Product Security Engineer

PlaidPlaid·Remote(Seattle Metro)
Software Development

WFA Digital Insight

As the remote job market continues to evolve, demand for skilled product security engineers has grown significantly, with a 25% increase in job postings over the past year. With the rise of digital finance, companies like Plaid are at the forefront of innovation, and skilled professionals with expertise in security engineering are in high demand. Plaid's commitment to empowering a transformation in financial services makes this role particularly interesting, and candidates with a passion for building secure and scalable systems will find this opportunity compelling. Before applying, candidates should be aware of the importance of collaboration and communication in this role, as well as the need for adaptability in a rapidly changing security landscape.

Job Description

About the Role

The Product Security Engineer role at Plaid is a unique opportunity for a skilled software engineer to solve security challenges at scale. As a member of the Product Security team, you will be responsible for building and maintaining the secure engineering foundations that protect Plaid's products and services. This role is designed for a software engineer who wants to develop production-grade services, libraries, and frameworks to address security challenges.

The Product Security team is responsible for the processes, policies, controls, and engineering systems that secure Plaid's developer- and consumer-facing products. The team focuses on areas including application security, vulnerability management, secure development lifecycle, penetration testing, and cloud security. By moving security 'left,' the Product Security team makes the secure path the easiest path for engineers across the company.

As a Product Security Engineer, you will have the opportunity to work on a wide range of projects, from building and maintaining Plaid's vulnerability management orchestration service to creating solutions that eliminate entire classes of vulnerabilities. You will partner closely with product engineers to ensure services meet security standards and support incident response and security awareness efforts.

What You Will Do

  • Build and maintain Plaid's vulnerability management orchestration service
  • Develop maintainable and secure software to enhance Plaid's security posture
  • Design, develop, and maintain security-critical services and components
  • Develop internal tooling to automate vulnerability detection, dependency management, and remediation workflows within the CI/CD pipeline
  • Replace manual security gates with engineered solutions that allow product teams to ship faster and more securely
  • Communicate effectively with managers and team members regarding project deliverables and progress
  • Design and implement technical solutions that align with the evolving needs of the business
  • Proactively identify and address security vulnerabilities in products and services
  • Actively participate in incident response and security awareness initiatives
  • Collaborate across the security platform organization to deliver the engineering foundations that make secure development the default at Plaid

What We Are Looking For

  • 2+ years of professional experience building and scaling production services
  • Experience with cloud security, application security, and vulnerability management
  • Strong software development skills in languages such as Python, Java, or C++
  • Experience with containerization using Docker and Kubernetes
  • Familiarity with agile development methodologies and version control systems such as Git
  • Strong understanding of security principles and practices
  • Experience with security testing and vulnerability assessment tools
  • Excellent communication and collaboration skills

Nice to Have

  • Experience with security orchestration, automation, and response (SOAR) tools
  • Familiarity with compliance frameworks such as SOC 2 and PCI-DSS
  • Experience with cloud-based security services such as AWS IAM and Google Cloud Security
  • Knowledge of cryptographic principles and protocols
  • Experience with security information and event management (SIEM) systems

Benefits and Perks

  • Competitive salary and equity package
  • Comprehensive health, dental, and vision insurance
  • Flexible PTO and vacation policy
  • Remote work stipend and home office setup support
  • Professional development opportunities and conference sponsorship
  • Access to cutting-edge technologies and tools
  • Collaborative and dynamic work environment

How to Stand Out

  • To stand out in your application, be sure to highlight your experience with cloud security, application security, and vulnerability management.
  • Familiarize yourself with Plaid's products and services, and be prepared to discuss how you can contribute to the company's mission.
  • Showcase your software development skills by sharing examples of your work, such as GitHub repositories or personal projects.
  • Emphasize your ability to collaborate and communicate effectively with cross-functional teams, including product engineers and security professionals.
  • Be prepared to discuss your experience with security testing and vulnerability assessment tools, and how you stay up-to-date with the latest security trends and technologies.
  • When negotiating salary, be sure to research the market rate for Product Security Engineers in the industry and location.
  • Be aware of red flags such as lack of transparency about the company's security practices or inadequate resources for security initiatives.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.