Plaid

Experienced Product Security Engineer

Job Description

The mission of Plaid's Product Security Team is “Improve our customer’s trust by assuring secure development and delivery of products and services,  minimizing risk to the ecosystem, and preventing security incidents.” The Product Security team is responsible for managing the security processes, policies and controls to secure Plaid’s developer and consumer facing products. We are focused on areas like Application Security, Vulnerability Management, Secure Development Lifecycle, Penetration Testing and Cloud Security.

As an Experienced Product Security Engineer at Plaid, you'll be a trusted advisor, collaborating closely with engineering and product teams to ensure security is a cornerstone of every product. You'll partner with leadership to shape product strategy, advocate for strong security controls, and influence future product iterations. By leveraging your deep industry knowledge, you'll lead the charge in implementing secure architecture and design principles, ensuring early detection and prevention of vulnerabilities. Your expertise in security assessments and penetration testing will help identify and mitigate potential threats, while your mentorship and training efforts will foster a security-conscious culture. By owning specific areas of Plaid's product portfolio, you'll provide expert guidance and minimize risks, ultimately strengthening Plaid's security posture.

This role is perfect for you if:

-You thrive in a collaborative environment, working alongside product, engineering, and security teams.
-Your passion lies in designing secure solutions and building robust security programs.
-You possess a deep understanding of security best practices and industry trends.
-You have a knack for translating complex technical concepts into actionable strategies.
-You enjoy developing and mentoring others, fostering a strong security culture.

Join us, and be part of the future where security is the cornerstone of everything we build!


Responsibilities
  • Collaborate with engineering and product teams to integrate security into the product lifecycle, from inception to deployment, ensuring that security is a core consideration in all design and development decisions.
  • Conduct Threat Modeling and Risk Assessments from the early stages of the product development lifecycle to identify, assess, and prioritize security risks, enabling proactive mitigation strategies.
  • Perform rigorous security testing and reviews for new features being built in the assigned area to uncover and address security weaknesses.
  • Lead incident response efforts, investigate root causes, and implement corrective actions to minimize impact and prevent future occurrences.
  • Foster a Security-Conscious Culture by educating and empowering engineering and product teams through training, awareness campaigns, and mentorship, cultivating a strong security mindset.

    • Requirements
  • Must haves:
  • Proven experience in product and application security concepts, including API, web, and mobile app security.
  • Ability to communicate complex security concepts to technical and non-technical audiences, including senior leadership.
  • Expertise in conducting comprehensive threat modeling and risk assessments to identify and mitigate vulnerabilities.
  • Proficiency in secure SDLC practices, application security testing tools (SAST, DAST, Burp Suite), container security (Docker, Kubernetes), and cloud security.
  • Proven ability to thrive in fast-paced environments and excel in ambiguous situations. 

  • Nice to haves:
  • Knowledge and experience in securing AI/ML based products.
  • Experience with the risk management associated with financial technology companies.
  • Experience with red teaming or penetration testing.

    • Apply Now
    Job Summary

    Foodsmart

    Chief Information Security Officer

    About us:Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians. Our platform is designed to foster healthier f;
    • USA Only
    • 18 days ago

    Accellor

    Security Engineer

    About US: -Headquartered in the Silicon Valley with offices in London, Hyderabad and Singapore, Accellor is a Microsoft Gold Partner and a premier Salesforce Partner that;
    • India
    • 3 days ago

    Ndax Canada Inc

    Fraud and Security Analyst

    As one of Canada’s largest and fastest growing cryptocurrency trading platforms, NDAX has set the bar high for the country’s fintech industry and is constantly leading th;
    • Canada Only
    • 23 days ago

    Rackspace

    Sr. Cloud Security Engineer

    Job Summary: As our Security Engineer III you’ll be responsible for supporting our Security Engineering toolset.  You’ll develop, improve, modify, and assess se;
    • USA Only
    • 10 days ago