SailPoint is seeking a Product Security Engineer to execute an industry-leading Product Security program for its SaaS and enterprise software offerings, aiming to achieve best-in-class security for its products and solve complex Product Security related problems.
Requirements
- 3-5 years of Technical Product Security related experience around SSDLC tooling, automation, remediation advisory, security testing, threat modeling/attack surface analysis.
- Proven track record of solving complex Product Security issues and protecting products using a risk-based approach.
- Extensive knowledge of the current Product Security threat landscape and industry best practices.
- Experience working in Agile development with experience in technologies such as: Containers (Docker, Kubernetes, or similar)
- Integration of Security testing tools into the pipeline
- Defect tracking (Jira, ServiceNow, or similar.)
- Source code management (GitLab, GitHub, BitBucket, or similar.)
Responsibilities
- Participate in expanding/maturing the SailPoint S-SDLC program.
- Responsible for proactive scanning/auditing in the early phases of the SSDLC as well as reactive scanning/auditing in later phases of the SSDLC, triage and comms to DEV teams.
- Configure, maintain and tune all pipeline and traditional product and application security technologies.
- Continuously reduce false positives through calculated and repeatable suppressions to ensure utilization and adoption of the technology(s).
- Assists tech leads and developers with a technical approach for remediation.
- Support automation and tooling of security technologies to be leveraged by development teams.
- Assist in developing custom software quality tests and Security as Code solutions.
Other
- The ideal candidate will be highly collaborative and customer service oriented; balancing the right level of security with business objectives and working to solve complex Product Security related problems creatively.
- As needed, provide on-call support on, and not limited to, after hours and weekends such as in the event of unscheduled incident response efforts
- Our Pune team works under a hybrid model enjoying the office 3 days a week (unless otherwise specified).
- All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable law.
- Alternative methods of applying for employment are available to individuals unable to submit an application through this site because of a disability.
