Logo
Karkidi

Staff Product Security Engineer

Karkidi, San Francisco, California, United States, 94199


Are you passionate about application security? Do you get a thrill out of discovering security vulnerabilities in web applications and mobile apps? Do you enjoy the challenge of designing creative solutions to tough problems? Are you excited about securing the public cloud? Can you thrive in a dynamic team where our 150k+ customers count on us for protecting their data? If so, you might be a perfect fit for Zendesk’s Product Security Team!At Zendesk Security we believe that security is everyone’s responsibility and that security decisions should be simple. When our customers or employees face options, we strive to make the secure options the easiest way of achieving their goals.On the Zendesk Product Security Team we implement tools and build processes that allow Zendesk Engineering to make the right, secure decisions for our customers. We partner with our engineers to prioritize security during the entire software development process and provide tools and programs to do so.What you’ll do as a Staff Product Security Engineer

Secure customer-facing applications, primarily web technologies.Perform threat modelling and review software design in partnership with Zendesk Engineering.Partner with Zendesk Engineering through our Security Champions program to nurture a security culture and to help our engineers improve their security posture.Automate and integrate security tooling into CI/CD pipelines at scale.Evaluate, implement and operationalise additional tooling as needed.Be the voice of Zendesk Security while responding to customer security questions and issues.Support incident response efforts as needed and work with teammates to investigate them.Work in a team-orientated, fast-paced, global, and flexible environment.What you bring to the role

At least 5 years of application security experience.A team-first, collaborative approach.Experience securing complex, highly scaled systems. Methodical in identifying and decomposing security requirements and opportunities.Penetration testing experience/ability to verify common web vulnerabilities.Knowledge of modern web applications including their security threats and vulnerabilities.You can explain security considerations well to others and just as important, actively listen to others ensuring a good discussion.Experience with agile development processes, working in a fast-paced environment with continuous integration and deployment.Excellent problem solving skills and self-motivated to learn and up-skill regularly.Nice to haves

Bonus points for knowledge of Machine Learning.Experience with M&A activities.Experience securing large Amazon Web Service deployments.Security certifications such as OSCP, GWEB, GPEN, GWAPT, CEH, CISSP, etc. are a plus.Zendesk is an equal opportunity employer, and we’re proud of our ongoing efforts to foster global diversity, equity, & inclusion in the workplace. Individuals seeking employment and employees at Zendesk are considered without regard to race, color, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, disability, military or veteran status, or any other characteristic protected by applicable law. We are an AA/EEO/Veterans/Disabled employer.

#J-18808-Ljbffr