SailPoint company image
SailPoint
SailPoint is the leader in identity security for the modern enterprise.
Hybrid
View Profile
Jobs//Hybrid//Cybersecurity + IT//

Sr. Product Security Engineer

Sorry, this job was removed at 4:01 p.m. (CST) on Tuesday, February 23, 2021
View 143 Jobs
Find out who's hiring in Austin.
See all Cybersecurity + IT jobs in Austin
View 143 Jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

About Us

 

SailPoint is the Worldwide Leader for Enterprise-Class Identity and Access Management (IAM). We minimize risk and maximize business growth by managing access to data and resources across your enterprise. We do it effectively and securely for every person who interacts with your organization—any user, on any device, anywhere in the world. We were first to recognize that companies could benefit from an approach to identity that addresses both IT and business priorities. We developed a unique, risk-based model and leveraged that approach for everything from compliance to user provisioning. Then we followed that with the industry's first solution for truly extending enterprise identity management to applications in the cloud.

 

Today, we offer comprehensive products that can handle enterprise IAM on-premises or as a cloud-based service. This gives you the freedom to choose the best solution for your current needs, while at the same time establishing a clear path for future growth.

 

About the Role:

 

SailPoint is seeking a Sr. Product Security Engineer to join our Security Team. Candidates should have a thorough understanding of the Software Development Lifecycle (SDLC), from initial design through ongoing penetration testing to vulnerability remediation. In this role, you will identify and validate vulnerabilities, work with engineering teams to identify the root cause and provide practical recommendations to remediate identified issues. We’re looking for a well-rounded engineer with a breadth of knowledge in application security.

 

Responsibilities:

  • Perform design and code reviews for security best practices.

  • Evaluate security vulnerability scan (SAST/DAST/IAST) findings and enforce remediation lifecycles.

  • Research, investigate and perform risk analysis of new findings surfaced by various application security tools and services.

  • Educate developers on application security best practices throughout the SDLC.

  • Support software developers in triaging and remediating security issues.

  • Manage tuning and filtering of security tooling to help remove false positives or false negatives.

  • Evangelize security tooling throughout the organization.

  • Be an influencer of change while maintaining a strong relationship with the engineering organization.

  • Support vendor and partner security assessments

  • Contribute to creation of security training and deliver to internal teams

  • Coordinate and manage third party penetration test.

  • Build and maintain bug bounty program

  • Develop tooling and automation to facilitate continual testing and increase coverage

  • Prepare reports on project progress and present results to internal and external development teams and management

  • Contribute to maturing process, policy and standard guidance

 

Background & Experience:

  • Extensive experience with securing cloud and SaaS technologies

  • Strong sense of ownership, urgency and drive.

  • Ability to proficiently code in Java, Objective-C, C++, Python and NodeJS.

  • Ability to understand various application code base regardless of the programming language.

  • Ability to describe security best practices to software development / engineering teams.

  • Ability to understand complex software architectures and their deployment models.

  • Ability to understand security issues identified by security scans regardless of application programming language.

  • Solid understanding of web application security frameworks, including OWASP Top 10

  • Ability to research, analyze, and understand known and new CVEs

  • Strong knowledge of CI/CD build systems, microservices, and continuous integration/deployment practices.

 

Qualifications

  • 1+ years of experience as a Software Developer or Security Engineer with active design & development experience in languages such as Java, Python, Objective-C and NodeJS.

  • In-depth application development knowledge at least one of the following: Java, Python

  • Experience with enterprise management of SAST/DAST/IAST tools.

  • Experience working in collaboration with software engineering organizations to improve security posture.

  • Must be self-directed and able to work independently as well as in a team environment.

  • Resourceful in finding solutions.

  • Proven consulting and facilitation skills.

  • Excellent verbal and written communication skills.

 

Education:

  • Bachelor's degree in Computer Science or other technical discipline, or equivalent experience.

  • Some combination of the following security certifications: OSCP, OSWE, CTP, GIAC, CPT/CEPT, etc. AWS or other cloud solution provider certifications a plus.

 

 

 

