Security Engineer II - Product Security

13 Minutes ago • 3-5 Years • $114,750 PA - $236,250 PA
Cyber Security

Job Description

Rippling is seeking a hands-on Security Engineer II for its Product Security program. This role involves building guardrails and controls to eliminate vulnerabilities, developing security tooling and automations, threat-modeling application designs, providing remediation guidance to development teams, and integrating security into the Software Development Life Cycle. As an early member of the security team, you will significantly impact the program's priorities and direction, addressing unique security challenges within Rippling's extensive product scope.
Good To Have:
  • Good understanding of SSO, including OAUTH, SAML
  • Strong communication skills and ability to work with remote teams
  • Experience running a bug bounty program
Must Have:
  • Help create guardrails and controls to eliminate full classes of vulnerabilities within the Rippling application
  • Build security tooling and automations to help scale the Product Security team’s practices
  • Threat-model application designs and solutions and provide security assessments
  • Provide hands-on remediation guidance to development teams
  • Develop / Integrate security into the Software Development Life Cycle
  • 3-5 years of experience in a product security role
  • Experience with web application vulnerabilities and familiar with OWASP Top 10
  • Senior-level software development experience with Python, React, and Django Rest Framework
  • Experience with manual source code review
  • Able to assess products and new feature releases through threat modeling and security reviews
  • Ability to lead cross-functional initiatives and drive security adoption within engineering teams
Perks:
  • competitive salary
  • benefits
  • equity

Add these skills to join the top 1% applicants for this job

cross-functional
communication
oops
game-texts
react
oauth
aws
terraform
django
python

About The Role

We're looking for a hands-on security engineer to play a key role in building Rippling's Product Security program. Rippling's product’s scope provides a unique set of security challenges, but our management is especially supportive of security and compliance as a central function of the business. As an early member of Rippling's security team, you'll have a meaningful impact on the security program’s priorities and direction.

About The Team

We are a diverse team of skilled security engineers that are passionate about pushing the boundaries of  security practices. We look to collaborate with our Engineering partners to find the right solution for our interesting challenges. Our team thrives on re-imagining approaches to traditional security to secure our vast ecosystem.

Our achievements are shared through our blogs and at conferences and meetups.

A little more about our team:

What You'll Do

  • Help create guardrails and controls to eliminate full classes of vulnerabilities within the Rippling application
  • Build security tooling and automations to help scale the Product Security team’s practices
  • Threat-model application designs and solutions and provide security assessments.
  • Provide hands-on remediation guidance to development teams
  • Develop / Integrate security into the Software Development Life Cycle

Qualifications

  • 3-5 years of experience in a product security role
  • Experience with web application vulnerabilities and familiar with OWASP Top 10
  • Senior-level software development experience with Python, React, and Django Rest Framework
  • Experience with manual source code review
  • Able to assess products and new feature releases through threat modeling and security reviews
  • Ability to lead cross-functional initiatives and drive security adoption within engineering teams

**Bonus Points**

  • Good understanding of SSO, including OAUTH, SAML
  • Strong communication skills and ability to work with remote teams
  • Experience running a bug bounty program

**Additional Information**

_Rippling is an equal opportunity employer. We are committed to building a diverse and inclusive workforce and do not discriminate based on race, religion, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, age, sexual orientation, veteran or military status, or any other legally protected characteristics, Rippling is committed to providing reasonable accommodations for candidates with disabilities who need assistance during the hiring process. To request a reasonable accommodation, please email _accomodations@rippling.com_

_Rippling highly values in-office collaboration. Employees living within 30 miles of an office are expected to work onsite three days a week with those living 30-49.9 miles away expected to be in the office one day a week. Employees living over 50 miles away are required to relocate within 30 miles of an office. To enhance team cohesiveness, new employees are asked to work onsite three days a week for their first six months._

_This role will receive a competitive salary + benefits + equity. The salary for US-based employees will be aligned with one of the ranges below based on location; see which tier applies to your location _here_

_._

_A variety of factors are considered when determining someone’s compensation–including a candidate’s professional background, experience, and location. Final offer amounts may vary from the amounts listed below._

The pay range for this role is:

121,500 - 212,625 USD per year (US Tier 2)

135,000 - 236,250 USD per year (US Tier 1)

114,750 - 200,813 USD per year (US Tier 3)

Set alerts for more jobs like Security Engineer II - Product Security
Set alerts for new jobs by Rippling
Set alerts for Cyber Security (Remote) jobs

Contact Us
hello@outscal.com
Made in INDIA 💛💙