Product Security Engineer Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the product security engineer job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.

USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.

SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Create a Resume in Minutes

C Yost

Cory

Yost

36872 Wanda Circles

Phoenix

+1 (555) 793 8261

36872 Wanda Circles

Phoenix

Phone

p +1 (555) 793 8261

Experience Experience

San Francisco, CA

Product Security Engineer

San Francisco, CA

Effertz Group

San Francisco, CA

Product Security Engineer

Develop secure code practices and provide hands-on training to development teams
You'll work on new product features to make Dropbox users and data more secure
Provide technical guidance to developers on secure coding practices
Perform supervisory/managerial responsibilities
Participates in the Tyco Architecture Council as a key member ensuring security concerns are addressed within the Tyco Development Framework
Work with development teams to carry out application security reviews
Domain expert in security with respect to web development and enterprise app development

Dallas, TX

Senior Product Security Engineer

Dallas, TX

Connelly Inc

Dallas, TX

Senior Product Security Engineer

Evaluate application security tools for internal consumption. Develop new automation and tooling to improve our detection and prevention capabilities
Develop secure code practices and provide hands-on training to developers and quality engineers
Coordinate and lead ethical hacking against Medallia’s corporate and production networks, across all layers of the stack (e.g., network, OS, application)
Create and execute a strategic plan with a detailed phased roadmap that includes SDLC initiatives, testing, HR and budget planning
Improve and contribute toward our internal Software Security Development Lifecycle
Develop methods to secure Lending Club without impacting productivity
Thorough working knowledge of ethical hacking tools (e.g., Kali Linux, Nessus, Nmap, Burp Suite, Metasploit, Nessus)

present

New York, NY

Principal Product Security Engineer

New York, NY

Daugherty and Sons

present

New York, NY

Principal Product Security Engineer

present

Work within development frameworks, such as J2EE and the .NET framework
Provides consultancy for Product development, Engineering & Operations team on technical security issues and remediation
You will be working on projects that make an impact. You’ll be visible
Do you want to be a part of world class security team and make decisions from design to implementation for applications?
Engages with developers and quality engineers throughout the company to encourage cross-business collaboration
3+ years of hands-on development expertise in one or more of the languages such as C+, C#, VB.NET, Java, CFML, Perl, Classic ASP, LUA and PHP
Perform threat modeling and review software design from a security perspective

Education Education

Bachelor’s Degree in Computer Science

San Diego State University

Bachelor’s Degree in Computer Science

Skills Skills

Good understanding of scalability, performance considerations and architectural enablers
Strong interpersonal skills as well as excellent written and verbal communication skills
Possesses strong product/technology/industry knowledgeResults driven
Excellent team player: cooperative and consultative behavior; ability to work independently and as a member of various teams
Ability to prioritize tasks and deliverables
Ability to translate highly technical subject matter into plain language
Knowledge of engineering tools, methods and processes
Working knowledge of AWS Services
Ability to work in a high-pressure environment
Broad knowledge of all aspects of information security

Create a Resume in Minutes

15 Product Security Engineer resume templates

Read our complete resume writing guides

Product Security Engineer Resume Examples & Samples

Provide security guidance on a constant stream of new products and technologies
Interact directly with the security community regarding vulnerabilities and threats
Analyze, assess, and respond to various internet threats
Conduct regular security assessments

Senior Product Security Engineer Resume Examples & Samples

Assess and improve the security posture of Motorola products and services
Research and develop offensive capability and use the lessons learned to guide our response and defensive engineering efforts
A 4-year bachelor of science degree in an appropriate engineering discipline
Five to Seven (5-8) years industry experience in Systems Engineering
Three (3) years experience in security technology and deployment of secure systems
Proven capability of innovations
Experience with embedded security architectural experience; strong experience in developing of high assurance software; strong software or system development management skills; strong experience with best practices for implementation and certification of high assurance software
LI-GG1

