Job Posting for Staff Product Security Engineer at Ripple
Product Security Engineer(Staff Engineer and above)
Through our blockchain technology and rapidly growing network of financial institutions, Ripple is improving the global financial system and increasing economic inclusion for more people, in more places around the world. Ripple is looking for passionate Information Security professionals to build a world class Information Security program. As part of the Information Security team, you will help us achieve this mission by actively working to protect our staff, company, and the larger crypto communities we engage with.
In this role, you will be a technical Infosec leader ensuring the security of Ripple’s product line and mentoring other Infosec engineers. You will be providing detailed threat models for all products and services and ensure that the required detection and prevention controls meet the most stringent standards. The role will report to our Director of Security and Operations and will be in regular collaboration with the technical leaders across our engineering and cloud operations teams.
WHAT YOU’LL DO:
Be a security advocate and subject matter expert within the organization and be able to effectively communicate security risk and concepts to both technical and non-technical audiences
Lead initiatives with Engineering teams to effectively model threats and mitigate risk
Evangelize a positive security culture across the Engineering organization
Relentlessly champion for security outcomes on behalf of our customers
Work with other engineering leaders to embed security into day-to-day development processes
Help proactively assess security risk through product deep dives, threat modeling, and design, architecture and implementation reviews.
Review and enhance existing security processes related to product assessments, pen testing, and bug bounty findings
Develop product security controls and monitoring strategies to grow our threat detection capabilities
Identify opportunities for security tooling and automation.
WHAT WE’RE LOOKING FOR:
8 years of experience in Information Security
Proven experience with the application of threat modeling and other risk identification techniques
Strong working knowledge of the OWASP top 10, including details of common vulnerabilities
Experience with authentication and authorization standards including OAuth and SAML and their weaknesses.
Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits
Experience with Amazon Web Services and Google Cloud Platform
Above all, a team player that can handle challenging situations, a rapidly maturing security culture, and an eagerness to mentor less experienced engineers
WHAT WE OFFER:
The chance to work in a fast-paced start-up environment with experienced industry leaders
A learning environment where you can dive deep into the latest technologies and make an impact
Competitive salary and equity
100% paid medical and dental and 95% paid vision insurance for employees starting on your first day
401k (with match), commuter benefits
Industry-leading parental leave policies
Generous wellness reimbursement and weekly onsite programs
Flexible vacation policy - work with your manager to take time off when you need it
Employee giving match
Modern office in San Francisco’s Financial District
Fully-stocked kitchen with organic snacks, beverages, and coffee drinks
Weekly company meeting - ask me anything style discussion with our Leadership Team
Team outings to sports games, happy hours, game nights and more!
Salary.com Estimation for Staff Product Security Engineer in San Francisco, CA
$133,296 to $169,922
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution.
Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right.
Surveys & Data Sets
Sign up to receive alerts about other jobs with skills like those required for the Staff Product Security Engineer.
Click the checkbox next to the jobs that you are interested in.