Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Product Security Engineer image - Rise Careers
Job details

Product Security Engineer

We are the security engineering team, skilled in cybersecurity, cloud security, application security, and regulatory compliance. Our global distribution allows us to leverage unique experiences and skillsets to build and operate security services that safeguard our platform. We prioritize a proactive approach to prevent security issues and stay ahead of potential threats, ensuring the continuous protection of our services.The Product Security Engineer is responsible for designing and implementing robust security frameworks to protect our software and infrastructure. This role involves conducting regular security assessments, including Cloud, Kubernetes, and our Products, to identify and address vulnerabilities. Additionally, the engineer will collaborate with development teams to integrate security practices throughout the software lifecycle, ensuring that all products meet the highest security standards before deployment.In This Role, You’ll• Conduct penetration testing and security assessments to identify vulnerabilities and ensure robust security measures.• Develop and maintain custom security tools and scripts to automate and enhance security processes.• Collaborate with development teams to integrate secure coding practices and solutions into both front-end and back-end systems.• Review and improve security within CI/CD pipelines, integrating tools like SonarCloud and Wiz for continuous security assurance.• Perform security audits and code reviews, offering guidance through pull requests and collaborative sessions.• Analyze and address security issues by providing expert advice and actionable solutions to maintain the integrity of applications.We’re Looking For Candidates Who Have• Experience working within a Security Engineering team.• Hands-on experience in penetration testing and security assessments, with a strong ability to identify and mitigate vulnerabilities.• Excellent communication skills, both verbal and written, for effective collaboration with cross-functional teams.• Proficiency with security tools like Burp Suite, Sonarcloud, Jfrog, and Wiz.• Ability to create custom scripts using Python to enhance automation.• Proficient coding skills with a focus on security, particularly in Java, Python or Go.• In depth knowledge of cloud security practices, specifically on platforms such as AWS or GCP.• Experience integrating security tools into CI/CD pipelines, and a demonstrated ability to automate security testing within development workflows.Nice To Have Experience• Familiarity with blockchain or cryptocurrency security challenges and solutions.• Experience with Infrastructure as Code (IaC), particularly reviewing and securing Terraform code.• Certifications such as CISSP, OSCP, or similar credentials, demonstrating a formalized knowledge of security principles and practices.Technologies We Use And Teach• Coding Languages: Java, Python, and Javascript• IaC: Terraform• Cloud: AWS, GCP, Cloudflare• CI/CD Pipeline: GitHub, GitHub Actions, Jenkins• APIs: REST APIsAbout ChainalysisBlockchain technology is powering a growing wave of innovation. Businesses and governments around the world are using blockchains to make banking more efficient, connect with their customers, and investigate criminal cases. As adoption of blockchain technology grows, more and more organizations seek access to all this ecosystem has to offer. That’s where Chainalysis comes in. We provide complete knowledge of what’s happening on blockchains through our data, services, and solutions. With Chainalysis, organizations can navigate blockchains safely and with confidence.You belong here.At Chainalysis, we believe that diversity of experience and thought makes us stronger. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. Some of the ways we’re ensuring we keep learning are an internal Diversity Committee, Days of Reflection throughout the year including International Women’s Day, Harvey Milk Day, World Humanitarian Day, and UN International Migrants Day, and a commitment to continue revisiting and reevaluating our diversity culture.We encourage applicants across any race, ethnicity, gender/gender expression, age, spirituality, ability, experience and more. If you need any accommodations to make our interview process more accessible to you due to a disability, don't hesitate to let us know. You can learn more here. We can’t wait to meet you.Compensation Range: $94.5K - $175.5K
Chainalysis Glassdoor Company Review
4.3 Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon Glassdoor star icon
Chainalysis DE&I Review
4.2 Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon Glassdoor star icon
CEO of Chainalysis
Chainalysis CEO photo
Michael Gronager
Approve of CEO

Average salary estimate

Estimate provided by employer
$63 / HOURLY (est.)
min
max
$60
$65

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Product Security Engineer, Chainalysis

At Chainalysis, we're on the cutting edge of blockchain technology, and we're looking for a talented Product Security Engineer to join our dynamic security engineering team based in State Line, PA. This role is all about safeguarding our innovative platform through robust security frameworks that you'll design and implement. Your day-to-day will involve conducting thorough security assessments on everything from our Cloud infrastructure to Kubernetes and our bespoke products, identifying vulnerabilities before they become problems. You’ll collaborate closely with development teams, integrating security practices seamlessly throughout the software lifecycle to ensure our products not only meet but exceed the highest security standards before deployment. A key part of the job will include penetration testing, developing custom security tools, and implementing secure coding practices. If you're passionate about security, enjoy working with cutting-edge technologies like AWS and GCP, and thrive in a diverse and inclusive environment, this position is your chance to make a real impact. Plus, we celebrate diversity of thought and experience, so you'll find an accepting community ready to support you. At Chainalysis, we believe you belong here, and we can't wait to meet you and hear your ideas about keeping blockchain technology secure!

Frequently Asked Questions (FAQs) for Product Security Engineer Role at Chainalysis
What are the key responsibilities of a Product Security Engineer at Chainalysis?