Product Security Engineer Resume Examples & Samples

Embed yourself amongst product designers, engineers and architects to define and integrate security measures into a wide range of high quality products
Responsible for the designs, development and delivery of security all aspects of Compute, Network, and Storage components for existing and new clouds deployments in support of Tyco products
Balances security and compliance with performance and costs for cloud architecture and software interfaces designed to support a diverse portfolio of devices
Participates in the Tyco Architecture Council as a key member ensuring security concerns are addressed within the Tyco Development Framework
Analyzes infrastructure and software designs to aid in and attack analysis
Prototypes and tests countermeasures that defends against these attacks
Analyzes current product offering for business impact and exposure, based on emerging security threats, vulnerabilities and risks; communicates security risks and solutions to business partners
Delivers security engineering 'security by design' services for products across multiple business units and geographies where Tyco operates
Works closely with enterprise Research and Development, IT , PMO, other functional area specialists to ensure adequate security solutions are in place throughout all products to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements
Provides services for the security engineering processes, programs, artifacts, and tollgates into the Product Design Rally Point process
Demonstrated experience in the design, implementation, deployment of state of the art security architectures and countermeasures to protect and enable innovative products
A bachelor's degree (master's degree preferred) in computer science, information systems or other related field; or equivalent work experience
Extensive knowledge of at least one of the following: secure boot implementations, key management, state of the art cryptographic architectures, cloud architecture, secure protocol design, and secure interface development
Strong understanding of cryptography, protocol design and analysis, firmware and embedded OS design principles
Software development in Assembly, C, Ruby, and Java
Software and firmware reverse-engineering
Experience with other government and international security standards including those from FIPS, ISO, CC, and others

Product Security Engineer Resume Examples & Samples

Perform threat modeling and review software design from a security perspective
Provides consultancy for Product development, Engineering & Operations team on technical security issues and remediation
Tracks open issues and follow up with different teams to address the open issues
Assist in the vulnerability management process including verifying identified vulnerabilities with product teams and tracking them through the vulnerability lifecycle
Perform proactive research to identify and understand new threats, vulnerabilities, and exploits as part of the SDLC
Experience configuring static source code analysis tools such as Fortify, WebInspect etc.1 to 3 years of hands-on development expertise in one or more of the languages such as C+, C#, VB.NET, Java, CFML, Perl, Classic ASP, LUA and PHP
In-depth understanding of SDLC
Threat Modeling Experience
Mobile Apps Code Review (iOS, Android) experience is desired
CISSP or CISA or CSLP is desired

Product Security Engineer Resume Examples & Samples

Physical anti tamper mechanisms from initial concept to deployment and maintenance
Secure boot implementations, key management
Cryptographic architectures for extreme cost- and power-limited solutions
Demonstrated experience in white hat wireless network testing including

Product Security Engineer Resume Examples & Samples

Embed yourself amongst Product Designers Engineers to define and integrate security measures into a wide range of high quality products
Balances security, compliance, performance, power and cost for a diverse portfolio of devices and the associated manufacturing and backend infrastructure
Evaluates the security of new product designs to determine vulnerability to physical tampering, side-channel attacks, glitching, fuzzing, and other attacks
Analyzes hardware designs to aid in and attack analysis
Delivers security engineering 'security by design' services for products across multiple business units and geographies where the Company operates
Extensive knowledge of at least one of: physical anti tamper mechanisms from initial concept to deployment and maintenance, secure boot implementations, key management, state of the art cryptographic architectures for extreme cost- and power-limited solutions
Demonstrated experience in at least one of the following: defeating physical anti-tamper, performing and defending against side-channel and fault-injection attacks, and/or reverse-engineering and exploitation of embedded systems hardware and protocols
Good understanding of cryptography, protocol design and analysis, firmware and embedded OS design principles
FPGA development and debugging

