Remote Security Engineer

Summary

Join WorkOS's fast-growing security team as an experienced security engineer. You will play a crucial role in defining and coordinating security efforts across the company, influencing long-term strategy while being hands-on. This role involves mentoring engineering teams, performing security reviews, and scaling security posture through automation and tooling. You will also contribute to recruiting and assessing future team members. The position requires 5+ years of experience in product security engineering at a cloud product company and proven experience in building security programs and tooling. WorkOS offers competitive pay, substantial equity grants, comprehensive healthcare, 401k matching, wellness allowances, generous PTO, and remote work flexibility.

Requirements

• 5+ years of experience as a product security engineer at a cloud product company
• Previously built critical elements of a security program including processes (vulnerability management, bug bounty, etc.) and tooling (SCA, SAST, DAST, CNAPP, etc.)
• Experience working on small teams in fast-paced environments
• A growth mindset, high emotional intelligence, and excellent written and verbal communication skills
• Ability to complete rigorous security-focused code reviews in React and TypeScript
• Software development experience to make code source code changes and build out automation
• Proven experience performing security design reviews for complex applications, including distributed systems, APIs, and cloud services

Responsibilities

• Operate with a high degree of independence and autonomy to remediate risks across our software and infrastructure
• Advocate for, and lead security projects from inception through to completion
• Be a product security champion. You will mentor our product engineering teams, and provide them with knowledge, support and guidance
• Engage with all product engineering teams to perform security reviews and assessments, ensuring our products and features are secure by default
• Scale our security posture by empowering engineering teams through automation, tooling, patterns and training
• Produce clear and concise written reports, plans, findings, risks and recommendations for remediation
• Collaborate professionally and effectively with teammates, security vendors, and customers
• Know when to step in and out of a leadership role and share the spotlight: you lead the charge while elevating others
• Help recruit and assess future security engineering team members

Preferred Qualifications

Experience with authentication and identity standards and implementations

Benefits

• Competitive pay
• Substantial equity grants
• Healthcare insurance (Medical, Dental and Vision) for you and your family
• 401k matching
• Wellness and fitness monthly allowances
• PTO + paid holidays + unlimited sick leave
• Autonomy and flexibility with remote work
• Parental leave
• Paid-time-off
• Fully remote working arrangements