Product Security Engineer
Description For Product Security Engineer
Wave is a forward-thinking financial technology company dedicated to empowering small businesses with comprehensive financial management solutions. As a Product Security Engineer, you'll play a crucial role in safeguarding the company's products throughout their lifecycle. The position combines technical expertise in security with strategic thinking, requiring skills in threat modeling, secure development practices, and incident response.
The role offers a unique opportunity to work with cutting-edge security technologies while implementing best practices in software development security. You'll be responsible for performing threat assessments, implementing security automation, and ensuring compliance with industry standards like AICPA SOC2, HIPAA, and PCI DSS.
Wave offers an inclusive and flexible work environment, with the option to work remotely or from their Toronto office. The company is recognized as one of Canada's Top Ten Most Admired Corporate Cultures and Great Places to Work, particularly in categories including Technology, Mental Health, and Inclusion.
The ideal candidate will have 3+ years of experience in Product Security, strong technical skills in Python, React, and Django Rest Framework, and a deep understanding of security frameworks and methodologies. You'll work closely with cross-functional teams, providing security guidance and mentorship while contributing to the company's mission of supporting small businesses.
Benefits include comprehensive health coverage, educational allowances, mentorship opportunities, and various office perks. Wave's commitment to diversity and inclusion creates an environment where voices matter and the best ideas win, regardless of their source.
Responsibilities For Product Security Engineer
- Perform threat modelling application design solutions and vulnerability assessments
- Implement security tooling and automation to scale the Product Security team's practices
- Monitor and address security incidents impacting Wave products
- Design and implement security controls and protections within the product via automation
- Provide security training and awareness for developers and stakeholders
- Maintain documentation of security controls and processes
- Conduct code reviews and penetration testing
Requirements For Product Security Engineer
- 3+ years of experience in a Product Security role
- Bachelor's degree in Computer Science, Cybersecurity, or related field
- Experience leading architectural changes
- Strong understanding of threat modelling methodologies
- Experience with AWS, Azure and their capabilities
- Experience with OWASP Top 10, SAST/DAST tools, and CI/CD pipelines
- Fluency in Python, React, and Django Rest Framework
- Experience with manual source code review
- Excellent communication and interpersonal skills
- Strong organizational and time-management abilities
Benefits For Product Security Engineer
- Educational allowances
- Health & wellness benefits
- Office perks
- Flexible work location
- Mentorship opportunities
Jobs Related To Wave Product Security Engineer