SailPoint is an equal opportunity employer and we welcome everyone to our team.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Laurie Evans
SVP, Digital Sales
A FOCUS ON BELONGING
Building the foundation for success
“It’s important to build the right leadership team to motivate and inspire an organization of sellers,” Laurie Evans said. Evans leads the digital sales organization of more than 120 team members who assist customers throughout the buying journey. To cultivate an environment where everyone can be successful, she prioritizes building a diverse, equitable and inclusive culture. “One of the first things I championed was a culture committee. This cross-sectional team coordinates awards, recognitions and fun events to ensure every person feels a sense of belonging, excitement and celebration.”
“It’s important to build the right leadership team to motivate and inspire an organization of sellers,” Laurie Evans said. Evans leads the digital sales organization of more than 120 team members who assist customers throughout the buying journey. To cultivate an environment where everyone can be successful, she prioritizes building a diverse, equitable and inclusive culture. “One of the first things I championed was a culture committee. This cross-sectional team coordinates awards, recognitions and fun events to ensure every person feels a sense of belonging, excitement and celebration.”
I find the greatest honor in leading everyone to success and helping build careers.
Loren Veyrheden
Manager, Engineering
TAKING THE LEAD
Everyone has opportunities to grow
Loren Veyrheden mentors each of her engineering team members to help guide their professional development. She explained that understanding their goals “allows me to be creative in how I come up with opportunities for people.” Her team is always connected and ready to jump in when a peer needs help. And to make sure everyone has the opportunity to grow their leadership skills, Veyrheden said team members “take turns leading our Agile ceremony meetings to practice communication skills, facilitating meetings, driving decisions and leading through ambiguity.”
Loren Veyrheden mentors each of her engineering team members to help guide their professional development. She explained that understanding their goals “allows me to be creative in how I come up with opportunities for people.” Her team is always connected and ready to jump in when a peer needs help. And to make sure everyone has the opportunity to grow their leadership skills, Veyrheden said team members “take turns leading our Agile ceremony meetings to practice communication skills, facilitating meetings, driving decisions and leading through ambiguity.”
Everyone is extremely supportive and ready to try new things that might improve how we work.
Ross Shwarts
Manager, Professional Services
CONNECTING ACROSS TEAMS
Sharing our personal and professional selves
Understanding the importance of connections, Ross Shwarts sets up weekly one-to-ones with his direct reports. “Sometimes we talk about work; sometimes we talk about ridiculous things our kids do. This time together helps me understand what is important to them personally and professionally.” To ensure his team members feel valued and heard, they regularly spend time as a group to work through problems. And when an occasional project requires long hours to complete, it doesn’t go unnoticed. “My boss will help me close out the project, then tell me to take some time to go do something fun.”
Understanding the importance of connections, Ross Shwarts sets up weekly one-to-ones with his direct reports. “Sometimes we talk about work; sometimes we talk about ridiculous things our kids do. This time together helps me understand what is important to them personally and professionally.” To ensure his team members feel valued and heard, they regularly spend time as a group to work through problems. And when an occasional project requires long hours to complete, it doesn’t go unnoticed. “My boss will help me close out the project, then tell me to take some time to go do something fun.”
SailPoint has always enabled me to work flexible hours during weeks when I need to watch my kids or deal with things like a snowpocalypse.

What are SailPoint Perks + Benefits

SailPoint Benefits Overview

Experience a Small-company Atmosphere with Big-company Benefits

Culture
Volunteer in local community
Our crew members value working for an organization that prioritizes giving back to the community, and we have engaged in many community initiatives over the past year.
Partners with nonprofits
In the past year alone we have supported many notable organizations, including Code2College, nonPareil, Black Girls Code, Foundation Communities, and HealthCode.
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Flexible work schedule
SailPoint's hybrid work environment reinforces the flexibility that has existed within our culture for many years.
Remote work program
As an organization that values impact over activity, we encourage crew members to manage their work schedules so they can be at their most effective within parameters established by their teams.
Diversity
Documented equal pay policy
Mean gender pay gap below 10%
Diversity employee resource groups
Slack is how we come together as a global team, and we have offer several Employee Resource Group channels where we celebrate our differences and encourage sharing and connection.
Hiring practices that promote diversity
We prioritize hiring practices that promote diversity. This year, for example, we launched SAIL-U to help grow our team in partnership with HBCUs and historically LatinX colleges and universities.
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Financial & Retirement
401(K)
401(K) matching
Employee stock purchase plan
Performance bonus
Child Care & Parental Leave Benefits
Generous parental leave
SailPoint offers generous parental leave with the primary caregiver being able to take 80 fully-paid business days. Secondary caregivers can take 20 fully-paid business days.
Family medical leave
Company sponsored family events
SailPoint's crew love to celebrate together, whether at a family-friendly summer BBQ or Halloween party, or while volunteering and giving back to our local communities.
Vacation & Time Off Benefits
Unlimited vacation policy
Paid holidays
Office Perks
Company-sponsored outings
When possible, SailPoint brings crew together for summer camps, quarterly meetings and other team-based events.
Free snacks and drinks
Some meals provided
Company-sponsored happy hours
Onsite office parking
Recreational clubs
Home-office stipend for remote employees
Onsite gym
Professional Development Benefits
Job training & conferences
Lunch and learns
Promote from within
Mentorship program
Online course subscriptions available
View full list of perks + benefits
Photo Gallery

More Jobs at SailPoint

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about SailPointFind similar jobs like this