Principal Product Security Engineer Resume Examples & Samples

Do you love the challenge of figuring out securing applications that are literally changing world and making it a better place?
Do you want to be a part of world class security team and make decisions from design to implementation for applications?
Conduct application security testing, source code reviews & threat analysis
Secure our applications, including web and mobile technologies through the SDLC
Identify, highlight, and provides security recommendations during requirement and design reviews
A bachelor's degree in a technical field as well as at least 6 years experience in the applications security field
BS in CS, Engineering or equivalent
Experience configuring static source code analysis tools such as Fortify, WebInspect etc
3+ years of hands-on development expertise in one or more of the languages such as C+, C#, VB.NET, Java, CFML, Perl, Classic ASP, LUA and PHP
Work within development frameworks, such as J2EE and the .NET framework
Experience developing or reviewing Spring MVC, Struts, Hibernate, jQuery code etc

Product Security Engineer Resume Examples & Samples

Enthusiasm for the constant fight to ensure security and privacy on the internet
Expertise with an interpreted programming language (PHP, Python, Perl, Ruby, etc)
Extensive knowledge of internet security issues
Contributions to the security community are a huge plus (public research, blogging, presentations, etc)

Product Security Engineer Resume Examples & Samples

Assess applications and products for security vulnerabilities and design flaws
Evaluate security vulnerabilities and prioritize remediation efforts
Provide technical guidance to developers on secure coding practices
Develop secure code practices and provide hands-on training to development teams
Evaluate and improve application security tools and processes
Research latest security best practices, staying current on new vulnerabilities and threats
Security experience across web, mobile and client server applications
Experience performing automated security testing using static and dynamic scanning tools
Experience performing manual code reviews and penetration testing
Deep understanding of cryptography, authentication, authorization, network security protocols and web application security
Strong exposure to popular application security standards including OWASP TOP 10, SANS TOP 25 etc
Proficiency with at least one of the following programming languages: Java, .Net, C, C++, PHP
Strong interpersonal skills as well as excellent written and verbal communication skills
Uncompromising personal and professional integrity and ethics
Security professional certifications preferred (such as CEH, CISSP, CSSLP, GPEN, GWAPT)
Undergraduate degree in computer science, engineering or related field
At least 4 years of product security experience in a large enterprise
Prior software development background is preferred

Product Security Engineer Resume Examples & Samples

You will manage Dropbox's security vulnerability bounty program
You'll conduct penetration testing, security code reviews, and architectural reviews
You will evangelize secure coding practices across all engineering teams
You'll work on new product features to make Dropbox users and data more secure
You will advise engineers and teams on security issues; you‰'ll be involved with every aspect of engineering here at Dropbox!

Senior Product Security Engineer Resume Examples & Samples

Become an expert in the Lending Club software stack and inject security best practices
Drive security engineering and architecture efforts for our production infrastructure
Develop methods to secure Lending Club without impacting productivity
Improve and contribute toward our internal Software Security Development Lifecycle
Participate in security reviews to ensure timely evaluation per risk based approaches

Lead Production Product Security Engineer Resume Examples & Samples

Perform Black-Box penetration testing and code reviews of internally developed linux os automation, api, and related Linux OS tools, as well as 3rd party vendor solutions
Provide security guidance and oversight to engineering and operational teams by participating in design reviews and threat modeling for Linux OS and related application security
Develop hardening guidelines and review security configurations related to Linux/Unix hosts, and common application application frameworks
Work experience in a application security role
Relevant experience in at least 2 of these languages with reasonable: proficiency.Java, Javascript, C, Python, Perl, Ruby, Go, Java EE, Node.js, Ruby on Rails, Django
Experience working with RedHat Enterprise Linux (RHEL) or other Unix/Linux operating systems

