Demo
Salary Resume Critique Job Openings

Product Security Engineer - Lead

Enkompas
Pittsburgh, PA Full Time
POSTED ON 1/16/2025
AVAILABLE BEFORE 4/14/2025

Product Security Engineer - Lead

Direct Hire

Pittsburgh, PA, US (Hybrid 3 onsite 2 remote)

Compensation : Up to $150,000 Plus

Job Summary

The Lead Product Security Engineer will work closely with software development teams to build secure products, ensuring security controls are available by default, and educating stakeholders on best practices and standards. You will be focused on areas such as Application Security, Vulnerability Management, Secure Architecture and Coding, Penetration Testing and Cloud Security. The Lead Product Security Engineer will also participate in security reviews and threat modeling exercises. As the Lead Product Security Engineer, you will play a key role in finding creative ways to solve complex problems using an automation first mindset.

Primary Duties and Responsibilities :

  • Conduct thorough technical security assessments, perform security architecture reviews, threat modeling, and vulnerability assessments, and provide expert security opinion to minimize risk in our clients products and SDLC.
  • Perform vulnerability and penetration testing, emphasizing automation for testing and remediation.
  • Drive healthcare regulatory compliance with product, platform, and development lifecycles.
  • Perform security log analysis and security alert analysis; perform risk assessments.
  • Partner with software development teams to identify and solve complex security problems.
  • Maintain and create secure development practices and programs for our software development teams.

Education :

  • Degree in Information / Cybersecurity, Computer Science, or equivalent.
  • Security certification(s) such as CISM, CySA, PNPT, Pentest , CEH, CISSP are a plus.

    • Experience :

  • 7 years of cybersecurity experience with a deep background in application programming.
  • 5 years of software development experience with a security focus.
  • Technical and analytical expertise, including threat modeling, vulnerability testing, cryptography, and proficiency in software development (Java, JavaScript, Python, C# / .NET, Go(Golang), etc.).
  • Strong experience penetration testing application vulnerabilities using a variety of methods, including development of exploits.
  • Experience with cloud security technologies, such as Azure and AWS.
  • Experience with containerization and container security, such as Docker and Kubernetes.
  • Experience in implementing, using, and managing Infrastructure as Code tools such as Terraform.
  • Experience with identifying and supporting the remediation of software supply chain risks.
  • Experience in implementing, using, and managing application security testing tools.
  • Familiarity with commonly used secure software development lifecycle maturity frameworks.
  • DevOps and Software engineering experience is a plus.

    • Skills :

  • Strong understanding of web application security, secure software design, and secure coding practices.
  • Strong understanding of secure architecture and development concepts.
  • Proficiency in designing and implementing security controls for microservices, such as API gateways, service meshes, and container security.
  • Strong in both upward and downward communication of security updates and reports.
  • Familiarity with OWASP Top 10 and CWE Top 25 Most Dangerous Software Weaknesses.

    • Work Environment :

    The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodation may be made to enable qualified individuals with disabilities to perform the essential functions. The term "qualified individual with a disability " means an individual with a disability who, with or without reasonable accommodation, can perform the essential functions of the position.

    While performing the duties of this job, the employee is regularly required to communicate professionally in person, over the telephone, through email and other electronic means, move about the office, handle various types of media and equipment, and visually or otherwise identify observe and assess. The employee is occasionally required to lift up to 10 pounds unless otherwise specified in the job description.

    Our client has a COVID-19 vaccination policy which mandates vaccination for certain positions or an approved exemption due to religious or medical reasons. Any accommodation request will be objectively considered in accordance with the Federal, State, and Local laws on a case-by-case basis.

    Salary : $150,000

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Product Security Engineer - Lead?

    Sign up to receive alerts about other jobs on the Product Security Engineer - Lead career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $87,720 - $106,708
    Income Estimation: 
    $108,098 - $130,480
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $97,257 - $120,701
    Income Estimation: 
    $123,167 - $152,295
    Income Estimation: 
    $123,167 - $152,295
    Income Estimation: 
    $146,673 - $180,130
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at Enkompas

    Kafka DevOps Engineer
    Enkompas
    Hired Organization Address Pittsburgh, PA Full Time
    Title Kafka DevOps Engineer Type Direct Hire Location Pittsburgh PA (Can be hybrid) Salary Commensurate with experience ...
    Retired - Carpenter/Woodworker
    Enkompas
    Hired Organization Address Pittsburgh, PA Full Time
    Position : Carpenter / Woodworker - Educational Fabrication Department Location : Pittsburgh, Oakland area Employment Ty...
    View More Jobs at Enkompas

    Not the job you're looking for? Here are some other Product Security Engineer - Lead jobs in the Pittsburgh, PA area that may be a better fit.

    Product Security - Automotive Lead

    Accenture, Pittsburgh, PA

    Product Security Engineer II

    Latitude AI, Pittsburgh, PA

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!