Senior Product Security Engineer
About Flexport:
At Flexport, we believe global trade can move the human race forward. That’s why it’s our mission to make global commerce so easy there will be more of it. We’re shaping the future of a $8.6T industry with solutions powered by innovative technology and exceptional people. Today, companies of all sizes—from emerging brands to Fortune 500s—use Flexport technology to move more than $19B of merchandise across 112 countries a year.
The recent global supply chain crisis has put Flexport center stage as we continue to play a pivotal role in how goods move around the world. At a valuation of $8 billion, we are proud to have the support of the best investors in the game who believe in our mission, solutions and people. Ready to tackle global challenges that impact business, society, and the environment? Come join us.
The opportunity:
Flexport is looking for a Staff Product Security Engineer to help Flexport establish itself as the most trusted company in the global trade ecosystem. As a Product Security Engineer, you have a deep understanding of product development and strategy, and are able to quickly identify and communicate security risks to diverse audiences while offering alternative solutions.
You will:
- Build strong relationships with engineering managers and champion security by design.
- Lead security engineering reviews for new product features and enhancements.
- Engage in domain-specific threat modeling and attack surface analysis/reduction
- Develop security services consumed by product teams across our global infrastructure.
- Evangelize security across the product and engineering organizations.
- Collaborate with internal product and engineering stakeholders on addressing systemic security issues.
- Define Security Architecture for Flexport products and services, and assist with the planning and implementation of risk mitigating security solutions
- Partner with others in the Security organization to drive the security champions and product security training programs.
- Work closely with cross functional teams to conceive security strategies and features that will help keep Flexport’s customer data safe.
- Create a culture of transparency, information sharing, and collaboration through the development of excellent documentation, mentoring of junior team members, and living Flexport’s values.
You should have:
- Bachelor’s degree in Computer Science or related field
- 5+ years of security engineering experience supporting product development and engineering teams in a fast-paced global environment.
- 4+ years of software development experience building security tools in languages such as Go, Java, Python, or Ruby.
- Strong knowledge of CI/CD and automation tools
- Identity management and identity federation (SAML, Oauth, SCIM, XACML)
- Experience performing code audits on internal and open source libraries for inclusion in our products.
- Experience with IaaS cloud infrastructure, Kubernetes, containers, and service-oriented architectures.
- Excellence in problem-solving, strategic thinking, and collaboration with cross-functional teams.
- Strong written and verbal communication skills and ability to connect with empathy when delivering constructive feedback regarding security matters to engineers and product designers.
- A "compliance first" attitude to keep our regulators happy and enthusiastic about Flexport since we operate in a heavily regulated industry.
#LI-Hybrid
The US base salary range for this position: (exclusive of bonus, equity and benefits.)
$183,000 - $229,000 USD
Apply for this job
*
indicates a required field