Product Security Engineer Resume Examples & Samples

Responsible for understanding the overall technical capabilities of a product, typical deployment scenarios and be able to visualize potential security challenges in a deployment
Needs to work closely with development and test organizations in assessing the risks, driving for possible mitigations and preparing responses to external organizations including customers
Work pro-actively with development and test organizations to identify vulnerabilities, design constraints and assist in elevating the security level of the product
Participate in designing and institutionalizing security practices across the entire development and support life cyle of the product
Interface with Product Management, Systems & Technology teams, and Customer support units to balance security and usability requirements
Core/critical competencies
The successful candidate will require an excellent track record that exhibits some or all of the following capabilities and skills
Fixed and mobile network architectures and standards
Carrier-class IP platform architecture, design and development experience – including fault-tolerance, high scalability and performance, real-time embedded systems
BRAS protocols – DHCP, PPP, PPPoE, PPPoA, L2TP, Authentication/Authorization protocols like RADIUS/Diameter, subscriber management
Deep knowledge of networking technologies (IP, MPLS and Ethernet), network operating systems and service/subscriber edge processing (including rich, high-touch services)
Knowledge of data path technologies (switch fabric, network processor, high-touch service, traffic management)
Good understanding of scalability, performance considerations and architectural enablers
Good understanding of Linux/NetBSD kernel, inter-process communication and multi-threaded programming
Experience in vulnerability assessment, security audit, risk analysis in product development life cycle
Experience with tools to run assessments like Nessus, Nemesis, Wireshark
Leadership: ability to manage priorities and workflow
Excellent team player: cooperative and consultative behavior; ability to work independently and as a member of various teams
Minimum education and experience requirements
Minimum: 10+ years of relevant industry experience
Bachelor degree or equivalent in electrical / electronics engineering or computer science required

Principal Product Security Engineer Resume Examples & Samples

Local lead for the s-Lab application vulnerability testing practice working in collaboration with others on the s-Lab team
Collaborates with other members of the EMC Product Security Office in achieving organizational goals and objectives
Exercises considerable latitude in achieving technical objectives

Product Security Engineer Resume Examples & Samples

Passionate about keeping Apple’s customers safe
Experienced in developing more than one of the following: network-based appliance, web/SaaS service, and advance data analytics
Shift perspectives to understand the goals and methods of an attacker
Learn about new security technologies and methodologies

Product Security Engineer Resume Examples & Samples

Provide technical subject matter expertise to engineering organizations on common application security vulnerabilities, how to prevent them and how to test for them
Monitor industry trends on vulnerabilities and communicate these to EMC engineering organizations
Perform technical reviews of security advisories and other type of communication deliverables related to vulnerability disclosure and remediation
Experience in application security and/or security incident response is preferred
Ability to prioritize tasks and deliverables
Cross-Functional skill
Consultative skills
Possesses strong product/technology/industry knowledgeResults driven
Education Required: Bachelors (Tech) or equivalent

Associate Product Security Engineer Resume Examples & Samples

Identify and understand the development practices, networks and infrastructure that make Salesforce successful
Recommend and build solutions/mitigation plans to help resolve risks
Guide the technology organization's security by participating in design reviews, Threat Modeling, and in depth security penetration testing of our code and systems
Provide input on application design, secure coding practices, log forensics, log design and application code security
Perform cutting edge research on new attacks, write white papers and present on those findings to internal audiences
Evaluate and build application security tools for internal consumption and drive usage of these tools
The ideal candidate will have prior experience protecting against web and web services security vulnerabilities including cross-site scripting, SQL injection, DoS attacks, XML/SOAP, API attacks, email security flaws and more
BS degree (4 year program)
Ability to demonstrate strategic thinking
Extensive problem solving and analytical skills
Knowledge of the OWASP Top 10 and CWE Top 25 vulnerabilities
Extensive programming and application development experience in multiple languages such as Java, C, and scripting languages
Knowledge of Force.com platform (Apex, VisualForce, Aura...) and the salesforce application
Contributions to the security community such as research, public CVEs, bug-bounty recognitions, open-source projects, and blogs or publications
Solid understanding of Application and Networking fundamentals
Familiarity with security tools such as static analysis, runtime analysis, black-box testing

