years of experience in software engineering projects with a security focus is preferred.
  • Experience building or reviewing threat models and crafting abuse cases is preferred.
  • Working knowledge of hardware and software supply chain security is preferred.
  • Familiarity with technologies such as gRPC, Docker, and Kubernetes is preferred.

Benefits

  • Competitive array of benefits including Employee Assistance Program and flexible time off.
  • Reimbursement for relevant conferences, training, and education.
  • Access to LinkedIn Learning's 10,000+ courses for continued growth.
  • Potential for bonuses based on company and individual performance.
  • Equity compensation including grants and participation in Employee Stock Purchase Program.

Tech Stack

DockerGitHub ActionsGogRPCJavaScriptKubernetesPrometheusPython

Categories

Security