Job details

Product Security Engineer 3

Job Description:

Pluralsight is the technology workforce development company that helps teams build better products by knowing more and working better together. Using our Skills and Flow products, teams can develop critical skills, improve processes and gain insights through data.

We build this exciting product ecosystem by working with smart people and uniting behind a passion for what tech can create. We’re a group of good-natured, nimble go-getters dedicated to helping people and businesses build better with technology. That means when we see opportunities to create, we go for it. We don’t let the unknown stop us from solving challenges and winning together. And most importantly, we treat each other like adults. If you can see possibilities where others see problems, have candid conversations to ensure all voices are heard and thrive in a collaborative environment, you’ll do some of the best work of your career here.

Who you’re committed to being:

A self-starter. You like to understand the planned outcome, get the context, and then work entrepreneurially to get it done.
A problem solver. Thinking about the tradeoffs between risk tolerance and common sense.
An outstanding communicator and effective guide that engenders trust because of a high level of ethics. You genuinely try to understand another person’s context to better work with them and figure out the best solution to the problem at hand.
A lifelong learner that is curious by nature and are constantly learning on the go and discovering innovative ways of doing things!
Someone who elevates the technical abilities of those around you!
Someone who loves exploring new technologies and keeping your own technical skills sharp
Passionate about, data, innovation, and using technology to build with possibility

What you’ll own:

Support and enable engineering teams when performing and maintaining threat models and provide mentorship and guidance to engineers
Use knowledge of common risks and vulnerabilities to guide engineering teams in building products
Use and maintain security tooling and processes, such as SAST/ DAST tools and vulnerability reporting
Promote and develop a security aware mind set among teams
Record and communicate vulnerability findings and keep records up to date
Automated DevSecOps security checkpoints
Collaborate with engineers through all phases of the SDLC

Experience you’ll need:

6+years of professional experience in product security, working with SaaS application & Cloud security. Must have bachelor's degree or Master’s degree with relevant security certifications
Strong analytical and problem-solving skills
Good understanding of secure software development concepts and technologies
Knowledge of programming languages such as JavaScript, Java, C#, and Python
Experience with security tools and technologies such as Web Application Firewall, SAST, and DAST
Experience working security check points into an Agile Software delivery environment
Experience in performing extensive Penetration testing in identifying vulnerabilities
Experience working on OWASP Top 10/ SANS Top 25 vulnerabilities
Experience communicating security threats and application vulnerabilities to technical and non-technical team members

Our Perks & Benefits include:

Competitive salary and meaningful benefits
Fully funded comprehensive medical & dental coverage including OPD for you and your family
Open vacation policy
Stay active with our wellness program that allows you to expense your gym membership and other sports activities
Tuition reimbursement

Bring yourself. Pluralsight is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status.

#LI-DV1