Staff Product Security Engineer

Logo of MongoDB

MongoDB

πŸ’΅ $137k-$270k
πŸ“Remote - United States

Job highlights

Summary

Join MongoDB's Product Security organization as a Security Engineer and contribute to strengthening our products and enhancing customer experience. This role, based in Seattle or remotely in North America, involves defining security strategies, leading complex projects, and collaborating with engineering teams. You will build a developer-driven security program, conduct security assessments, and educate the engineering organization. The ideal candidate possesses extensive experience in application security and a deep understanding of security principles. MongoDB offers a comprehensive benefits package including flexible paid time off, generous parental leave, 401(k), and various other perks.

Requirements

  • 10 years of experience in application security, software security, or product security
  • Deep subject matter expertise in application security or experience across a number of additional security specialties such as detection response or cloud security
  • Demonstrated ability to identify and fix security issues through manual code review, application penetration testing, or red teaming
  • Scripting experience and ability to contribute code back to our environments
  • Comfortable leading threat modeling and being a security ambassador to other engineering teams
  • Communicate complex technical issues in a simple manner that builds trust with a variety of audiences
  • A strong sense of ownership and delivery
  • Can facilitate a conversation rather than dominate it
  • Skilled at providing collaborative, actionable feedback, not just a list of flaws

Responsibilities

  • Take ownership, define strategy, and drive improvement for parts of our program such as fuzzing, threat modeling, secrets management, or container security
  • Advocate for and lead complex security projects from inception through completion
  • Drive architecture, patterns, and processes across cloud engineering that make security the easiest path
  • Partner closely with engineering teams to design and implement security controls across our software and systems
  • Research and POC new attacks against our systems. Plan and perform product security assessments including architecture review threat modeling, code review, pen testing and general security consulting to proactively build security controls
  • Serve as a security subject matter expert for software security and architecture
  • Partner with cloud detection and response to create new capabilities or respond to security events
  • Educate the engineering org on security through CTFs, lunch-and-learns, and one-on-one mentorship

Preferred Qualifications

  • Knowledge of one or more core project languages (Golang, Java, Javascript, Python)
  • Docker and Kubernetes operation and security
  • Working knowledge of one or more major cloud providers (AWS, GCP, or Azure)
  • Experience with large scale environments

Benefits

  • Flexible paid time off
  • 20 weeks fully-paid gender-neutral parental leave
  • Fertility and adoption assistance
  • 401(k) plan
  • Mental health counseling
  • Access to transgender-inclusive health insurance coverage
  • Health benefits offerings

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.

Similar Remote Jobs

Please let MongoDB know you found this job on JobsCollider. Thanks! πŸ™