Product Security Engineer Job Description Template
Our company is looking for a Product Security Engineer to join our team.
Responsibilities:
- Build secure code library (security code snippets, common libraries, cryptographic libraries);
- Assist in incident response by providing tier-3 engineering support to remediate critical security bugs in production environments;
- Evaluate and operationalize security tools by integrating with the development environment and commit/build pipelines;
- Design and implement system security features for vehicle compute platforms and networks;
- Design and build cryptographic services that bridge vehicle and cloud/infrastructure systems;
- Keep up-to-date with vehicle security innovation and the evolving threat landscape;
- Design and build cryptography-powered infrastructure for autonomous vehicles;
- Monitor and analyze security events;
- Validate security bug reports and communicate status with external researchers;
- Refine and improve global vulnerability patch management process;
- Collaborate with developers and network operations on vulnerability remediation;
- Responding to security incidents and coordinating remediation;
- Review source code for common security flaws;
- Assist in security forensic investigations.
Requirements:
- Experience in crowd sourced vulnerability program a plus;
- Strong written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy;
- Flexible schedule to accommodate working across global time zones;
- Experience with data protection & archiving, disaster recovery, business continuity and implementation;
- Ability & desire to learn new product lines and technologies quickly & efficiently;
- Ability to communicate well with all levels of corporate structure, from management to technical resources;
- Strong organizational and problem-solving skills;
- Strong experience with OS (Linux) and network security;
- Knowledge of car security is a plus;
- Strong working experience with cryptography;
- Minimum 3 years hands-on information security experience;
- Entrepreneurial. You proactively identify challenges & opportunities;
- Ability to clearly communicate technical concepts and project information to both technical and non-technical audiences;
- Ability to complete work to given quality standards by agreed-upon deadlines;
- Be a creative team player.