Senior Product Security Engineer

Related keywords: remote job spaindata engineer remote jobcompliance remote job

Introduction

Mirantis, a leading Kubernetes-native AI infrastructure company, is looking for a Senior Product Security Engineer to strengthen their cybersecurity measures across a diverse portfolio of products, including enterprise software and critical infrastructure systems. This pressing role calls upon seasoned professionals to bolster security frameworks and practices in a dynamic environment.

Company Overview

Mirantis navigates the intricate cloud infrastructure landscape, enabling organizations to effectively deploy and manage modern frameworks for AI, machine learning, and data-centric applications. With a commitment to open-source innovation and robust expertise in Kubernetes orchestration, Mirantis empowers companies to develop scalable and secure platform solutions, ensuring they maintain control over their infrastructure strategies without lock-in restrictions.

Job Position

The Senior Product Security Engineer position is crucial for executing and enhancing the Product Security program. This role will collaborate with various teams within the organization, including engineering, security operations, and compliance units, to safeguard Mirantis' products. Moreover, the successful candidate will be responsible for developing and maintaining critical security controls that align with both internal standards and industry regulations.

Key Responsibilities

The responsibilities associated with this role encapsulate a wide range of activities, all centered around maintaining robust security across products and infrastructure. Here are the primary duties:

Secure Products & Infrastructure:

• Design, implement, and maintain security controls across applications, and ensure alignment with regulations such as SOC 2 and ISO 27001.
• Promote the adoption of contemporary security tools and practices including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and supply chain security.

Offensive Security & Vulnerability Management:

• Conduct vulnerability assessments, application security reviews, and penetration tests to identify vulnerabilities.
• Collaborate with engineering teams to prioritize and remediate potential risks.

Incident Response Support:

• Partner with security operations to investigate vulnerabilities and contribute to long-term remediation strategies.

Compliance & Assurance:

• Assist with security reviews and coordinate with external auditors for compliance auditing.

Cross-Product Security Coverage:

• Build expertise in various Mirantis products to develop strong coverage across the board.

Security Advocacy & Enablement:

• Promote secure design practices and guide teams in security automation throughout the Software Development Life Cycle (SDLC).

Required Skills

Applicants should possess various key skills and qualifications to succeed in this role, including:

• 5+ years of experience in product security or related security engineering roles.
• An in-depth understanding of common vulnerabilities, specifically the OWASP Top 10 and the SANS Top 25.
• Proven ability in executing manual penetration testing and threat modeling.
• Hands-on experience with security automation, vulnerability scanning, and containerized environments (e.g., Kubernetes).
• Strong collaboration and communication capabilities for effective teamwork.
• Relevant certifications such as OSCP, OSWE, or other equivalent credentials preferred.
• Proficiency in programming or scripting languages, predominantly Go or Python, is a beneficial advantage.

Salary and Offer

While the salary information is not explicitly detailed, candidates can expect a competitive compensation package that includes benefits and stock options. The professional development focus emphasized by Mirantis, alongside opportunities to attend conferences and training, reflects their commitment to personnel growth and satisfaction.

Work Environment

Mirantis promotes a high-energy and collaborative work atmosphere, fostering openness and growth while encouraging risk-taking in innovation. Engagement in this responsive corporate culture offers employees a chance to work alongside talented professionals passionately dedicated to guiding clients such as Fortune 500 companies through next-generation cloud technologies.

Location

The position is primarily remote but candidates must be based in Spain, highlighting the importance of location to facilitate team collaborations and operations.

Conclusion

In summary, the Senior Product Security Engineer role at Mirantis presents an exhilarating opportunity for individuals seeking to advance their careers in a supportive and innovative ambiance. The position offers a unique mixture of responsibilities, from enhancing product security to collaborating on critical infrastructure initiatives, setting the stage for impactful contributions to the field of cybersecurity. Therefore, anyone meeting the outlined requirements should consider applying for this role to join a leader in the cloud infrastructure industry.

This job offer was originally published on himalayas.app