Senior Product Security Engineer

Job Description

Tide is seeking a Senior Product Security Engineer to join its Security Engineering team. This team is divided into Product Security, Threat Detection & Response, and Identity. The Product Security team focuses on application and cloud security, aiming to protect Tide's products through secure design reviews, threat modeling, and penetration testing.

The ideal candidate will be passionate about security and resilient software development, with a knack for identifying vulnerabilities in web and mobile applications. They will collaborate with engineering teams to strategically remediate these issues and effectively communicate security concerns to various stakeholders.

Responsibilities include:

• Proactively hunt for vulnerabilities in mobile and web applications.
• Secure cloud-native applications, ensuring consistent application of security best practices.
• Guide developers in secure design principles through threat modeling.
• Remediate vulnerabilities via strategic initiatives, patches, or actionable tickets.
• Act as a subject matter expert in Application Security.
• Mentor junior engineers to elevate security standards across the organization.
• Integrate security into CI/CD pipelines using automation and security tools.

Requirements:

• Extensive knowledge of AppSec topics.
• Proficiency with Burp Suite (or similar attack proxy).
• Excellent communication skills to articulate vulnerabilities persuasively.
• Experience securing cloud-native applications.

Tide offers:

• A flexible workplace model supporting both in-person and remote work.
• A commitment to diversity and inclusion.