Newsela · 4 days ago
Senior-Level Product Security Engineer
Wonder how qualified you are to the job?
Maximize your interview chances
E-LearningEdTech
H1B Sponsorship
Insider Connection @Newsela
Responsibilities
Play a pivotal role in ensuring the security of SaaS products by designing and implementing security controls to protect sensitive data and prevent unauthorized access.
Ensure compliance with relevant security standards, regulations, and industry certifications, manage requirements gathering and remediation efforts for security audits.
Develop security-related documentation, participate in risk assessments and compliance reviews, identify areas for improvement.
Champion security awareness and adherence to secure coding practices among development teams, provide guidance on security best practices and compliance requirements.
Work closely with engineering teams to build advanced detection solutions, partner with Legal team for complex investigations.
Collaborate with internal stakeholders and external partners to respond to RFPs about product security and compliance.
Manage investigations and security incidents, conduct root cause analysis, implement corrective actions.
Implement security controls and remediation activities to mitigate risks and vulnerabilities.
Monitor and track compliance with security policies and standards, report findings to relevant stakeholders.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
3+ years of experience as a Software Engineer, Product Security Engineer, or Security Engineer with proven experience in product security engineering and a focus on SaaS applications.
Bachelor's degree in Computer Science, Information Security, or related field.
Experience working with vendors and customers to respond to RFPs about product security and compliance, and experience working in partnership with Software Development and Legal teams for security compliance.
Experience with requirements and remediation for SOC2 and other security audits for software as a service.
Demonstrated coding ability in Python and familiarity with cloud computing platforms (e.g., AWS, Azure, GCP), and associated security controls.
Strong understanding of web application security concepts, including authentication, authorization, encryption, and secure coding practices.
Hands-on experience with security tools and technologies, such as vulnerability scanners, penetration testing tools, and SIEM solutions.
Strong analytical and problem-solving abilities, with a keen attention to detail and a proactive approach to security challenges.
Proven capacity to assess system security, discern patterns, and delve into intricate issues.
Proficiency in making data-driven, risk-based decisions.
Results-driven approach with exceptional interpersonal and communication abilities to effectively engage with technical and non-technical stakeholders.
Strong empathy towards our customers, including internal developers.
Preferred
Advanced degree or relevant certifications (e.g., CISSP, CISM, CSSLP) preferred.
Company
Newsela
Newsela is an Ed-tech startup that takes content from trusted providers and turns it into learning materials.
H1B Sponsorship
Newsela has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (1)
2022 (5)
2021 (2)
Funding
Current Stage
Late StageTotal Funding
$172.16MKey Investors
TCVKleiner PerkinsOwl Ventures
2021-02-25Series D· $100M
2019-03-13Series C· $50M
2017-02-01Series B· Undisclosed
Recent News
2024-05-05
2024-05-05
2024-05-05
Company data provided by crunchbase