Product Security Engineer II (TCP331) - Tango Charlotte, North Carolina, United States Bookmark Share Print 66 0 0

Listing Description

The Job


As a Product Security Engineer II, you will be responsible for working with developers and product engineers to implement product and application security initiatives at Tango! Our ideal candidate for this position exhibits technical judgment, innovation, and execution to tackle open-ended problems.


Through partnership with development engineers, you will help design and proto security features that support the CIA responsibilities for all Tango product offerings. Your tactical duties may include: managing code vulnerabilities through the various testing platforms (SAST, DAST, IAST, SCA), code reviews, red teaming, and ensuring CI/CD product pipeline security at all phases.


Our ideal candidate is proficient in hands-on application development and information security engineering, hence why you'll have a passion for this role. If you thrive working with developers, defending and threat modeling security features, in a dynamic agile environment - please apply!


Reports To: VP Information Security


As Product Security Engineer II at Tango, you will:



  • Work with development staff regularly to identify product security opportunities

  • Design and prototype product security features

  • Build security into the CI/CD pipeline

  • Perform secure code reviews for new products, technologies, and services.

  • Deliver security training and outreach to internal development teams.

  • Continuously remove application vulnerabilities.

  • Perform threat modeling and attack surface analysis/reduction.

  • Potential to perform back-up on-call duties with the operations team for either team support or incident response.


To be effective in our Product Security Engineer II role, you must have:



  • BS in computer science or related field or equivalent work experience, minimum of 4+ years total technical experience

  • 3+ years of experience in information security administration (vulnerability management, network security, cryptography, policy development, or application security)

  • 2+ years of experience as a developer of enterprise software using languages such as Java, Python, Go, C, C#, or C++

  • Experience with common red-teaming tools (such as Kali, Metasploit, or BurpSuite) to discover flaws in application code

  • Experience scripting (Python, Ruby, PHP, C, C#, Java, Perl, etc.) to automate security operations activities

  • Experience with incident response or on-call duties


Our ideal Product Security Engineer II at Tango will have most of the following skills and experience:



  • Experience with infrastructure automation (Chef, CloudFormation, Jenkins)

  • Security certifications: CISSP, GWEB, GCSA, etc.

  • Experience in various security systems including Security Information and Event Management (SIEM), Intrusion Detection, Prevention Systems (IDS/IPS), Vulnerability Management, Endpoint Detection and Response (EDR), or other associated tools

  • Creativity and drive to operationalize existing manual processes for the Security Team


Salary: The targeted pay range for this position is between $154,000 and $174,000. Please note that the actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, and experience.  Certain positions are eligible for additional forms of compensation such as bonus.


#Li-DNI #Li-Remote #BI-Remote


Please note: visa sponsorship is available for this position.


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765