Senior Product Security Engineer, Secure Design

We're looking for a Senior Product Security Engineer to partner with engineers to assess security risk of new products and features. As a member of the Secure Design team, you will report to the Senior Manager of Product Security and enable DigitalOcean to build secure-by-design products.

Requirements

• Experience leading architectural changes or complex cross team efforts to mitigate security vulnerabilities.
• Ability to clearly communicate security topics and vulnerability classes (e.g. OWASP Top Ten) and ability to provide actionable direction to product teams.
• A record of partnering with internal engineering teams to tackle security problems across an entire stack with empathy and creativity.
• Working knowledge of modern development concepts (virtualized environments, containerization, continuous integration + delivery).
• Proficiency in network and/or system architecture design: with concepts such as BGP and gNMI, and you think of TCP, not geography, when someone says “Reno.”
• Experience building or reviewing threat models and ability to craft malicious user, attacker, and abuse/misuse cases.
• Working knowledge of hardware and software supply chain security.
• Familiarity with object oriented and functional programming concepts, particularly with languages such as Go, JavaScript, Rust, or C.

Benefits

• Competitive salary range $135,000 - $185,000
• Bonus in addition to base salary
• Equity compensation to eligible employees
• Employee Stock Purchase Program
• Reimbursement for relevant conferences, training, and education
• Access to LinkedIn Learning's 10,000+ courses
• Employee Assistance Program
• Local Employee Meetups
• Flexible time off policy