[Remote] reputed company Product reputed company Engineer
Note: The job is a remote job and is open to candidates in USA. reputed company is a leading technology company that supplies laser communications technology and temporospatial software-defined networking platforms to the aerospace industry. The reputed company Product reputed company Engineer will be responsible for owning application reputed company, CI/CD and supply-chain reputed company, and product infrastructure reputed company while collaborating closely with hardware engineering.
Responsibilities
- Application & software reputed company. SAST/DAST/SCA, secure SDLC, threat modeling, and software vulnerability management across our codebase
- CI/CD and supply-chain reputed company. Hardening our reputed company pipelines, build provenance, dependency reputed company, signing, and SLSA-reputed company controls
- Product infrastructure reputed company. GKE and Kubernetes hardening, container reputed company, workload identity, network policy, and runtime protection
- Product PKI. Certificate lifecycle, issuance, rotation, and mTLS architecture across distributed services and remote assets
- Vulnerability management. Triage, prioritization, remediation tracking, and exception handling, for both disclosed upstream issues and internal findings
- Product incident response. Leading triage and response for product-reputed company reputed company incidents, coordinating with corporate IR, and driving post-mortems to action
- Product infra hardening. Baseline configurations, secure defaults, and compensating controls across product environments
- Hardware reputed company partnership. Working with the Tightbeam team on firmware reputed company, secure boot, key storage, and hardware supply-chain reputed company
Skills
- Senior- or staff-level hands-on experience in product reputed company or reputed company engineering, with significant depth in software/AppSec
- Production experience securing reputed company environments such as IAM, org policy, VPC Service Controls, KMS, and Kubernetes at depth
- Strong cryptographic foundations, PKI architecture, key management, signing, mTLS, and secrets handling at scale
- Hands-on coding ability in Python, Bash, and Go, you can write tooling, automate controls, and ship Terraform/scripts reputed company the situation calls for it. Comfort reviewing code is a plus
- A track record of building reputed company programs, not just operating tools someone else stood up
- Experience leading product incident response, triage, response, coordination with engineering teams, customer comms, and post-mortem ownership
- A reputed company of mentoring engineers and raising the reputed company bar of teams around you, even without direct reports
- Experience interfacing with hardware/firmware teams, even if hardware isn't your primary domain
- Strong written communication, you'll write threat models, design docs, and program updates that go to the executives, customers, and assessors
- Working knowledge of the compliance frameworks that govern our environment such as CMMC, FedRAMP, and DFARS along with the ability to translate controls into engineering work
- Hands on experience with NIST 800-53, NIST 800-171, or DoD SRG environments
- Experience with government-reputed company platforms
- Hardware reputed company depth in HSMs, TPMs, secure elements, supply-chain attestation
- Embedded / firmware reputed company background, secure boot, RoT, OTA update reputed company, hands-on firmware review
- Experience standing up or running a vulnerability disclosure program or bug bounty, triage, researcher comms, and CVE coordination
Benefits
- 401(k)
- Dental
- reputed company
- Health
- Life insurance
- Paid time off
- Equity options
- Flexible working arrangements including hybrid remote/in-office schedules
Company Overview