Product Security Engineer
Software Guidance & Assistance, Inc. (SGA, Inc.) · San Jose, CA · 6 days ago
On-siteEngineeringFull-time
Responsibilities
- Act as the technical security point-of-contact when partnering directly with engineering product teams
- Strategically prioritize the risk reduction of vulnerabilities
- Drive vulnerabilities to remediation within SLA
- Act as the lead security contact during incidents
- Own metrics and escalations, such as Time-To-Remediation and SLA adherence, to ensure visibility of engineering product team's risk posture
- Identify and implement strategic improvements and paved road solutions to improve resilience
Requirements
- Vulnerability Management / Triage
- Vulnerability Risk Assessment
- Vulnerability Incident Response
- Knowledge of application security vulnerabilities (OWASP Top 10) and mitigation techniques
- Knowledge of infrastructure vulnerabilities, mitigation techniques, and tooling (e.g. Spotlight, Crowdstrike, Rapid7 Nexpose)
- Dependability: Meets commitments, works independently, accepts accountability, handles change, sets personal standards, stays focused under pressure
- Strong understanding of common security concepts that support root-cause analysis to make data-driven decisions on vulnerability patterns and trends
Skills
- Knowledge of application security vulnerabilities (OWASP Top 10) and mitigation techniques
- Knowledge of infrastructure vulnerabilities, mitigation techniques, and tooling (e.g. Spotlight, Crowdstrike, Rapid7 Nexpose)
- Strong understanding of common security concepts that support root-cause analysis to make data-driven decisions on vulnerability patterns and trends
Benefits
- Solutions provider driven to stand out
- Women-owned business
- Match consultants like you to more than 1,000 engagements each year
- Core values: customer service, employee development, and quality and integrity in everything we do
Pay
TBD
Schedule
Remote in San Jose, CA or Mclean, VA