Staff Product Security Engineer
Chicago, IL; Bellevue, WA; San Francisco, CA
Flexport
Cut costs, automate workflows, reliably move goods, go carbon-neutral, and improve your supply chain from end to end. It all starts here.Enable Flexport to become the most trusted company in global trade
The Opportunity:
Flexport helps more than 10,000 clients and suppliers lead all aspects of their supply chain operations. Started in 2013, we've raised over $1.3B from investors that include the Founders Fund, Google Ventures, First Round Capital, Bloomberg Beta, Y Combinator, Wells Fargo, & Softbank.
With offices on three continents, our team is as global as our client base and we’re excited to continue building a product and service they love. Wherever you are, whichever role you play, you’re guaranteed to share your day with committed, encouraging, and resourceful team members.
Flexport is looking for Product Security Engineers to help Flexport establish itself as the most trusted company in the global trade ecosystem. As a Product Security Engineer, you have a deep understanding of product development and strategy, and are able to quickly identify and communicate security risks to diverse audiences while offering alternative solutions.
What you’ll do:
- Build strong relationships with product managers and champion security by design.
- Lead security engineering review for new product features and enhancements.
- Engage in domain-specific threat modeling and attack surface analysis/reduction
- Develop security services consumed by product teams across our global infrastructure.
- Evangelize security across the product and engineering organizations.
- Collaborate with internal product and engineering stakeholders on addressing systemic security issues.
- Define Security Architecture for Flexport products and services, and assist with the planning and implementation of risk mitigating security solutions
- Partner with Security PMO to drive the security champions and product security training programs.
- Work closely with cross functional teams to conceive security strategies and features that will help keep Flexport’s customer data safe.
What you’ll need:
- 8+ years of security engineering experience supporting product development and engineering teams in a fast-paced global environment.
- 4+ years of software development experience building security tools in languages such as Go, Java, Python, or Ruby.
- Strong knowledge of CI/CD and automation tools
- Identity management and identity federation (SAML, Oauth, SCIM, XACML)
- Experience performing code audits on internal and open source libraries for inclusion in our products.
- Experience with IaaS cloud infrastructure, Kubernetes, containers, and service-oriented architectures.
- Excellence in problem-solving, strategic thinking, and collaboration with cross-functional teams.
- Strong written and verbal communication skills and ability to connect with empathy when delivering constructive feedback regarding security matters to engineers and product designers.
Where you’ll work:
Our flagship office is on Market Street in San Francisco, but we also have engineering teams working out of our locations in Chicago and Bellevue. Remote work is also possible from CA, CO, DC, FL, GA, IL, NJ, NY, OR, PA, TX, VA, WA. As a truly global company, we don’t let geography slow us down. We rotate hack-a-thons and move Flexporters all around the world.
Investing your time with Flexport means having immediate impact, all over the world. You’re empowered to do what’s best for everyone and trusted to make the right decisions when and where you need them. Join our collective of entrepreneurs and improve the world’s experience in global trade.
Culture & Values
- Learn more at www.keyvalues.com/flexport
About Flexport:
We believe global trade can move the human race forward. That’s why it’s our mission to make global trade easier for everyone. We aim to do this by building the Operating System for Global trade - a strategic model combining advanced technology and data analytics, logistics infrastructure, and supply chain expertise. Flexport today connects almost 10,000 clients and suppliers across 109 countries, including established global brands like Georgia-Pacific as well as emerging innovators like Sonos. Started in 2013, we've raised over $1.3B in funding from SoftBank Vision Fund, Founders Fund, GV, First Round Capital and Y Combinator. We’re excited about the three big ways we’re moving forward after our recent $1B investment from SoftBank Vision Fund in February 2019.
Worried about not having any freight forwarding experience?
- Don’t be! We’re building the first Operating System for Global Trade. That’s why it’s incredibly important for us to bring people from diverse backgrounds and experiences together with our industry veterans to help move the freight forwarding industry forward.
- What’s freight forwarding and why does it matter? Freight forwarding is the coordination and shipment of goods from one place to another and it’s what makes global trade possible. Flexport is on a mission to make global trade easier for everyone because we believe it can help connect the world and break down economic barriers.
- We know this industry is complex. That’s why we invest in education starting day one with Flexport Academy, a one week intensive onboarding program designed specifically to set every new Flexport employee up for success.
At Flexport, our ability to fulfill our mission of making global trade easy for everyone relies on having a diverse, dedicated and engaged workforce. That is why Flexport is committed to creating and nurturing an environment where anyone can be their authentic self. All qualified applicants will receive consideration for employment regardless of race, color, religion, sex, national origin, age, physical and mental disability, health status, marital and family status, sexual orientation, gender identity and expression, military and veteran status, and any other characteristic protected by applicable law.
Tags: Analytics Audits Automation CI/CD Cloud IaaS Java Kubernetes Open Source Product security Python Ruby SAML Strategy
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs