Snyk is looking for a Senior Product Security Engineer with experience in the areas of application security, cloud native services and DevSecOps practices. We are building out a world class Product Security function within Snyk’s global Product Security division to support the company’s rapid growth. 

You will have a unique opportunity to help build and shape the technical capabilities and security practices employed across our industry leading product engineering teams.  This role will report into the Application Security Lead.

You'll spend your time: 

• Building innovative solutions that extend Snyks capabilities

• Working with architecture, product and engineering teams ensuring security is at the heart of what we do

• Collaborating with your peers to define security guardrails and templated secure-by-design architectural patterns

• Performing threat models and code reviews for products and services

• Engineering solutions that enable teams to self-serve on effective security testing capabilities leading to faster, safer code in production environments

• Building out best-in-breed continuous security monitoring capabilities

You should apply if you have:

• 3+ years of experience working in cross-functional engineering teams following DevOps/DevSecOps practices

• The ability to articulate security as a business enabler

• Scripting/coding ability in at least one language

• Working knowledge of cloud native ecosystems (AWS, GCP)

• Experience writing solid test cases and documentation

• Familiarity with compliance frameworks (ISO 27001, NIST 800-53)

• Experience defining security standards and procedures

• Ability to work independently in a remote setting

• Strong written and verbal communication skills

We'd especially love to hear from you if you have:

• Previously experience working as a security engineer working in a Product Security/Application security team or as a Security Champion

• Practical knowledge of common threats and exposures to web apps and services

• Strong interest and experience in offensive security techniques

• Experience with either Golang, Python, Scala, Rust, TypeScript

• Familiarity with data analysis/data science techniques