Principal Product Cybersecurity Engineer
Tasks
- Collaborate with incident response teams
- Conduct container scanning
- Conduct dependency scanning
- Conduct secure design reviews
- Contain product related security events
- Define security requirements
- Design AWS security architectures
- Detect secrets in builds
- Drive continuous improvement in product security maturity
- Embed security into medical device SaMD SDLC
- Establish SBOM practices
- Govern third party components
- Harden container images
- Implement security logging monitoring threat detection
- Integrate security testing into CI/CD pipelines
- Investigate security events
- Manage runtime security protections
- Mentor engineers on secure design
- Partner with quality and regulatory teams on cybersecurity documentation
- Perform DAST
- Perform SAST
- Perform threat modeling
- Remediate vulnerabilities in device software and cloud services
- Review cloud services and APIs architecture
- Review device software and firmware architecture
- Review mobile and web applications security
- Scan container images
- Secure AWS hosted product backends
- Serve as product security subject matter expert
- Sign build artifacts
- Sign container images
- Support post market cybersecurity activities
- Support release integrity controls
- Support vulnerability disclosure and security advisories
- Triages vulnerability intake
- Validate security controls authentication authorization encryption data protection
Perks/Benefits
- 401k employer match
- Employee stock purchase plan
- Flexible time off
- Health and welfare benefits
- Paid Holidays
- Paid sick time
- Parental leave
- Tuition reimbursement
Skills/Tech-stack
API Security | AWS IAM | AWS KMS | AWS Lambda | Amazon ECS | Amazon RDS | Amazon S3 | Amazon VPC | Artifact signing | Authentication | Authorization | CI/CD | CIEM | CSPM | CSPM Tools | Cloud Workload Protection | CloudTrail | Container Image | Container Scanning | Container hardening | Container image signing | DAST | Data Protection | Dependency Scanning | DevSecOps | Encryption | GuardDuty | Image signing | Incident Response | Incident investigation | Infrastructure as Code | OWASP API | OWASP API Security | OWASP Top | OWASP Top 10 | SAST | SBOM | SBOM governance | SBOM management | Secrets detection | Secure SDLC | Terraform | Threat modeling | Top 10 | Veracode | Vulnerability Management | Workload Protection | “as-code”
Education
N/A
Regions
Countries
States
Cities
Related jobs
-
Security Engineer, Wearables (RL) USD 177K-251KAI Automation | AWS | Agent Orchestration | C# | C++Senior-level Full TimeBurlingame, CA5h ago
-
Network Automation | Network Security | Network routing | Risk Management | Security ArchitectureSenior-level Full TimeAustin, TX, USA; Sunnyvale, CA, USA5h ago
-
Data Engineer, Infrastructure FinOps USD 146K-194KAPI Design | BigQuery | CI/CD | CloudFormation | DBTMid-level Full TimeCosta Mesa, California, United States15h ago
-
Application Security Engineer USD 102K-219KAWS | Application Security | Application Security Testing | Azure | Burp SuiteMid-level Full TimeTysons Corner, VIRGINIA, United States17h ago
-
Lead Software Engineer - Gov Cloud / AI USD 130K-195KAKS | ARM | ASP.NET | Ansible | AzureOn-call rotation | U.S. government clearance supportSenior-level Full TimeVA, United States18h ago
-
Principal Security Engineer, Infrastructure Security USD 190K-263KAWS | CI/CD | Cloud IAM | Cloud Security | Cloud Security PostureSenior-level Full TimeUnited States | Remote R19h ago
-
Sr. DevOps Engineer (DevOps Engineer IV) - REMOTE USD 120K-150KACR | App Gateway | App Service | Application Insights | AzureCareer development | Casual dress code | Educational assistance | Employee referral bonus | Employee resource groupsSenior-level Full TimePittsburgh, Pennsylvania, United States R20h ago
-
Sr Lead Security Engineer - Workforce USD 177K-215KAWS | Access Management | Ansible | Azure | BitbucketBackup childcare | Financial coaching | Health care coverage | Mental health support | On-site health and wellness centersSenior-level Full TimeWilmington, DE, United States21h ago
-
AWS | Access Management | Ansible | Azure | CIS ControlsEntry-level Full TimeDallas, TX, United States22h ago
-
Security Engineer, Bridge USD 229K-343KAccess Control | Audit compliance | CI/CD | Incident Response | Secrets management401k plan | Company bonus | Equity | Medical, dental, vision benefits | Sales commissionsSenior-level Full TimeSF, New York, Seattle, Dublin22h ago
-
Senior Application Security Engineer (Remote) USD 192K-240KAWS | Application Security Testing | Bug Bounty | Code review | Design reviewLearning sessions | Mentorship | Remote workSenior-level Full TimeUnited States R23h ago
-
Distinguished Engineer, End-to-End Security Architect USD 198K-279KAPI Security | Access Control | Access Management | Certificate Lifecycle Management | Certificate lifecycle401k retirement plan | Commuter benefits | Disability insurance | Employee assistance programme | Flexible spending accountsSenior-level Full TimeAustin, Texas, United States; US - …1d ago
-
Senior Application Security Engineer USD 190K-273KAI Security | Access Control | Application Security | Authentication | AuthorizationSenior-level Full TimeRemote, Canada; Remote, United States R1d ago
-
Platform Engineer USD 123K-201KAPI Security | AWS | Agile | Azure | CI/CD401k | Company stock options | Conference support | Dental insurance | Disability insuranceMid-level Full TimeRemote, United States R1d ago
-
Sr IAM Security Professional USD 100K-150KAWS Directory | AWS Directory Service | Access Management | Active Directory | Application troubleshootingEducation reimbursement | Flexible work arrangements | Maternity & paternity leave | Medical, dental, and vision coverage | Paid time offSenior-level Full TimeUnited States1d ago
-
Senior Security Engineer (Cyber Resiliency) USD 130K-150KAutomation | Cloud Security | Compliance | Endpoint Security | ForensicsCoworking stipend | Health insurance coverage | Paid parental leave | Phone and internet stipend | Remote-first cultureSenior-level Full TimeUnited States - Remote R1d ago
-
Senior Security Engineer - Red Team USD 119K-261KAdversarial Tactics | Anomaly Detection | Application Security | Azure | Cloud SecuritySenior-level Full TimeRedmond, WA, US1d ago
-
Senior Info Sec Engineer USD 128KAccess Management | Active Directory | Cybersecurity | Firewalls | Functional testingSenior-level Full TimeMaryland-Silver Spring1d ago
-
Senior Product Security Engineer USD 157K-184KAWS | Admission controllers | CI/CD | CNAPP | CSPMCoworking stipend | Flexible time off | Health insurance covered | Paid parental leave | Phone and internet stipendSenior-level Full TimeUnited States - Remote R1d ago
-
Senior-level Full TimeHampton, Virginia, United States1d ago
-
Security Engineer, Investigations - i3E USD 137K-208KAdvanced Persistent Threats | Adversary tactics | Agent Orchestration | Artificial Intelligence | Big DataMid-level Full TimeBellevue, WA | Menlo Park, CA …1d ago
-
Automation | Cybersecurity | Data Security | Network Routing Protocols | Network SecuritySenior-level Full TimeAustin, TX, USA; Sunnyvale, CA, USA1d ago
-
AI ML Vulnerability Testing | AI Security | AI red teaming | AI/ML | Adversarial AttacksSenior-level Full TimeAustin, TX, USA; Los Angeles, CA, …1d ago
-
Senior-level Full TimeWashington, DC, United States1d ago
-
Senior-level Full TimeWashington, DC, United States1d ago