Staff Product Security Engineer

Staff Product Security Engineer

Remote - Poland

EGNYTE YOUR CAREER. SPARK YOUR PASSION.

Egnyte is a place where we spark opportunities for amazing people. We believe that every role has meaning, and every Egnyter should be respected. With 22,000+ customers worldwide and growing, you can make an impact by protecting their valuable data. When joining Egnyte, you’re not just landing a new career, you become part of a team of Egnyters that are doers, thinkers, and collaborators who embrace and live by our values:

Invested Relationships

Fiscal Prudence

Candid Conversations

ABOUT EGNYTE

Egnyte is the secure multi-cloud platform for content security and governance that enables organizations to better protect and collaborate on their most valuable content. Established in 2008, Egnyte has democratized cloud content security for more than 22,000 organizations, helping customers improve data security, maintain compliance, prevent and detect ransomware threats, and boost employee productivity on any app, any cloud, anywhere. For more information, visit www.egnyte.com.

Security engineers at Egnyte are involved in every stage of the SDLC pipeline to highlight security vulnerabilities and provide expert advice on reducing them. By promoting security principles, ongoing penetration testing, and developing “paved roads,” we’re able to provide our customers with a secure and reliable product.

Currently, we’re seeking an engineer who’s well-rounded in terms of application security and has in-depth expertise in one or more particular areas. You’ll be able to apply your skills to interesting challenges—joining Egnyte is an opportunity to work with diverse technologies and large-scale software (1 million users, 20k transactions per second, 28 Petabytes of data). 

To excel at this role, you need to be passionate about DevSecOps, as it’s something we’re genuinely committed to at Egnyte. Knowledge about cloud platform security practices and interest in developing security tooling are important as well. You will have a chance to develop security-oriented tools and processes from conception to completion.

WHAT YOU’LL DO:

●       Partner with engineering and product teams providing expertise and advice regarding secure, design, implementation and best practices;

●       Conduct threat modeling, code and architecture reviews, penetration testing for Web, Mobile and Desktop apps.

●       Maintain high ownership, embrace a proactive and constructive approach for effective problem-solving.

●       Identify opportunities for vulnerability remediation and mitigation

●       Develop tools, processes, techniques and documentation to ensure the security of our software

●       Validate and assess issues reported through our bug bounty programs

●       Maintain consistently high standards of communication, productivity, and teamwork across all teams.

●       Share knowledge, mentor and train other team members to foster a culture of excellence and security awareness in software engineering

YOUR QUALIFICATIONS:

●       5+ years of application security experience.

●       Proven experience in implementing Secure-SDLC

●       Ability to solve complex problems with simple, efficient, and clean solutions.

●       A clear vision of how to improve an application security program.

●       Hands-on experience in conducting code and architecture security reviews, penetration tests and thread modeling.

●       In-depth knowledge of OWASP guidelines & standards (ASVS, MASVS, WSTG, and related).

●       Ability to write and deploy your own tools and automation.

●       Familiarity with concepts like identity, data protection, monitoring, and incident response in the cloud applications space.

●       Being a strong communicator who is comfortable working cross-functionally.

●       Strong sense of ownership and ability to long-term projects and initiatives.

●       Good command of English that allows you to effectively communicate and perform your tasks (B2/C1+)

BONUS SKILLS:

●       Leadership skills and experience.

●       Experience as a Software Engineer or Architect

●       Cloud experience (preferably in GCP and/or MS Azure)

BENEFITS:

●       Attractive salary package based on skill set

●       Company equity depending on role and level

●       Your own Egnyte account with lifetime access to 1 TB of cloud storage

●       MyBenefit: you can choose a MultiSport card or gift cards every month

●       Private medical healthcare

●       In-house English classes

COMMITMENT TO DIVERSITY, EQUITY, AND INCLUSION:

At Egnyte, we celebrate our differences and thrive on our diversity for our employees, our products, our customers, our investors, and our communities. Egnyters are encouraged to bring their whole selves to work and to appreciate the many differences that collectively make Egnyte a higher-performing company and a great place to be.