As a Product Security Engineer at Chainalysis, your main responsibilities include designing and implementing robust security frameworks, conducting regular security assessments across various platforms, collaborating with development teams to ensure secure coding practices, and developing custom security tools. You’ll also manage penetration testing and contribute to security audits to ensure our products are secure before deployment.

Join Rise to see the full answer
What qualifications do I need to apply for the Product Security Engineer position at Chainalysis?

To apply for the Product Security Engineer role at Chainalysis, candidates should possess hands-on experience in penetration testing, proficiency with security tools such as Burp Suite, and the ability to create custom scripts using Python. A strong understanding of cloud security practices on platforms like AWS or GCP is also essential. Certifications such as CISSP or OSCP can be advantageous but are not required.

Join Rise to see the full answer
What technologies does a Product Security Engineer at Chainalysis work with?

At Chainalysis, a Product Security Engineer works with a variety of technologies including coding languages like Java, Python, and Javascript, as well as cloud services such as AWS and GCP. You’ll also be involved with Infrastructure as Code tools like Terraform and CI/CD platforms including GitHub and Jenkins, all while ensuring our security measures are robust and up to date.

Join Rise to see the full answer
How does Chainalysis support diversity in the workplace?

Chainalysis is committed to fostering a diverse and inclusive workplace. We have an internal Diversity Committee and engage in various activities throughout the year to promote awareness and understanding of diversity issues, ensuring our team reflects the unique communities we serve. We welcome applicants from all backgrounds and provide accommodations for those who need them during the interview process.

Join Rise to see the full answer
What is the salary range for the Product Security Engineer role at Chainalysis?

The compensation range for the Product Security Engineer position at Chainalysis is between $94.5K and $175.5K, depending on your experience and qualifications. We believe in recognizing and rewarding talent, making sure our employees feel valued in their essential roles.

Join Rise to see the full answer
Common Interview Questions for Product Security Engineer
What experience do you have with conducting security assessments?

When answering this question, detail your specific experiences with various security assessments, including tools you used, types of assessments conducted, and any notable findings. Highlight how these assessments improved the security posture of your previous employers.

Join Rise to see the full answer
Can you describe a time you successfully identified a vulnerability?

Provide a concrete example of a vulnerability you discovered, the processes you followed to identify it, and the steps taken to mitigate it. Emphasize your analytical skills and proactive approach to security.

Join Rise to see the full answer
How do you stay current with security best practices and emerging threats?

Discuss specific resources you follow, such as industry publications, webinars, or online courses, and mention any communities or forums where you engage with other security professionals. Demonstrating ongoing learning and adaptation to new trends is crucial.

Join Rise to see the full answer
What tools and technologies have you utilized for penetration testing?

List out the tools you’ve used for penetration testing, such as Burp Suite or OWASP ZAP. Explain your familiarity with each tool and provide examples of how you employed them successfully in previous roles.

Join Rise to see the full answer
How do you incorporate security into the CI/CD pipeline?

Articulate your understanding of integrating security checks at different stages of the CI/CD pipeline. Describe specific tools you’ve used and the processes you implemented to ensure security is baked into development workflows.

Join Rise to see the full answer
What coding languages are you proficient in for secure coding practices?

Detail the programming languages you’re well-versed in, focusing on how security measures differ across languages. Give examples of code you've written that emphasizes secure coding practices.

Join Rise to see the full answer
Can you explain a recent security trend that concerns you?

Choose a recent trend or threat, such as supply chain attacks or vulnerabilities related to cloud security, and explain why it's concerning. Discuss your thoughts on mitigation strategies and how organizations can protect themselves.

Join Rise to see the full answer
What approach do you take to collaborate with development teams?

Highlight your communication skills and strategies for fostering collaboration with development teams. Describe how you’ve ensured they understand the importance of security and how you guide them in implementing best practices.

Join Rise to see the full answer
How would you handle a security incident when it arises?

Demonstrate your incident response knowledge by outlining the steps you’d take, such as identifying the threat, assessing the impact, and communicating with relevant stakeholders. Discuss the importance of a structured incident response plan.

Join Rise to see the full answer
Why do you want to work as a Product Security Engineer at Chainalysis?

Share your passion for blockchain technology and explain how Chainalysis's mission resonates with you. Highlight your desire to be part of a company that prioritizes security amidst evolving challenges in the blockchain ecosystem.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User
Chainalysis Remote No location specified
Posted 12 days ago
Photo of the Rise User
Posted 11 days ago
Photo of the Rise User
Posted 14 days ago
Photo of the Rise User
AbbVie Hybrid Barceloneta, Puerto Rico
Posted 8 days ago
Photo of the Rise User
Smiths Group Hybrid 2202 Lakeside Blvd, Edgewood, MD 21040, USA
Posted 8 days ago
Photo of the Rise User
Posted 11 days ago
Photo of the Rise User
Posted 10 days ago

Cryptocurrencies have already opened up new markets and made the global economy bigger, fairer, and more deeply integrated. We’re only seeing the beginning of what this transformative technology has to offer. But cryptocurrency needs greater trus...

117 jobs
MATCH
Calculating your matching score...
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
EMPLOYMENT TYPE
Full-time, on-site
DATE POSTED
December 22, 2024

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!