
Product Security Engineer
Mattermost is seeking a results-driven and analytical Product Security Engineer to help ensure the security of our product and services across the company. As part of our Security team, you will work closely with a globally distributed team to support all aspects of the software development life cycle. You will be responsible for the implementation of additional application security tooling and/or processes across the company, coordinating with relevant stakeholders, gathering requirements, and leading the implementation.
Responsibilities Include:
- Support the application vulnerability management and mitigation approaches
- Conduct application security reviews through manual code review or static/dynamic code analysis
- Engage in threat modelling and design reviews of in-house developed software components
- Provide security guidance and training to internal development teams
- Triage SCA findings and support internal development teams in SCA findings remediation
- Improve and/or automate existing processes to increase efficiency
Requirements:
- BS in Computer Science, Cybersecurity, Software Engineering, or a related technical field, or equivalent experience, with 3+ years of relevant experience in application security, secure software development, or penetration testing
- Understanding of web application security and secure development practices
- Familiarity with common security libraries, security controls, and common security flaws
- Experience with static/dynamic analysis, and common exploit methods
- Experience in one or more programming languages, ideally Go or JavaScript
- Excellent written and verbal communication skills
- Demonstrable teamwork skills and resourcefulness
Preferences:
- Experience working in open source communities
- Experience running a bug bounty programme
- Experience with Threat Modelling applications
- Certifications in the domain of penetration testing or application security (e.g., OSCP, OSWE, GWAPT, etc.)
- Experience with Electron, React, or React Native
- Participation in Bug Bounties, CTFs, or similar activities
Mattermost takes a market-based approach to pay and pay may vary depending on your location. The successful candidate’s starting pay will be determined based on job-related skills, experience, qualifications, work location, and market conditions. These ranges may be modified in the future.
Create a Job Alert
Interested in building your career at Mattermost? Get future opportunities sent straight to your email.
Apply for this job
*
indicates a required field