Senior Product Security Engineer - Provo
Provo, Utah, United States
Qualtrics
Use Qualtrics AI to transform data into personalized experiences, uncover drivers for customers and employees, and make smarter decisions to power growth.
At Qualtrics, we create software the world’s best brands use to deliver exceptional frontline experiences, build high-performing teams, and design products people love. But we are more than a platform—we are the creators and stewards of the Experience Management category serving over 18K clients globally. Building a category takes grit, determination, and a disdain for convention—but most of all it requires close-knit, high-functioning teams with an unwavering dedication to serving our customers.
When you join one of our teams, you’ll be part of a nimble group that’s empowered to set aggressive goals and move fast to achieve them. Strategic risks are encouraged and complex problems are solved together, by passing the mic and iterating until the best solution comes to light. You won’t have to look to find growth opportunities—ready or not, they’ll find you. From retail to government to healthcare, we’re on a mission to bring humanity, connection, and empathy back to business. Join over 5,000 people across the globe who think that’s work worth doing. Senior Product Security Engineer - Provo, UT Why We Have This Role Qualtrics operates in an environment where security threats are constantly evolving, making it essential to prioritize security across our operations. The Product Security Senior Specialist plays a crucial role in safeguarding our products and infrastructure against increasing security risks. This individual will support the establishment and maintenance of company-wide security standards, working collaboratively with business units to tackle security challenges. Their contributions are vital in protecting customer data, strengthening the company's reputation, and ensuring that we deliver secure services consistently. How You’ll Find Success
When you join one of our teams, you’ll be part of a nimble group that’s empowered to set aggressive goals and move fast to achieve them. Strategic risks are encouraged and complex problems are solved together, by passing the mic and iterating until the best solution comes to light. You won’t have to look to find growth opportunities—ready or not, they’ll find you. From retail to government to healthcare, we’re on a mission to bring humanity, connection, and empathy back to business. Join over 5,000 people across the globe who think that’s work worth doing. Senior Product Security Engineer - Provo, UT Why We Have This Role Qualtrics operates in an environment where security threats are constantly evolving, making it essential to prioritize security across our operations. The Product Security Senior Specialist plays a crucial role in safeguarding our products and infrastructure against increasing security risks. This individual will support the establishment and maintenance of company-wide security standards, working collaboratively with business units to tackle security challenges. Their contributions are vital in protecting customer data, strengthening the company's reputation, and ensuring that we deliver secure services consistently. How You’ll Find Success
- Proactive Initiative: Take ownership of security-related outcomes, actively gathering necessary context to work autonomously toward the goals of platform security.
- Effective Communication: Foster trust and collaboration by communicating clearly and effectively across all levels of the organization.
- Security Knowledge: Possess an extensive understanding of security concerns related to products, cloud environments, and infrastructure, providing valuable insights.
- Collaborative Spirit: Build strong relationships across various product teams to propel security initiatives forward and facilitate cohesive security practices.
- Analytical Thinking: Demonstrate sound judgment and problem-solving abilities in addressing complex security issues efficiently.
- Commitment to Learning: Keep pace with the latest trends and developments in security, continuously enhancing your expertise in threat mitigation and security best practices.
- Deepening Security Knowledge: Deepen your expertise in key areas of Product Security Engineering, such as secure coding practices, threat modeling, and vulnerability management, allowing you to tackle increasingly complex security challenges within our product development lifecycle.
- Leadership in Security Initiatives: Take the lead on critical security initiatives, including driving security assessments, code review processes, strengthening your leadership capabilities and making a measurable impact on our security posture.
- Strategic Influence: Collaborate with cross-functional teams to shape and influence security policies and frameworks, contributing to the overall security strategy of the organization and enhancing your ability to drive organizational change.
- Knowledge Development: Remain current with security trends, augmenting your understanding of emerging threats and innovative solutions.
- Innovation and Research: Explore and experiment with new security technologies and methodologies, providing innovative solutions to security challenges and reinforcing your position as a key contributor to the organization’s security advancements.
- Enhance Security Posture: Conduct security assessments to identify, prioritize, and remediate vulnerabilities in our products and infrastructure.
- Security Code & Design Reviews: Participate in code & design reviews to ensure secure coding and architectural practices are followed, identifying vulnerabilities and recommending secure alternatives to enhance code quality.
- Threat Modeling: Collaborate with cross-functional teams to perform threat modeling exercises, identifying potential security risks early in the development lifecycle and developing mitigation strategies.
- Penetration Testing Coordination: Assist in coordinating and executing penetration testing activities, analyzing results, and working with development teams to remediate identified weaknesses promptly.
