Senior Staff Product Security Engineer

Summary

Join our team of cybercrime fighters at SentinelOne and become a Senior Staff Product Security Engineer to implement and scale the development of our Application Security & Product Security program.

Requirements

• Minimum of 5 years of experience in product security or a related field
• Strong understanding of security principles, vulnerabilities, and attack vectors
• Proven experience in conducting threat modeling and risk assessments
• Experience working with SAST, SCA, DAST, IAST, IaC tools
• Experience with secure coding practices and security testing methodologies
• Experience in incident response and remediation processes
• Excellent communication and collaboration skills
• Ability to work independently and as part of a team
• Strong analytical and problem-solving skills
• Passion for security and a desire to make our products the most secure in the industry

Responsibilities

• Threat modeling and risk assessment: Identify potential security threats and vulnerabilities in our products, applications, and infrastructure
• Security architecture and design: Review and contribute to the design of secure systems and architectures, considering both technical and business requirements
• Code review and security testing: Conduct thorough code reviews and implement security testing methodologies to identify and address vulnerabilities in software
• Incident response and remediation: Lead the investigation and response to security incidents, including vulnerability patching, forensics, and communication with stakeholders
• Security awareness and training: Develop and implement security awareness programs for developers, product managers, and other stakeholders
• Stay up-to-date on the latest security threats and trends: Continuously research and learn about emerging security vulnerabilities and best practices
• Communicate effectively: Collaborate with cross-functional teams, including engineering, product, and leadership, to communicate security risks and solutions effectively
• Contribute to the development of security policies and procedures: Help define and implement security policies and procedures for the organization

Preferred Qualifications

• Experience in cloud security and containerization technologies
• Agile development environment veteran
• Incident response and forensics black belt
• Security certifications like CISSP, CISA, or CEH

Benefits

• Salary from 5000 EUR/month
• Yearly variable target bonus depending on the performance of the company, paid out in 2 installments
• Flexible working hours & Full remote within Slovakia; optional membership in Regus co-working spaces; in Czechia we also have offices in Prague or Brno
• Generous employee stock plan in the form of RSUs (restricted stock units) not options; 4 years vesting with 1 year cliff and then quarterly
• Meal Allowance (maximum value of the employer’s contribution per day: €4.29)
• Wellbeing Allowance (€120/month)
• Flexible Time Off (on top of the standard 5 weeks of vacation)
• Flexible Paid Sick Days
• Fully Paid Short Term Sick/Short Term Nursing Leave
• Global gender-neutral Parental Leave (16 weeks, beyond the leave provided by the local laws) & Grandparent Leave
• Volunteering paid day off & Additional paid Company holidays off
• Pension insurance contribution
• Premium Life Insurance covered by S1
• High-end MacBook or Windows laptop, Home-office-setup gear & on top of that additional WFH Allowance
• Udemy Business platform for Hard/Soft skills Training, internal mentoring 'MentorOne' & Support for your further educational activities/trainings
• Above-standard referral bonus
• Yearly bonus depending on the performance of the company
• Optional company events for those who like to meet outside of work too - mostly in Czechia expensed as business trip (sport, BBQ, charity etc.)