Staff Product Security Engineer
Remote
Confirmed live in the last 24 hours
Mattermost

51-200 employees

Network management software company
Company Overview
Mattermost believes that open source will drive innovation in enterprise messaging and collaboration just as it has for the infrastructure stack that powers the worlds largest companies.

Company Stage

Series B

Total Funding

$73.5M

Founded

2016

Headquarters

Palo Alto, California

Growth & Insights
Headcount

6 month growth

-4%

1 year growth

-25%

2 year growth

-20%
Locations
Washington, DC, USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
JavaScript
Communications
CategoriesNew
IT & Security
Cybersecurity
Requirements
  • Deep understanding of web application security and secure development practices.
  • Deep understanding with common security libraries, security controls, and common security flaws.
  • Experience building and shipping software fulfilling federal and DoD requirements.
  • Experience with Threat Modeling applications
  • Experience with static/dynamic analysis, and common exploit tools and methods.
  • Experience in one or more programming languages, ideally Go or Javascript.
  • Excellent written and verbal communication skills, including prior experience on public speaking engagements or published research.
  • Demonstrable teamwork skills and resourcefulness.
Responsibilities
  • Support the application vulnerability management and mitigation approaches.
  • Engage in threat modeling and design reviews of in-house developed software components.
  • Conduct application security reviews through manual code review or static/dynamic code analysis.
  • Educate technical teams on DoD security requirements/architecture and support R&D fulfilling federal compliance requirements, e.g. FIPS.
  • Provide security guidance and training to internal development teams.
  • Promote the Mattermost brand and build awareness through blog posts and public speaking on security subjects.
  • Validate ideas and share insights with Product Management/Marketing on product direction and industry trends for security audiences.