Product Security Engineer Resume Examples & Samples

Familiarity with the Software Development Life Cycle (SDLC) and injection of security principles/processes within various development environments to achieve software assurance
Must possess the skills to perform research independently, identify pertinent information for evaluation, and develop potential solutions and alternate courses of alternatives
Understanding of engineering principles for IT system development and broad knowledge of IT security principals
Analyze system security architectures and make recommendations for security design and requirements that are compliant with applicable Security Technical Implementation Guides (STIGs) and other Federal and state standards
Familiar with automated vulnerability scanning assessment tools and their operation to produce security artifacts
Must possess the skills to write effect scripts using PowerShell or Batch scripting
Must possess the knowledge of Active Directory framework, virtual environment and cloud computing
Ability to identify cybersecurity threats and perform analysis based on threat vectors and identified vulnerabilities and build solutions to reduce the risk level
Must have strong organizational skills and attention to detail, and possess exceptional ability to communicate effectively with peers, supervisors, managers, and customers within a team-oriented, collaborative environment
Must be able to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities
BS degree in Computer Science, Computer Engineering, Cyber Security, Information Technology, or other related engineering field is required
Minimum of 5 years of experience in cyber security, systems & architecture concepts and designs
Experience in system architecture understanding risk, mitigation and remediation
Knowledge of Windows Operating Systems and their environment
Knowledge of Active Directory framework
Highly desired understanding of virtualization and cloud technologies
Demonstrated understanding of developing in a regulated environment and adhering to a quality management system
Excellent written and verbal communication and interpersonal skills are essential
Demonstrated positive work ethic with a strong commitment to achieving project goals
LI-CC1

Product Security Engineer Resume Examples & Samples

Experience ensuring security and privacy on the internet
Experience with an interpreted programming language (PHP, Python, Perl, Ruby, etc)
Knowledge of internet security issues

Senior Production Product Security Engineer Resume Examples & Samples

Provide security guidance and architectural review for logical datacenter designs
Work experience in Linux OS security role
In-depth experience identifying and mitigating security vulnerabilities in applications and operating systems

Senior Product Security Engineer Resume Examples & Samples

Attract, lead and retain an elite team of product security software engineering specialists
Create a compelling product security vision, optimize complex and newly required processes by organizing shared resources amongst many product owners, IT’s CISO and stakeholders, and prioritize all initiatives with larger organizational goals
Define and maintain compliance with product standards, policy and requirements
Improve the Process and SDLC visualizing actual risk data, metrics and KPIs. (Track, report on and communicate KPIs measuring Product Security across all code and the organization)
Create an education program including role-based secure design and coding, instructor-led and online educational resources, library and a guest-speakers forum
Automate security testing by baking it into the continuous integration and QA automation pipeline
Maintain a Vulnerability Management Program covering incident response triage, Responsible Vulnerability Disclosures
Sales and Customer Support

Lead Product Security Engineer Resume Examples & Samples

Leverage your deep understanding and hands on experience of secure software development practices including threat modeling, secure design principles, secure coding, code analysis, security testing etc
Work across the application engineering teams to guide the security architecture for solutions in a .NET, Windows server, and AWS environment
Develop and implement policies and procedures to maintain application security for operational, customer facing application products
Produce guidance to Salesforce CommerceCloud Engineering teams for consistent app security enablement across development, design, testing, operations, and maintenance
Build high level security design, development and testing strategies by closely working with programmers, security engineers, system analysts
Offer proposed application security design changes/suggestions to processes and products, exerts significant latitude in determining objectives of an assignment
Leads app security projects to ensure timely completion of efforts
Ability to work with local engineering and product organization but also able to report remote management team on a weekly basis
Significant leader and contributor to organizational app security goals and objectives
Thought leadership with active participation in industry groups such as SAFECode and OWASP
Experience with securing applications in a .NET, Windows server, and AWS environment
Experience with securing Retail Order Management Systems (OMS) is a plus
BS or Masters Degree in Computer Science or related field
Deep application security experience
Understanding of business environment
Communication, presentation, and concise project reporting skills

