Newsela · 1 week ago
Senior Product Security Engineer
Wonder how qualified you are to the job?
E-LearningEdTech
Insider Connection @Newsela
Responsibilities
Design and implement security controls to protect sensitive data and prevent unauthorized access.
Ensure compliance with security standards, regulations, and certifications like SOC2, GDPR, and HIPAA.
Develop security documentation and participate in risk assessments and compliance reviews.
Champion security awareness and secure coding practices among development teams.
Collaborate with internal and external stakeholders to respond to RFPs about product security.
Lead investigations into security incidents, conduct root cause analysis, and implement corrective actions.
Implement security controls and remediation activities to mitigate risks and vulnerabilities.
Monitor and track compliance with security policies and standards, reporting findings to stakeholders.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
3+ years of experience as a Product Security Analyst, Product Security Engineer, or Security Engineer with proven experience in product security engineering and a focus on SaaS applications.
Bachelor's degree in Computer Science, Information Security, or related field.
Experience working with vendors and customers to respond to RFPs about product security and compliance, and experience working in partnership with Software Development and Legal teams for security compliance.
Experience with requirements and remediation for SOC2 and other security audits for software as a service.
Demonstrated coding ability in Python and familiarity with cloud computing platforms (e.g., AWS, Azure, GCP), and associated security controls.
Strong understanding of web application security concepts, including authentication, authorization, encryption, and secure coding practices.
Hands-on experience with security tools and technologies, such as vulnerability scanners, penetration testing tools, and SIEM solutions.
Strong analytical and problem-solving abilities, with a keen attention to detail and a proactive approach to security challenges.
Proven capacity to assess system security, discern patterns, and delve into intricate issues.
Proficiency in making data-driven, risk-based decisions.
Results-driven approach with exceptional interpersonal and communication abilities to effectively engage with technical and non-technical stakeholders.
Strong empathy towards our customers, including internal developers.
Preferred
Advanced degree or relevant certifications (e.g., CISSP, CISM, CSSLP) preferred.
Benefits
Incentive Stock Options
Benefits
Company
Newsela
Newsela is an Ed-tech startup that takes content from trusted providers and turns it into learning materials.
H1B Sponsorship
Newsela has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (1)
2022 (5)
2021 (2)
Funding
Current Stage
Late StageTotal Funding
$172.16MKey Investors
TCVKleiner PerkinsOwl Ventures
2021-02-25Series D· $100M
2019-03-13Series C· $50M
2017-02-01Series B· Undisclosed
Recent News
2024-05-05
2024-05-05
2024-05-05
Company data provided by crunchbase