Senior Product Security Engineer

Company Description

Nexthink is the leader in digital employee experience management software. The company provides IT leaders with unprecedented insight allowing them to see, diagnose and fix issues at scale impacting employees anywhere, with any application or network, before employees notice the issue. As the first solution to allow IT to progress from reactive problem solving to proactive optimization, Nexthink enables its more than 1,200 customers to provide better digital experiences to more than 15 million employees. Dual headquartered in Lausanne, Switzerland and Boston, Massachusetts, Nexthink has 9 offices worldwide.

Job Description

As a scale-up experiencing rapid growth, we seek a passionate and talented Senior Product Security Engineer to join our Security Assurance team. In this role, you will play a crucial part in ensuring the security of our multi-tenant SaaS offering, cross-platform endpoint agent and protecting our customers' data.

What you'll do:

• As a core member of the Security Assurance team, you will have significant input in defining the direction and goals of the application security program.
• Champion secure coding practices and make security a seamless part of the development lifecycle.
• Provide expert guidance to product teams on secure design principles and architecture, helping them eliminate vulnerabilities early in the development process.
• Develop and implement static and dynamic analysis rules to detect weaknesses in our codebase, ensuring continuous security assessment.
• Educate and mentor developers on security best practices and privacy standards, fostering a security-first culture within the organization.
• Stay abreast of the latest security threats, vulnerabilities, and industry best practices to proactively address emerging risks.
• Collaborate effectively with various teams, including engineering, product management, and operations, to ensure alignment on security initiatives.

Qualifications

What you'll need:

• 7+ years of hands-on experience in application security, secure software development, and threat modeling, with a strong understanding of secure coding principles and common vulnerabilities.
• Hands-on experience with static and dynamic analysis tools and techniques.
• Strong foundational knowledge in software engineering, ideally with coding and software development experience to assess security within application code.
• Experience with threat modeling and risk assessment methodologies
• Knowledge of web security principles, frameworks, and common vulnerabilities.
• Excellent communication and collaboration skills, with the ability to effectively convey security concepts to both technical and non-technical audiences.
• You communicate empathetically, especially when discussing application and product security with cross-functional teams.
• You are motivated by solving complex problems, not just quick fixes.
• A constant learner, you thrive on tackling interesting and challenging problems.
• You are a humble expert with a sense of urgency and a focus on results.
• A passion for security and a desire to contribute to a secure and innovative digital workplace.
• Fluent in English, both written and spoken.

Bonus points:

• Experience with cloud security best practices, particularly in AWS.
• Familiarity with AI/ML security concepts, including data integrity in training models, adversarial attacks, and privacy issues in AI-driven applications.

#LI-Hybrid

Additional Information

We are the pioneers and trailblazers of a global IT Market Category (DEX) that is shaping the world's future, giving our customers’ IT Teams total digital visibility across their enterprise. Our innovative solutions integrate real-time analytics, automation, and employee feedback across all endpoints. This enables our IT teams to solve complex technical challenges, create ever more productive workplaces, and deliver happy, satisfied employees in the digital workplace.

With over 1000 employees across 5 continents, Nexthink operates as One Team, connecting, collaborating, and innovating to grow continuously. We call our employees ‘Nexthinkers’, and our commitment to diversity, inclusion, and equity is second to none. We currently have over 75 nationalities working with us, from all cultures and backgrounds, speaking many different languages.

If you are looking for a change and like a nice atmosphere, lots of challenges, and having fun while working, this is a great opportunity for you! Check what we offer:

• 💼 Permanent Contract and a competitive compensation package (Stock Options also included).
• 🩺 Health insurance through our partnership with ACKO, including OPD coverage for dental, vision, health check-ups, consultations, and pharmacy expenses.
• 🏡 Hybrid work model balancing office and remote work, with a structured approach for new hires to foster connections and onboarding.
• 🏖️ Flexible Hours and unlimited vacation (employees have unlimited paid time off on top of the 22 days of holidays we offer). Plus, company-paid bank holidays (12), sick days (10-30), bereavement leave (5), and 3 days per year for volunteering.
• 📚 Free access to professional training platforms to explore your interests and enhance your skills.
• 🛡️ Stay covered against accidents, bodily injuries, and disabilities with our personal accident insurance policy, providing assurance with coverage up to three times your annual CTC.
• 🍼 New mothers are entitled to up to 26 weeks of maternity leave, with the flexibility to use up to 8 weeks before the expected delivery and the remaining 18 weeks after. Birth fathers can take 4 weeks of paternity leave, while adoptive parents are eligible for 26 weeks of leave for mothers and 4 weeks for fathers.
• 💰 Under the Payment of Gratuity Act, receive gratuity at the rate of 15 days of basic pay for every completed year of service, provided the company has employed you for a minimum of 5 years. Gratuity is payable at retirement or resignation based on your last drawn basic pay.
• 📣  Bonuses for referring successful hires after three months of continuous employment.

Please note that not all the benefits listed above are available for temporary, contract, and internship roles. We recommend checking with your Recruitment Partner to ensure you have the most up-to-date information.