Product Security Engineer @Smarsh

[Hiring] Product Security Engineer @Smarsh

Apr 02, 2025 - Smarsh is hiring a remote Product Security Engineer. 💸 Salary: competitive salary along with company bonus. 📍Location: UK.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

We are looking for an experienced Product Security Engineer to partner with engineering teams and proactively identify, assess, and remediate security risks across our product portfolio. This role will focus on secure development practices, vulnerability management, threat modelling, and driving a shift-left security culture.

Secure SDLC Integration: Embed security within the software development lifecycle, ensuring security is considered at every phase—from design to deployment.
Threat Modeling & Security Design Reviews: Conduct structured threat modelling and security assessments for new features, architectures, and services.
Vulnerability Management & Remediation: Work closely with engineering teams to identify and remediate vulnerabilities from SAST, DAST, SCA, container security, and cloud security scans.
Code & Architecture Review: Conduct secure code reviews and architectural security assessments to identify risks early in the development process.
Automation & Tooling: Enhance security automation capabilities by integrating security testing tools into CI/CD pipelines.
Penetration Testing & Red Teaming: Facilitate internal and external penetration testing activities, helping to triage and remediate findings.
Security Champion Enablement: Collaborate with engineering teams to build security awareness and develop a network of Security Champions.
Incident & Response Readiness: Support Smarsh SOC and security incident response, including root cause analysis and post-mortem reviews for your product(s).
Security Compliance & Governance: Ensure alignment with regulatory requirements (SOC 2, ISO 27001, etc.) and support audit activities.

Qualifications

7+ years of experience in Product Security, Application Security, or a related security engineering role.
Deep expertise in secure software development, secure coding practices, and OWASP Top 10 / CWE 25.
Strong technical proficiency in modern programming languages (e.g., Python, Java, JavaScript, Go, or C#).
Experience with cloud-native security (AWS, Azure, GCP) and securing containerized environments (Docker, Kubernetes).
Proficiency in security testing tools such as Burp Suite, Endor, Semgrep, etc.
Strong background in network security, including firewalls, IDS/IPS, VPNs, and secure network design.
Hands-on experience with CI/CD security automation (GitHub Actions, Jenkins, GitLab CI, etc.).
Familiarity with infrastructure-as-code security (Terraform, CloudFormation) and cloud security posture management.
Strong understanding of identity & access management (OAuth, OIDC, SAML, JWT) and API security.
Knowledge of industry frameworks like NIST, ISO 27001, and SOC 2.
Experience driving developer enablement and security training initiatives.
Excellent communication and collaboration skills to engage with engineering, product, and leadership teams.

Preferred Qualifications

Security certifications such as OSCP, GIAC (GWEB, GWAPT, GCSA), CISSP, or CSSLP.
Experience working in SaaS, and multi-tenant cloud environments.
Knowledge of machine learning security (AI/ML model risks, LLM security best practices).
Familiarity with attack surface management and threat intelligence.

Benefits

We value our people and offer a competitive salary along with company bonus.
Strong maternity and paternity scheme.
A workplace pension scheme.
Take what you need holiday package.
Private medical insurance.
Dental plan.
Group life assurance.
Group income protection.
Employee assistance programme.
A monthly wellness allowance.
Adoption assistance.
Stock options.

Similar Remote Jobs

More jobs at Smarsh

Account Executive, Enterprise (Emerging Industries) • Smarsh Smarsh

Sales / Business unspecified USA

Mar 27, 2025
Principal Product Manager • Smarsh Smarsh

Product unspecified USA

Mar 22, 2025
Cloud Platform Engineer • Smarsh Smarsh

Devops / Sysadmin competitive salary with company bonus UK

Mar 08, 2025

More All Others jobs

Documentation Specialist • DISA Global Solutions, Inc DISA Global Solutions, Inc

All others $15- $17 USA

Apr 06, 2025
Chef • RJP RJP

All others €1581 - €1981 per month Ireland

Apr 06, 2025
Asst Dir, Crisis Services CCBHC • Centerstone of Indiana, Inc. Centerstone of Indiana, Inc.

All others $81,132--$121,716 USA

Apr 06, 2025

More jobs in UK

Lead Solution Architect • Aker Systems Aker Systems

Software Development competitive salary UK

Apr 06, 2025
Project Manager • Elite Technology Elite Technology

Project Management unspecified Northern America, UK, Canada

Apr 06, 2025
Senior Accountant • OpenZeppelin OpenZeppelin

Finance / Legal unspecified UK

Apr 06, 2025

Kickstart Your Job Search

Need advice to apply? Join our free Webinar « 3 Mistakes to Avoid When Looking For A Remote Startup Job (And What To Do Instead) »

Unlock 55,373 additional remote jobs, advanced search & email notifications

Get Access Now

Too many emails? Declutter your inbox with Meco

Your home for reading newsletters

Try for free - no card required.

Before You Apply

️

📍	Be aware of the location restriction for this remote position: UK
‼	Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more.

Back to Remote jobs > All others

Product Security Engineer @Smarsh

All others

Salary 💸 competitive salary along with company bonus	Remote Location UK
Job Type full-time	Posted Apr 02, 2025

Apply for this position Unlock 55,373 Remote Jobs

️

📍	Be aware of the location restriction for this remote position: UK
‼	Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more.

Product Security Engineer Apply for this position Unlock 55,373 Remote Jobs