Senior Security Engineer

At Anaplan, we are a team of innovators who are focused on optimizing business decision-making through our leading scenario planning and analysis platform so our customers can outpace their competition and the market.

What unites Anaplanners across teams and geographies is our collective commitment to our customers’ success and to our Winning Culture.

Our customers rank among the who’s who in the Fortune 50. Coca-Cola, LinkedIn, Adobe, LVMH and Bayer are just a few of the 2,400+ global companies that rely on our best-in-class platform.

Our Winning Culture is the engine that drives our teams of innovators. We champion diversity of thought and ideas, we behave like leaders regardless of title, we are committed to achieving ambitious goals and we have fun celebrating our wins.

Supported by operating principles of being strategy-led, values-based and disciplined in execution, you’ll be inspired, connected, developed and rewarded here. Everything that makes you unique is welcome; join us and be your best self!

About the Role 

As a Product Security Senior Engineer, you will help shape and drive critical security initiatives within Anaplan. You’ll serve as a technical leader for product teams, advise on secure architecture, and mentor more junior engineers in security best practices. 

Individual Contributor Focus: 

• Operates independently on broader or more complex security projects. 

• Communicates with cross-functional stakeholders and can “sell” security solutions at the project or product-line level. 

• Guides junior engineers but has no direct people management responsibilities. 

Responsibilities 

• Secure Architecture & Design: Collaborate with engineering leads and architects to integrate advanced security controls and patterns into new and existing product features. 

• Threat Modeling & Advanced Assessments: Conduct deep-dive threat modeling, penetration test scoping, and security risk reviews. 

• Leadership & Mentorship: Provide technical guidance to junior security engineers, championing secure coding and DevSecOps practices across multiple teams. 

• Incident Handling: Lead major security incident investigations, coordinate with internal teams, and communicate outcomes effectively to stakeholders. 

Qualifications 

• Hands-on experience in product/application security, demonstrating increasing responsibility. 

• Technical Expertise: Strong knowledge of secure software development practices, containerization (Docker, Kubernetes), and cloud services (AWS, GCP, or Azure). 

• Influential Communication: Capable of articulating security risks and benefits, influencing engineering decisions, and driving strategic security improvements. 

Nice to Have 

• Proven track record of collaborating on complex cross-functional security projects. 

• Advanced certifications (e.g., OSCP, CISSP, GWEB, GIAC). 

• Experience with zero-trust, identity & access management, or cryptographic solutions. 

Our Commitment to Diversity, Equity, Inclusion and Belonging 

Build your career in a place that thrives on diversity, equity, inclusion, and belonging. We believe in a hiring and working environment where all people are respected and valued, regardless of gender identity or expression, sexual orientation, religion, ethnicity, age, neurodiversity, disability status, citizenship, or any other aspect which makes people unique. We hire you for who you are, and we want you to bring your authentic self to work every day! 

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive equitable benefits and all privileges of employment. Please contact us to request accommodation. 

Fraud Recruitment Disclaimer 

It has come to our attention that fraudulent and fictitious job opportunities are being circulated on the Internet. Prospective candidates are being contacted by certain individuals, mainly through telephone calls, emails and correspondence, claiming they are representatives of Anaplan. The main purpose of these correspondences and announcements is to obtain privileged information from individuals.  

Anaplan does not: 

• Extend offers to candidates without an extensive interview process with a member of our recruitment team and a hiring manager via video or in person.  
• Send job offers via email. All offers are first extended verbally by a member of our internal recruitment team whenever possible, and then followed up via written communication. 

All emails from Anaplan would come from an @anaplan.com email address. Should you have any doubts about the authenticity of an email, letter or telephone communication purportedly from, for, or on behalf of Anaplan, please send an email to people@anaplan.com before taking any further action in relation to the correspondence.