Product Security Engineer II (Cybersecurity)

TL;DR

Product Security Engineer II (Cybersecurity): Contributing to secure architecture and design of hirify.global products across cloud, self-managed, and community product portfolio with an accent on prioritizing security features and bugs. Focus on executing security assessments, dynamic and static testing, code review, and threat modeling of products, services, and associated cloud infrastructure.

Location: Must be able to work in the United States

Company

hirify.global's offerings, now part of IBM, empower organizations to automate and secure multi-cloud and hybrid environments.

What you will do

• Contribute to secure architecture and design of hirify.global products across cloud, self-managed, and community product portfolio.
• Work across various R&D teams to prioritize security features and bugs, and ensure implementation and mitigations.
• Monitor threats and vulnerabilities impacting hirify.global products and services and triage reported vulnerabilities.
• Plan & execute security assessments (dynamic testing, static testing, code review, etc) and threat modeling of hirify.global’s products, services, and associated cloud infrastructure.
• Contribute to the creation and delivery of security training and research emerging attack vectors and techniques.
• Assist in execution of 3rd-party audits, penetration tests, and bug bounty programs.

Requirements

• Hands-on experience in Security and secure development practices.
• Experience in security design / architecture and threat modeling.
• Knowledge of product and service architectures in modern, multi-tenant cloud environments (IaaS, SaaS, PaaS).
• Familiarity with Amazon Web Services (AWS), Microsoft Azure, and/or Google Cloud Platform (GCP).
• Knowledge of vulnerabilities (old and new), and options for defense / mitigation.
• Must have the ability to work without a need for current or future visa sponsorship.

Nice to have

• Modern engineering practices, processes, and tools, particularly related to the Go programming language and ecosystem.
• Knowledge of application security topics and the ability to empathize with engineers and product managers across the company.

Culture & Benefits

• Healthcare benefits including medical & prescription drug coverage, dental, vision, and mental health & well being.
• Financial programs such as 401(k), cash balance pension plan, and the IBM Employee Stock Purchase Plan.
• Generous paid time off including 12 holidays, minimum 56 hours sick time, and 120 hours vacation.
• Training and educational resources on our personalized, AI-driven learning platform.
• Diverse and inclusive employee resource groups, giving & volunteer opportunities, and discounts on retail products, services & experiences.