Product Security Engineer Resume Examples & Samples

Work in an agile development environment and partner with engineering and product teams to ensure that new product feature development adheres to security best practices
Review and create threat models
Conduct periodic code reviews and educate the engineering teams on best practices for writing secure code
Coordinate remediation of any application security weaknesses uncovered
Promote security training and awareness in the organization
Conduct penetration testing or interact with penetration testers and other external vendors to validate that security controls work as expected
Full understanding of web stack, web security and common vulnerabilities
Development skills to facilitate code reviews or tool development
Understanding of SDL and mobile experience is a plus
Good understanding of cloud technologies
Leadership qualities including the ability to work effectively with cross-functional teams and be able to consider diverse opinions
A working knowledge of Agile Development methodology

Product Security Engineer Resume Examples & Samples

On occasion, design and implement security controls in the product
Support security policies and procedures
Perform automated scans using various commercial tools and triage and catalog the results
Participate in security compliance efforts (e.g. PCIDSS)
Participate in security operations support
BS or MS in Computer Science or equivalent
3+ years experience in application security and vulnerability testing
Several years of experience in working with commercial software development teams
2+ years App design and development coding skills across broad spectrum of technologies including Java web and iOS mobile
Point of Sale security background is a plus
2+ years of deep application security experience: crypto, auth, TLS, OWASP top 10 vulns
Familiarity with JIRA, Confluence, git
Experience with software-based services (SaaS)

Product Security Engineer Resume Examples & Samples

Take a leadership role in driving internal security initiatives
Consult with internal teams to assist in design, threat modeling, and reviewing security-critical code
Plan, build, automate, and operate automated security review capabilities including static and dynamic code analysis across multiple technology stacks and languages

Product Security Engineer Resume Examples & Samples

Development skills to facilitate tools development
Good understanding of cloud technologies – Advantage
Familiarity with government computer security standard like Federal Information Processing Standard (FIPS) or Common Criteria – Advantage
Enthusiasm for hunting for potential weaknesses

Principal Product Security Engineer Resume Examples & Samples

Knowledge of secure coding patterns and pitfalls in multiple languages (Java, .NET, C++, Python…)
Knowledge of secure configuration patterns for middleware and OS platforms (Tomcat, JBoss, Weblogic; common relational and NoSQL dbs; Windows, Linux, iOS, Android)
Demonstrated experience providing security review of web applications, mobile applications, thick clients, web APIs (REST, SOAP), AuthZ/AuthN protocols and technologies, and cryptography
Experience with static analysis and dynamic analysis tools
Experience with offensive security tools and methodologies
Penetration testing experience, especially at the application level
Familiarity with development and test toolsets (source code control, build systems, test automation, ticketing systems)
Knowledge of OWASP tools and methodologies
Knowledge of standard SDLC practices and security touchpoints in Agile, DevOps, waterfall processes
Experience with application security requirements of HIPAA, PCI and ISO 27000
Solid understandings of security on networks, hardening, patch management, pentesting, vulnerability testing, Windows systems, open systems, applications, and web and public facing systems
Knowledge of analytic and monitoring tools (ElasticSearch, LogStash, and Kibana (ELK) and/or Splunk)
Ability to code python
Expertise with Rapid7 Nexpose or other vulnerability scanners
Ability to reverse engineer undocumented applications or architectures
Linux, Windows system administration

Product Security Engineer Resume Examples & Samples

Binary analysis and malware/exploit reverse engineering
Product security incident response
Secure code review, analysis and vulnerability assessment
Security testing, e.g. fuzzing and pen-testing
Mobile platform security such as Android
Exploit mitigation techniques

