Senior Product Security Engineer - Applications jobs in United States
cer-icon
Apply on Employer Site
company-logo

Optimum ยท 1 day ago

Senior Product Security Engineer - Applications

positionPlano, TX
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

Optimum is a leader in the fast-paced world of connectivity, seeking a Senior Product Security Engineer to enhance product security for its applications. The role involves collaborating with engineering and product teams to ensure security is integrated into the product lifecycle and advocating for strong security practices.

Telecommunications
check
H1B Sponsor Likelynote

Responsibilities

Collaborate with engineering and product teams to integrate security and secure-by-default guardrails into the product lifecycle, ensuring that security is a core consideration in all design and development decisions
Conduct Threat Modeling and Risk Assessments from the early stages of the product development lifecycle to identify, assess, and prioritize security risks, enabling proactive mitigation strategies
Perform rigorous security testing and reviews to uncover and address security weaknesses
Lead initiatives automating security processes from the developer workstation to cloud, SaaS, and datacenter environments
Design, build, deploy, and support security-focused solutions across cloud and on-premise footprints
Foster a security-first culture by educating and empowering engineering and product teams through training, awareness campaigns, and mentorship, cultivating a strong security mindset
Stay updated on the latest security threats, vulnerabilities, and technology trends, and proactively implement improvements
Contribute to incident response efforts, investigate root causes, and implement corrective actions to minimize impact and prevent future occurrences

Qualification

Application SecurityThreat ModelingRisk AssessmentsCloud SecuritySecure SDLCGCPAI/ML SecuritySecurity FrameworksCI/CD SecurityProgramming LanguagesCommunication SkillsMentorshipCollaborationProblem-Solving

Required

Bachelor's degree in Computer Science, Electrical Engineering, a related field, or equivalent professional experience
5+ years of combined hands-on experience in software engineering and application and infrastructure security, including securing cloud-based and containerized environments
Demonstrable experience with product and application security concepts, including API, web, and mobile app security
Excellent communication skills, both written and verbal, and the ability to communicate complex security concepts to technical and non-technical audiences, including senior leadership
Proven ability to establish credibility and build trust with engineers and operational staff
Expertise in conducting comprehensive threat modeling and risk assessments to identify and mitigate vulnerabilities
Experience building, deploying, and securing workloads and infrastructure in Google Cloud Platform (GCP)
Experience utilizing and securing AI/ML models and AI-integrated solutions, a general understanding of AI concepts, and a willingness to learn more
Proficient in modern security frameworks, tools, and techniques. Familiarity with security standards and frameworks such as ISO, NIST, OWASP, etc
Proficiency in secure SDLC practices, commercial and open-source security testing tools (SAST, DAST, SCA, fuzzing), container security (Docker, Kubernetes), and cloud security (GCP, AWS, Azure)
Practical experience securing CI/CD pipelines; Infrastructure-as-Code (IaC) tools like Terraform; GitHub and/or Gitlab; artifact management
Strong understanding of both human and non-human identity management, enterprise and consumer authentication standards and use cases, and common protocols including OAuth and SAML
Experience overseeing vulnerability and threat management at the platform and application levels
Strong understanding of cryptography and key management use cases
Proficiency in one or more modern programming languages like Golang, Python, Node, and Java

Preferred

Master's degree is a plus
Familiarity with advanced networking products and capabilities like SASE and SD-WAN is a plus
Familiarity with penetration testing and red teaming is a plus
Site Reliability Engineering (SRE) experience is a strong plus
Experience developing security-focused Terraform modules is a strong plus

Company

Optimum

twitter
company-logo
At Optimum, we believe in the power of connection. We deliver fast internet, mobile, TV, and phone services to millions of homes and businesses.
location
Queens, NY, US
people-size5001-10000 employees
web-link
http://www.optimum.com

H1B Sponsorship

Optimum has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (6)
2024 (1)
2023 (2)
2022 (5)
2021 (2)
2020 (4)

Funding

Current Stage
Late Stage
Company data provided by crunchbase