[Remote] Senior Product Security Engineer
Note: The job is a remote job and is open to candidates in USA. Uplight is creating a new category of energy, making software that manages energy resources to generate, shift, or save energy. They are seeking a Senior Product Security Engineer to support and improve their Secure Software Development Lifecycle and ensure robust security practices across their products.ResponsibilitiesSupport, implement, and improve Secure Software Development Lifecycle (SDLC)Act as a consultant to the design and development stages of SDLCDocument and work with product and engineering teams to implement security best practices and system configuration standardsSupport Asset Management initiatives to ensure all assets are tagged and classifiedWork with outside parties to perform penetration testsPerform Security Architecture, AppSec and Risk AssessmentsPerform Threat ModellingAnalyze, manage, and work with other teams to address vulnerabilities, code weaknesses, misconfigurations, and non-compliance findingsCoordinate and participate in Disaster Recovery exercises, including Backup testsMaintain and administer security toolingLead security projects dedicated to improving Uplights's security postureRespond to and assist with incidents as needed or assignedImplement and be responsible for best product security practices and proceduresPerform an on-call shift rotationDemonstrate effective communication skills, both verbal and writtenSkillsAdvanced experience in securing applications and application settingsAdvanced experience in app and product securityAdvanced understanding in securing cloud technologiesExperience with technologies from at least one public cloud (AWS, GCP, Azure)Experience in securing containerization (Docker, K8s, etc) and APIExperience with modern DevSecOps practices including implementing automated security in IaC and CI/CD pipelinesStrong scripting skills Python/Shell Scripting experienceMid to advanced level Linux knowledge in a physical, virtual, or public cloud environmentExceptional verbal and written communication skills are necessary to effectively collaborate with peers, and to present and explain highly technical information to stakeholders who may have limited technical knowledgeCISSP, CASP+, GSLC, CISM certifiedBenefitsFlexible time offGenerous parental leaveA wellness stipendWork flexibilityCompany OverviewUplight provides end-to-end customer-centric technology solutions. It was founded in 2019, and is headquartered in Boulder, Colorado, USA, with a workforce of 501-1000 employees. Its website is https://uplight.com/.Company H1B SponsorshipUplight has a track record of offering H1B sponsorships, with 1 in 2026, 5 in 2025, 6 in 2024, 2 in 2023, 4 in 2022, 2 in 2021, 3 in 2020. Please note that this does not guarantee sponsorship for this specific role.