Senior Product Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Mattermost · 2 hours ago

Senior Product Security Engineer

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$135K/yr - $175K/yr
date5+ years exp

Mattermost is a leading collaborative workflow solution provider for critical infrastructure organizations. The Senior Product Security Engineer will ensure the security of products and services, implement security tooling, and coordinate with stakeholders throughout the software development life cycle.

File SharingInformation ServicesInformation TechnologyMessagingSaaSSoftware
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Support the application vulnerability management and mitigation approaches
Conduct application security reviews through manual code review or static/dynamic code analysis
Engage in threat modeling and design reviews of in-house developed software components
Provide security guidance and training to internal development teams
Triage SCA findings and support internal development teams in SCA findings remediation
Improve and/or automate existing processes to increase efficiency

Qualification

Application securitySecure software developmentThreat modelingStatic/dynamic analysisProgramming languagesResourcefulnessOpen source experienceBug bounty experiencePenetration testing certificationsElectron experienceReact experienceCTF participationCommunicationTeamwork skills

Required

BS in Computer Science, Cybersecurity, Software Engineering, or a related technical field, or equivalent experience, with 5+ years of relevant experience in application security, secure software development, or penetration testing
Deep understanding of web application security and secure development practices
Deep understanding with common security libraries, security controls, and common security flaws
Experience with Threat Modeling applications
Experience with static/dynamic analysis, and common exploit methods
Experience in one or more programming languages, ideally Go or Javascript
Excellent written and verbal communication skills
Demonstrable teamwork skills and resourcefulness
For candidates residing in the U.S.: This role may require the ability to obtain and maintain a U.S. government security clearance in the future. As such, U.S. applicants must be U.S. citizens and eligible under applicable clearance requirements
Applicants must meet eligibility requirements for access to export-controlled information as defined by U.S. export control laws, including EAR and ITAR

Preferred

Experience working in open source communities
Experience running a bug bounty program
Certifications in the domain of penetration testing or application security (e.g. OSCP, OSWE, GWAPT, …)
Experience with Electron, React or React Native
Participation in Bug Bounties, CTFs or similar activities

Company

Mattermost

twittertwittertwitter
company-logo
Mattermost is an open source platform for secure collaboration across the entire software development lifecycle.
dateFounded in 2016
location
Palo Alto, California, USA
people-size51-200 employees
web-link
https://mattermost.com

Funding

Current Stage
Growth Stage
Total Funding
$73.5M
Key Investors
Y CombinatorRedpointS28 Capital
2019-06-19Series B· $50M
2019-02-05Series A· $20M
2017-02-15Seed· $3.5M

Leadership Team

leader-logo
Ian Tien
CEO & Co-founder
linkedin
leader-logo
Corey Hulen
Founder and CTO
linkedin

Recent News

PRWeb
Mattermost Appoints Devanesan Moses as Vice President of Customer Enablement & Success
2025-10-21
PRWeb
Mattermost Launches Free Entry Tier: Sovereign Self-Hosted Collaboration to Fortify Data Against AI-Era Threats
2025-10-16
The Register
Slack threatened to delete nonprofit coding club’s data if it didn’t pay $50k in a week
2025-09-19
Company data provided by crunchbase