JobStash Logo
Search...

Senior Product Security Engineer

3 days agoSeniorSalary: 215K - 230KNorth AmericaRemoteFull TimeCybersecurityJobs by TRM Labs

Skills

Secure CodingRed TeamingBug BountyAuthorizationOwaspSecure SdlcScaOwasp ZapCweBurp SuitePlatform SecurityAuthenticationNode.JsAgileAwsGcpReactVulnerability ManagementPythonApplication SecurityThreat ModelingBurpsuiteThreat DragonSastDastEncryptionPenetration Testing

About the Role

You will lead application security reviews and threat modeling, perform secure code reviews, and test product security across services. You will develop automated security testing, mature the Secure SDLC, own vulnerability management and coordinate penetration testing. You will support engineers with security best practices, run the bug bounty program, bootstrap platform security initiatives, and provide just-in-time secure coding training and mentorship to engineering teams.

Requirements

  • Minimum 8 years of experience in Software Development and testing
  • BS or equivalent in Computer Science, Computer Engineering, or related field
  • Proficiency in Python, NodeJS, React
  • Strong understanding of encryption, authentication, and authorization protocols
  • Deep experience with common software flaws (e.g., OWASP and CWE) and testing methodologies
  • Experience with SAST, DAST, and SCA tools and Github advanced security
  • Professional experience with cloud providers such as GCP and AWS
  • Experience with threat modeling tools (e.g., OWASP Threat Dragon)
  • Experience with web application testing frameworks such as BurpSuite and OWASP ZAP
  • Experience triaging and remediating vulnerabilities in software packages or libraries
  • Experience conducting code security reviews regularly
  • Experience in agile-based software development roles
  • Experience with red teaming or penetration testing applications and infrastructure
  • Strong written and verbal communication skills
  • Security certifications such as OSCP, CEH, GWAPT are a plus
  • Familiarity with security frameworks (e.g., NIST SP 800-171 SSDF) is a plus

Responsibilities

  • Lead application security reviews and threat modeling
  • Perform secure code reviews and security testing
  • Develop automated testing and mature the Secure SDLC
  • Own application security vulnerability management
  • Coordinate penetration testing engagements
  • Support software engineers and product teams with security best practices
  • Develop and maintain the bug bounty program
  • Bootstrap platform security initiatives to protect data
  • Foster security champions and deliver secure code training

Benefits

  • Eligibility to participate in TRM's equity plan
TRM Labs logo
TRM Labs
Distributed

Funding

Series C ($70M)Series B ($70M)Series B ($60M)

Investors

Citi VenturesAmerican Express VenturesJP Morgan ChaseTiger Global ManagementIntersection Fintech Ventures
View jobs by TRM Labs

Similar Jobs

Optimism

Senior Sales Engineer

Optimism · 1 day ago

Ondo Finance

Security Engineer

Ondo Finance · 1 week ago

Etherealize

Security Engineer

Etherealize · 2 weeks ago

OpenEden

IT Security Lead

OpenEden · 3 weeks ago

GoMining

SecOps Engineer

GoMining · 3 weeks ago