Product Security Engineer

Remote Full-time
About the RoleAs a member of our security team, you will build secure-by-default, defense-in-depth, and least privilege mechanisms throughout our product lifecycle. You will work closely with engineering teams on security best practices from design and architecture to implementation and monitoring. You will have the opportunity to build from the ground up to experiment and innovate with modern software security practices.ResponsibilitiesCreate paved roads for engineers to develop securely by default and build guardrails for when we veer off courseConduct regular architecture reviews and code audits to detect potential threats, risks, and vulnerabilitiesHarden our CI/CD pipelines and improve the integrity of Clerkโ€™s software artifactsContribute to and improve Clerkโ€™s vulnerability management program including vulnerability disclosure, security scans, and penetration testsProvide guidance and training to teammates on security best practices and building resiliency into our systemsCollaborate with our Infrastructure team to establish secure infrastructure-as-code modules and minimal base container imagesDocument secure development policies and practicesQualificationsProven experience in a software security, application security, or product security role with 7+ years (use this as a gauge, not a hard requirement) of hands-on experienceStrong empathy with the ability to enable engineers to move quickly and securely, ideally having previously worked as a software engineerExpertise in proactive secure coding practices such as encryption, secrets management, and eliminating vulnerability classes (e.g. in the OWASP Top 10)Experience with reading and writing code in Go, TypeScript, or similar languages with the ability to dive into codebases, debug, and suggest fixesExperience with application security tooling (SAST/SCA/DAST/etc.) and building custom queries using Semgrep/CodeQL/etc.Experience with authentication and authorization protocols such as OAuth, OpenID Connect, and SAMLFamiliarity with Supply-chain Levels for Software Artifacts (SLSA)Familiarity with Cloud infrastructure platforms, preferably GCPBenefits Competitive Salary โ€“ We want you to know that we value the skills and experience you bring to the table. We go out of our way to make sure that you feel fairly compensated. Equity Ownership โ€“ At Clerk, we believe in shared success. That's why we offer a stock option plan so that everyone can benefit from the growth and prosperity of the company.โš•๏ธ Health Coverage โ€“ We care about your well-being. That's why we offer top-tier health insurance to ensure that your health needs are fully met. Work Gear - Set up your ideal home office with the gear of your choice. At Clerk, we want to ensure that you have everything you need to perform at your best. ๏ธ Flexible Vacation Policy โ€“ We believe in work-life balance and trust you to take the time you need. Although we recommend 25 days per year, our vacation policy is unlimited. This is in addition to observing national holidays specific to your country of residence. Diverse and Inclusive Team โ€“ Join our exceptional, diverse, and globally distributed team at Clerk. We are committed to fostering an inclusive environment where everyone can contribute their best in building impactful products and tools for the modern web.Clerk is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, local or national laws.This policy applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. Clerk makes hiring decisions based solely on qualifications, merit, and business needs at the time.

Apply Now
Apply Now โ†’

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Senior Foreign Patent Advisor (Remote)

Remote

**Experienced Part-Time Data Entry Specialist โ€“ Remote Opportunity with arenaflex**

Remote

Verizon Customer Service Representative

Remote

No Experience? No Problem - Start Typing

Remote

Partner Director, Household Essentials

Remote

**Experienced Data Entry Specialist โ€“ Virtual Customer Care Professional at arenaflex**

Remote

Core Master of Science in Nursing (MSN) Adjunct Faculty- Remote

Remote

blue cross blue shield data entry

Remote

[Remote] Web3 Digital Asset Portfolio & Market Strategy Associate

Remote

Virtual Data Entry Clerk

Remote
โ† Back