Senior Product Security Engineer Resume Examples & Samples

Perform application security assessments including architecture review, threat modeling, code review and penetration testing, on both web (Java) and mobile (iOS, Android, and React Native) platforms
Provide software security advice to cross-functional teams including product, engineering, and services
Develop software security guidance including training material, best practices, secure coding checklists, reuseable code, etc
3-5 (5+ preferred) years’ experience with software security assessments and remediation in Java
Drive to take ownership of projects and drive resolution without close supervision
Strong skills in at least two of the following areas: architecture review/threat modeling, penetration testing, and static code analysis automation
Hands-on experience with tools and technologies used throughout secure SDLC (e.g., Checkmarx, Fortify SCA, Coverity, AppScan Standard/Enterprise, WebInspect, Burp Suite)
Independent problem solving capabilities and excellent communication skills
Knowledge of OSS scanning tools like Black Duck, SRC:CLR, Codenomicon AppCheck a plus
Knowledge of mobile development frameworks a plus (e.g., iOS, Android, React Native, Redux)
Knowledge of popular web development frameworks a plus (AngularJS, React, Redux, Velocity, StringTemplate, jQuery, Jackson, THRIFT, etc.)
Proficiency with Python, Ruby, or other scripting languages a plus
Knowledge of microservices architecture and containers a plus

Product Security Engineer Resume Examples & Samples

5+ years of software/application security experience
Linux, Android, OSX, and Windows expertise
Static source code analysis in C/C++, C#, and Objective-C
Penetration testing end-user software and web applications
Secure development lifecycle experience
Must be able to work independently and troubleshot problems without supervision or assistance
Bachelor’s degree in Computer Science
OSCP, OSCE, OSEE, or OSWE certifications
CVE submission/attribution
Programming experience in Python
Working knowledge of AWS Services

Product Security Engineer Resume Examples & Samples

Evaluate and promote the use of automation tools to assist manual reviews in identifying issues. Promote security training and awareness in the organization
2+ years of experience in software development
Domain expert in security with respect to web development and enterprise app development. Understanding of SDL and mobile experience is a plus

Senior Product Security Engineer Resume Examples & Samples

Serve as a subject-matter expert and generate technical content for the documentation of security guidelines for all security functions supporting Salesforce Engineering, which are central to the SDL program's success
This is not a "technical writer" role: it is an engineering role that is focused on ensuring that we are developing sound technical guidance through content and correct self-service information that will inform our threat modeling automation
Perform black-box penetration testing and code reviews of our flagship services, product offerings and partners' apps
Demonstrated ability to write clear and comprehensive technical security content
7+ years work experience in an application security role

Product Security Engineer Resume Examples & Samples

Experience evaluating architectures in both corporate and product environments
Knowledge of networking protocols, routing and infrastructure
Experience with RF and wireless testing strategies
Experience securing quality products delivered under very aggressive schedules
Hands-on experience with various security testing tools
Experience working with multiple, current programming languages
Experience with securing software development practices
Knowledge of Risk Management practices
Ability to translate highly technical subject matter into plain language

Senior Product Security Engineer Resume Examples & Samples

Identify and maintain an inventory of sensitive corporate assets, and apply a risk-based approach to selecting targets for red teaming activities
Coordinate and lead ethical hacking against Medallia’s corporate and production networks, across all layers of the stack (e.g., network, OS, application)
Use tools, frameworks, scripts, and ingenuity to mount complex ethical attacks against Medallia’s entire attack surface
Perform vulnerability management (logging tickets to help Engineering teams address discovered vulnerabilities)
Provide training to Engineering teams, to help them avoid security problems before they’re introduced
Contribute to application/system design reviews, to address potential security issues early in the implementation lifecycle
Keep current on new and evolving attack techniques and vulnerabilities in emerging technologies
May require non-standard work hours from time to time, in order to achieve a successful covert exercise
3-5 (5+ preferred) years of experience performing security assessments, vulnerability management and penetration testing
Not afraid of taking ownership of projects and drive resolution without close supervision
Proven skills in ethical exploitation of networks, operating systems, and web applications
Thorough working knowledge of ethical hacking tools (e.g., Kali Linux, Nessus, Nmap, Burp Suite, Metasploit, Nessus)
Solid working security knowledge of Amazon Web Services (AWS), Active Directory, LDAP, SMTP, Java web applications
Docker containerization and orchestration (e.g., Mesos, Aurora, ZooKeeper, Docker Hub)
Continuous Integration/Deployment (CI/CD) systems (e.g., Jenkins, Artifactory) and associated security properties
Mobile application hacking
Proficiency with Python, Ruby, or other scripting languages