Senior Product Security Engineer

This is a fully remote position, open to applicants in Ukraine.

📋 Description

• Oversee daily security operations ensuring our platform fulfills customer requirements.

• Create tailored automation to handle security processes and incorporate "Secure-by-Design" methodologies in the CI/CD pipeline using Python.

• Recognize, design, and implement measures to protect our containerized production environments.

• Deploy and manage product security testing tools for SAST, DAST, and SCA assessments.

• Execute and automate comprehensive vulnerability, threat, and exploitability evaluations for actionable improvements and mitigations in DataRobot products.

• Conduct initial technical investigations for customer-reported issues and security incidents, collaborating with Engineering and IT Security.

• Collaborate directly with Sales & Support teams to address concerns related to security exposure and architecture.

• Balance organizational needs with security requirements while fostering strong professional relationships through clear and diplomatic communication.

⛳️ Requirements

• 5-7 years of experience in Product Security or Application Security roles.

• Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related field (or equivalent experience).

• Proficient in coding with Python to develop security automation solutions.

• Extensive knowledge of Linux containers (including internals and security isolation).

• Experienced in Git-based collaboration and automating software delivery through CI/CD integration (Jenkins, Harness, or GitHub Actions).

• Familiarity with Kubernetes orchestration is highly preferred.

• Practical experience with common security tools such as Semgrep, Trivy, and Burp Suite.

• Capability to replicate vulnerabilities in a lab environment to illustrate impact.

• Strong ability to conduct manual code reviews or AI-assisted reviews in Python, Go, and Node.js, identifying flaws that automated tools might overlook (e.g., broken access control or insecure business logic).

• Utilized AI-driven automation to expedite secure code development and enhance security assessments across the SDLC.

• Excellent communication skills for guiding teams and interacting with various stakeholders.

🏝️ Benefits

• Medical, Dental & Vision Insurance.

• Flexible Time Off Program.

• Paid Holidays.

• Paid Parental Leave.

• Global Employee Assistance Program (EAP) and more!