Product Security Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Lead secure design initiatives. Collaborate with engineering teams on secure design and code evaluations. Recognize and prioritize risks early in the product development lifecycle.

• Create systems that are secure by default. Establish paved paths that systematically minimize risk and make secure development the most straightforward option for engineers.

• Conduct offensive security assessments. Perform penetration tests and code reviews on both new and existing products with an adversarial perspective.

• Enhance our security tools. Integrate and advance our static analysis, supply chain security, and vulnerability management capabilities within engineering workflows.

• Manage our responsible disclosure program. Operate and refine our program by increasing automation, validating submissions, and coordinating remediation efforts.

• Strengthen our products. Write and deploy code to address vulnerabilities in production systems and enhance the security posture of WorkOS products.

• Engage directly with customers. Build customer trust by addressing their security-related inquiries and concerns.

⛳️ Requirements

• Over 5 years of experience in a security engineering or security-oriented software engineering position.

• Capability to execute a broad range of security functions, including security assessments, penetration testing, responsible disclosure, and security tooling integration.

• Familiarity with and experience utilizing common industry tools.

• Proven track record of identifying software vulnerabilities, as evidenced by CVEs, bug bounties, blog contributions, or previous work experience.

• Excellent written and verbal communication skills, especially in collaboration with engineering teams.

• Proficient in reading and writing code, with the ability to effectively utilize AI throughout the process.

• Bonus: Experience in the authentication and identity domain.

• Bonus: Experience writing production-level code, particularly in the development of security features.

🏝️ Benefits

• Competitive compensation

• Significant equity grants

• Healthcare insurance (Medical, Dental, and Vision) for you and your family

• 401k matching

• Monthly wellness and fitness allowances

• Paid time off, paid holidays, and unlimited sick leave

• Autonomy and flexibility with remote work