Product Security Engineer
We are seeking a skilled Product Security Engineer to join our team and strengthen the security posture of Tricentis' product portfolio.
In this hands-on role, you'll conduct comprehensive security assessments including threat modeling, security scanning, and penetration testing across our cloud-native applications and web services. You'll collaborate closely with engineering teams to develop and implement security improvement plans, while serving as the go-to security expert for product managers, engineers, and architects.
Responsibilities:
Participate in security efforts related to the Tricentis product portfolio, which includes understanding what level of security we have in each product. A few examples: threat modeling, performing security scans and internal penetration tests to identify security risks and establish a baseline for security requirements.
Use the information you find to create a plan in collaboration with the Engineering team to improve security.
Act as a technical representative for Product Security initiatives among product managers, engineers, and architects. Help them understand what security is about. Become an internal security evangelist.
Requirements:
Experience adequate to 2+ years of full-time security engineering or cybersecurity.
Experience adequate to 2+ years of penetration testing is a plus
Experience with cloud native applications, web applications and web services.
Development, scripting, and automation experience in one of the following languages: Java, C#, C++, Python
BA/BSc in Computer science, a related discipline, or equivalent work experience.
Ability to learn and interest about cybersecurity field.
Preferred Qualifications:
Direct experience supporting cloud operational models, including SaaS security architecture, microservices, containers, and Kubernetes.
Knowledge of technical implementation and impact of security / compliance requirements for common industry-standards, certifications, or accreditation like SOC2, FedRAMP or FIPS.
MS in Computer Science, Information Security, or a related discipline.
Tricentis is proud to be an equal opportunity workplace. Qualified applicants will receive consideration for employment without regard to race, color, ethnicity, gender, religious affiliation, age, sexual orientation, socioeconomic status, or physical and mental disability and other statuses protected by law.
Global Sanctions Compliance
We comply with all applicable global sanctions and export control laws. Candidates must not be listed on any government restricted party lists (including OFAC SDN List and U.S. Commerce Department restricted lists) and must certify that their employment would not violate any sanctions or export control regulations. Candidates must notify us of any changes to their status during the application process or subsequent employment.
