Product Security Engineers

Overview

Working at Atlassian

Atlassians can choose where they work – whether in an office, from home, or a combination of the two. That way, Atlassians have more control over supporting their family, personal goals, and other priorities. We can hire people in any country where we have a legal entity. Interviews and onboarding are conducted virtually, a part of being a distributed-first company.

Responsibilities

JOB DUTIES:                  EVALUATE SUBMISSIONS FROM SECURITY RESEARCHERS TO BUG BOUNTY PROGRAM, ASSESS THE IMPACT OF EACH VULNERABILITY, AND COMMUNICATE WITH THE RESEARCHER COMMUNITY TO HELP OBTAIN ADDITIONAL DETAILS THAT MAY BE HELPFUL TO ENGINEERING TEAMS AS THEY WORK TO REMEDIATE THE ISSUES. DRIVE IMPROVEMENT TO THE POLICIES, PROCESSES, AND AUTOMATION USE TO MAKE BUG BOUNTY PROGRAMS EFFECTIVE AND ENSURE TO GET THE MOST ACCURATE INFORMATION ABOUT EACH VULNERABILITY TO THE PROPER ENGINEERING TEAM AS QUICKLY AS POSSIBLE. WORK ON VULNERABILITY MANAGEMENT IMPROVEMENTS ON PROCESSES, POLICIES AND STANDARDS. MAKE SURE THE COMPANY'S PRODUCTS AND SERVICES ARE SAFE AND SECURE, THE INTERNAL VULNERABILITY MANAGEMENT WORKFLOW IS ACCURATE AND UP TO DATE. IDENTIFY VULNERABILITIES AT SCALE AND HELP ENGINEERING TEAMS SYSTEMATICALLY REMEDIATE THEM. WORK ON SECURING OPEN-SOURCE SUPPLY CHAIN, INTERACT WITH SOME OF THE WORLD’S LEADING SECURITY RESEARCHERS THROUGH BUG BOUNTY PROGRAM, AND BUILD CUTTING EDGE TOOLS TO HELP IDENTIFY AND REMEDIATE VULNERABILITIES AT SCALE. WORK WITH WEB APPLICATION SECURITY AND A STRONG ABILITY TO WORK WITH COLLEAGUES TO DEVELOP AND BUILD SOLUTIONS TO HELP US SCALE IN ORDER TO BE SUCCESSFUL IN THIS ROLE. READ AND WRITE CODE. WORK ON WEB APPLICATIONS IN ANY MODERN LANGUAGE (JAVA, PYTHON, ETC.). CONDUCT INDEPENDENT RESEARCH.

Qualifications

MINIMUM EDUCATION: BACHELOR’S DEGREE IN COMPUTER SCIENCE, CYBERSECURITY OR RELATED FIELD.

MINIMUM EXPERIENCE: 24 MONTHS OF EXPERIENCE WORKING AS APPLICATION SECURITY ENGINEER, PRODUCT SECURITY ENGINEER, OR PENETRATION TESTER, INCLUDING EXPERIENCE IN APPLICATION SECURITY TOOLING SUCH AS BURPSUITE PRO, POSTMAN, DOCKER, COMMAND LINE INTERFACE (CLI) TOOLS, NMAP, AND METASPLOIT; UNDERSTANDING AND CODING COMMON PROGRAMMING LANGUAGES SUCH AS JAVA, PYTHON, OR GO; PENETRATION TESTING, VULNERABILITY ASSESSMENT, COMPOSING AND GENERATING VULNERABILITY REPORTS; ADMINISTERING AND MANAGING JIRA PROJECT; DATA ANALYSIS AND DATA VISUALIZATION TOOLING SUCH AS TABLEAU AND DATABRICKS; CODE VERSIONING TOOLS SUCH AS BITBUCKET CLOUD AND GITHUB.

SPECIAL REQUIREMENTS: MUST PASS TECHNICAL INTERVIEW. 

OFFERED WAGE:            $150,700 - $206,000 PER YEAR

Our perks & benefits

Atlassian offers a wide range of perks and benefits designed to support you, your family and to help you engage with your local community. Our offerings include health and wellbeing resources, paid volunteer days, and so much more. To learn more, visit go.atlassian.com/perksandbenefits.

About Atlassian

At Atlassian, we're motivated by a common goal: to unleash the potential of every team. Our software products help teams all over the planet and our solutions are designed for all types of work. Team collaboration through our tools makes what may be impossible alone, possible together.

We believe that the unique contributions of all Atlassians create our success. To ensure that our products and culture continue to incorporate everyone's perspectives and experience, we never discriminate based on race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. All your information will be kept confidential according to EEO guidelines.

To provide you the best experience, we can support with accommodations or adjustments at any stage of the recruitment process. Simply inform our Recruitment team during your conversation with them.

To learn more about our culture and hiring process, visit go.atlassian.com/crh.