Jobs · Information Technology · Massachusetts

Product Security Engineer

Sea Machines Robotics · Boston, MA · Today
On-siteInformation TechnologyFull-time

Responsibilities

  • Conduct vulnerability assessments and penetration testing on applications, systems, and network infrastructure
  • Design, harden, and maintain network security architecture, including segmentation, VPN/mesh networks (e.g., Tailscale) and firewalls across vessel-side and cloud-side systems
  • Secure and harden our AWS cloud infrastructure, including IAM policies, VPC/network configuration, and cloud-native security tooling
  • Integrate and manage SAST and SCA tooling (e.g., SonarQube) into the development pipeline to catch vulnerabilities and dependency risks pre-deployment
  • Create and maintain security monitoring using observability platforms such as Datadog, including alerting on anomalous network and application behavior
  • Integrate security gates into CI/CD pipelines (Jenkins), working with development teams to embed security best practices into the SDLC
  • Monitor and respond to security incidents and breaches, with particular attention to network-layer threats
  • Develop and maintain security tools and frameworks
  • Create and maintain comprehensive documentation related to security practices and protocols
  • Provide security and software development support to the DevOps team

Qualifications and Skills

  • Bachelor's degree in Computer Science, Cybersecurity, or a related field; Master's degree preferred
  • 3+ years working in Product Security and CI/CD or software development
  • Strong, demonstrable networking security experience — VPNs, routing, and firewalls
  • Strong hands-on experience with AWS (IAM, VPC, cloud-native security services)
  • Hands-on experience with SAST/SCA tools (SonarQube or equivalent) and integrating them into CI/CD (Jenkins or equivalent)
  • Experience with observability/monitoring platforms (Datadog or equivalent) for security use cases
  • Deep understanding of software-security principles and cloud-infrastructure security
  • Strong knowledge of security protocols, cryptography, secure coding practices, and OAuth/auth protocols
  • Experience with security tools such as IDS/IPS, firewalls, and vulnerability scanners
  • Proficiency in programming languages such as Python, Java, C++, or similar
  • Proficiency in common operating systems (Linux, Windows) and deep familiarity with networking protocols
  • Understanding of compliance and security frameworks (e.g., CMMC, CIS Benchmarks)
  • Excellent problem-solving skills and attention to detail
  • Strong communication skills and ability to work collaboratively across teams
  • Comfortable with a fast-paced development schedule
  • Experience collaborating with other functional teams to define requirements and goals
  • Comfortable with a fast-paced development schedule

Similar jobs

Product Security Engineer

ID.meSan Francisco Bay Area· 3 wk ago
Information Technology$168k–$200k/yrapply on job-boards.greenhouse.io

Product Security Engineer

Software Guidance & Assistance, Inc. (SGA, Inc.)San Jose, CA· 1 wk ago
Engineeringapply on www2.jobdiva.com