Senior Product Security Engineer
Description For Senior Product Security Engineer
CloudZero is seeking their first Senior Product Security Engineer to shape the security framework of their cloud cost intelligence platform. This pivotal role involves establishing and championing best-in-class security practices for their market-leading platform. The position offers a unique opportunity to make a foundational impact on security at a fast-growing company.
CloudZero is a SaaS platform focused on solving cloud cost management challenges. Founded in 2016, they've raised over $52 million from leading venture capital firms. The platform ingests billing and usage data from all cloud, SaaS, and PaaS providers, organizing it in real-time according to customers' business structures. Their mission is to make efficient innovation a reality for every cloud-driven organization.
The ideal candidate will work closely with engineering teams to design and implement secure development processes, identify and address vulnerabilities, and foster a security-first mindset. They will be responsible for driving security by design, implementing training programs, and managing vulnerabilities and risks. The role requires strong technical expertise in Python, cloud platforms, and security tools, combined with excellent communication skills.
This position offers the opportunity to work with cutting-edge cloud technology while solving complex problems of massive scale and business importance. The company values diversity and maintains an equal opportunity workplace. The role is hybrid-based in Boston, requiring the ability to participate in on-call rotations and collaborate effectively with various stakeholders.
Responsibilities For Senior Product Security Engineer
- Drive and influence security in product design and development
- Partner with software engineering team to champion secure coding practices
- Develop and integrate security automation into CI/CD pipeline
- Develop application specific security training for engineering organization
- Build and drive adoption of security champions programs
- Implement and enforce vulnerability and risk management policies
- Lead threat modeling exercises
Requirements For Senior Product Security Engineer
- 3-5+ years of Python experience
- Knowledge of AWS, GCP, Azure and Snowflake
- Expertise with application security testing tools like Burp Suite
- Strong understanding of OWASP Top 10
- Familiarity with SCA tools
- Experience securing CI/CD pipelines
- Strong understanding of secure coding practices
- Experience with threat modeling frameworks
- Exceptional communication skills
- Ability to participate in incident response team on-call rotation
Jobs Related To CloudZero Senior Product Security Engineer
