Product Security Engineer
Full TimeJob Overview
Shape the Future of Work with Eptura
At Eptura, we're not just another tech company—we're a global leader transforming the way people, workplaces, and assets connect. Our innovative worktech solutions empower 25 million users across 115 countries to thrive in a digitally connected world. Trusted by 45% of Fortune 500 companies, we're redefining workplace innovation and driving success for organizations around the globe.
Job Description
As a Product Security Engineer, you will play a key role in building and maintaining our security program. You’ll work hands-on with modern security tools and collaborate with senior engineers and cross-functional teams to protect our platforms and data. This position is ideal for someone eager to deepen their expertise and advance within the product security service line.
Job Description
As a Product Security Engineer, you will play a key role in building and maintaining our security program. You’ll work hands-on with modern security tools and collaborate with senior engineers and cross-functional teams to protect our platforms and data. This position is ideal for someone eager to deepen their expertise and advance within the product security service line.
Responsibilities
Implement and Operate Security Technologies
- Implement and operate security technologies (SAST, DAST, SCA, API, container, and cloud security posture management).
- Support the implementation and optimization of security engineering processes and tools.
- Collaborate with Development and DevOps teams to integrate security into the software development lifecycle (SDLC) and CI/CD pipelines.
Drive Vulnerability Management
- Manage the application vulnerability lifecycle. Oversee the entire process of handling application vulnerabilities from receiving vulnerability reports to tracking resolution.
- Assist with conducting penetration testing and vulnerability assessments; assist in identifying and remediating security issues.
- Act as the main point of contact for external service providers related to vulnerability management and penetration testing, ensuring smooth communication and collaboration.
- Coordinate with stakeholders to develop and implement action plans and maintain milestone tracking until completion.
Risk Assessment and Threat Modeling
- Participate in threat modeling and risk assessments for business systems.
- Assist with incident response activities and root cause analysis for security events.
Communication and Collaboration
- Work closely with senior engineers, product managers, and other stakeholders to ensure security best practices are followed.
- Communicate findings and recommendations effectively to technical and non-technical audiences.
Continuous Learning and Industry Awareness
- Contribute to security documentation, standards, and training initiatives.
- Stay current with the latest security trends, threats, and technologies.
- Participate in ongoing learning and professional development in product security and cloud-native security.
About You
- 3-5+ years of combined experience in application or product security and other cross functional areas
- Bachelors or Master’s Degree are optional but preferred
- Industry certifications are not required, but highly preferred (OSCP, CEH, GPEN, etc.)
- Must be a U.S. citizen, residing in the U.S. for FedRAMP security clearance requirements