- Incident Response Support: Provide expertise during security incidents by helping to analyze breaches, recommending corrective actions, and ensuring lessons learned are documented to prevent future occurrences.
- Security Documentation and Training: Develop and maintain security documentation while also conducting training sessions for development teams on best practices related to secure coding, vulnerability management, and incident response.
- Collaboration on Security Standards: Work closely with various product teams to ensure adherence to security standards and frameworks, advising on security policies and procedures to foster a security-first mindset throughout the development process.
- Continuous Improvement: Stay current with evolving security threats and vulnerabilities, incorporating lessons learned and industry best practices to continuously improve our product security strategies and controls.
- While we appreciate diverse experiences, we emphasize your capabilities and the results you have delivered. For this role, the following are particularly important:
- Demonstrated Expertise: Show your experience in the field of security, ideally over 7 years, and provide examples of how you've influenced security culture within teams.
- Breadth of Security Knowledge: Highlight your proficiency in various aspects of security, including product, cloud, and infrastructure security, as well as vulnerability management and data protection practices.
- Collaborative Achievements: Evidence your ability to partner and work effectively across different business units to achieve shared security objectives.
- Problem-Solving Acumen: Share instances where you successfully addressed security vulnerabilities or complex challenges decisively and efficiently.
- Strategic Involvement: Ideally, you will have had a role in formulating and implementing security strategies that yielded positive, transformative outcomes.
- Innovative Environment: The Product Security team is at the forefront of Qualtrics' cutting-edge advancements in Experience Management and AI, employing advanced technologies to enhance the integrity and security of our platform.
- Critical Function: Our efforts are foundational to the insights our clients derive across their entire lifecycle, from employee experience to market research. By securing vital data, we empower organizations to bridge the digital divide and roll out intuitive products globally.
- Technical Expertise: Though we have a specialized focus on security, our work is highly technical and innovatively driven, rooted in complex problem-solving.
- Significant Impact: By ensuring robust security and data protection, our team significantly enhances the quality and trustworthiness of Qualtrics' offerings, reinforcing customer confidence.
- Growth-Oriented Culture: We promote a learning environment where team members can work with advanced tools and methodologies, expanding their skill sets while contributing to the company’s ambitious mission.
- Wellness Reimbursement for $300 per quarter for wellness activities including gym memberships, spa massages, workout equipment, meditation apps, and much more.
- $1800 Experience bonus to be used for an “Experience” of your choosing
- Amazing QGroup Communities; MOSAIQ, Green Team, Qualtrics Pride, Q&Able, Qualtrics Salute, and Women’s Leadership Development, which exist as places for support, allyship, and advocacy.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Category:
Security Engineering Jobs
Tags: Cloud Incident response Pentesting Polygraph Product security Security assessment Security strategy Strategy Vulnerabilities Vulnerability management
Perks/benefits: Career development Medical leave Salary bonus Signing bonus Startup environment Team events Wellness
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Cloud Security Engineer jobsInformation Systems Security Officer jobsInformation System Security Officer jobsInformation Security Manager jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsInformation Security Specialist jobsSecurity Consultant jobsSecurity Specialist jobsSenior Penetration Tester jobsIT Security Engineer jobsSenior Information Security Analyst jobsSenior Cyber Security Engineer jobsCyber Security Specialist jobsChief Information Security Officer jobsPrincipal Security Engineer jobsStaff Security Engineer jobsInformation System Security Officer (ISSO) jobsCloud Security Architect jobsIT Security Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsThreat Intelligence Analyst jobsCybersecurity Consultant jobsSystems Administrator jobs
GDPR jobsSaaS jobsEncryption jobsForensics jobsTop Secret jobsEDR jobsRMF jobsMalware jobsSDLC jobsSplunk jobsIDS jobsSQL jobsBash jobsIPS jobsIntrusion detection jobsDocker jobsCompTIA jobsDoDD 8570 jobsITIL jobsFinance jobsTerraform jobsOWASP jobsCRISC jobsTCP/IP jobsVPN jobs
Threat detection jobsActive Directory jobsClearance Required jobsGIAC jobsIT infrastructure jobsBanking jobsSANS jobsUNIX jobsAnsible jobsHIPAA jobsJavaScript jobsPolygraph jobsJira jobsDNS jobsOSCP jobsMITRE ATT&CK jobsMachine Learning jobsSOX jobsGCIH jobsData Analytics jobsSOC 2 jobsCCSP jobsSecurity strategy jobsCISO jobsCyber defense jobs