Product Security Engineer (Work From Home)

Job Title : Product Security Engineer

Compensation : $120,000-140,000

Location : Remote

Product Security Engineer :

As Buildertrend's Product Security Engineer, you will champion secure product design and development. Partnering closely with our product and engineering teams, you'll ensure that security is embedded into every stage of the product lifecycle.

Your deep understanding of software development and security principles will enable you to guide and influence the creation of robust, resilient products that safeguard our customers' data and trust.

What you will do :

• Security Architecture & Design : Collaborate with architecture and product teams to design and implement secure architectures and coding practices from the ground up.
• Threat Modeling & Risk Assessment : Lead proactive threat modeling and risk assessments to identify and mitigate potential security risks throughout development.
• Secure Development Lifecycle (SDL) : Champion and enhance our SDL, incorporating security best practices, code reviews, and automated security testing into our CI / CD pipelines.
• Vulnerability Management : Establish and manage a comprehensive program, ensuring timely identification, assessment, and remediation of vulnerabilities.
• Security Incident Response : Develop and execute incident response plans to minimize the impact of security breaches and ensure swift recovery.
• Security Awareness & Training : Foster a security-first culture within the engineering team through training, mentorship, and knowledge sharing.
• Compliance : Ensure product development meets relevant security standards and regulations, including GDPR, CCPA, and industry-specific requirements.
• Stay Current : Stay abreast of emerging security threats, vulnerabilities, and technologies to address new risks proactively.

Qualifications :

• 8+ years of experience.
• Strong understanding of software development principles, design patterns, and common vulnerabilities.
• Familiarity with programming languages relevant to Buildertrend's tech stack (e.g., C#, .NET, JavaScript, React, SQL).
• Experience with cloud technologies (GCP, Azure) and containerization (Docker, Kubernetes).
• Expertise in securing APIs, including authentication, authorization, and input validation.

Security Knowledge :

• Deep understanding of OWASP Top 10, secure coding practices, and common security vulnerabilities.
• Understanding of mobile app security best practices, including secure data storage, code obfuscation, and protection against reverse engineering.
• Experience with security tools and technologies like SAST, DAST, SCA, and IAST.
• Awareness of the security implications of AI and machine learning models, including adversarial attacks and data poisoning.
• Knowledge of authentication, authorization, and encryption protocols.

Leadership & Collaboration :

• Experience in defining and tracking security metrics to measure the effectiveness of security initiatives and communicate progress to stakeholders.
• Familiarity with agile development methodologies.
• Excellent communication and interpersonal skills, capable of building strong relationships with engineering teams and stakeholders across the organization.
• Proven ability to influence and guide technical teams in adopting security best practices.
• Strong mentorship and coaching skills to help develop engineers' security expertise.
• Problem-solving & Critical Thinking :
• Ability to analyze complex security challenges and develop practical solutions.
• Strong analytical and problem-solving skills with a proactive approach to risk mitigation.

Nice to Have :

Relevant security certifications (e.g., CISSP, OSCP, CCSP).

What we Are Giving You :

• Competitive compensation
• Exceptional health packages
• 401(k) retirement plan with Buildertrend matching contribution
• Life insurance and short- and long-term disability benefits
• Parental leave
• Generous paid time off, 11 paid holidays, & 6 personal days
• Paid sabbaticals
• Volunteer time off
• Wellness program
• Onsite fitness center

Who We Are :

Buildertrend is cutting-edge, cloud-based project management software. With nearly 1 million users across the globe, we know what builders need : To work simpler, see more growth and calm the chaos in their business.

That’s why we believe in providing an all-in-one solution to solve real problems, deliver real results, and change the way the world builds.

Come be a part of the fun and challenging environment.

If you want to learn more about us, check out : https : / / buildertrend.com / about /

Working at Buildertrend :

At Buildertrend, we fully recognize that we all work so we can live better lives we appreciate and respect that this is a job and not your whole life.

What makes Buildertrend so special is a commitment to ensuring you can have the best job, work with the best people, and live your best life outside of work.

Our goal is to create a culture where everyone can make an impact on our customers, communities, and each other. In short : We want you to be who you are, love what you do, and build your best life.

Come be a part of the fun and challenging environment!