Empleos actuales relacionados con Senior Product Security Engineer - españa - Mirantis

  • YourCareer: Application Security Engineer

    hace 2 días

    España Liebherr A tiempo completo

    The Application Security Engineer (m/f/d) is responsible for integrating security into the software development lifecycle (SDLC), conducting security testing, and ensuring applications are resilient to cyber threats. They work closely with development teams to identify, remediate, and prevent security vulnerabilities. We're looking for an Application...

  • Cyber Defence Engineer

    hace 2 semanas

    España Sporty Group A tiempo completo

    Join the Senior Offensive Security Engineer role at Sporty Group .About the Role In this role you will be leading high‑impact offensive security on product and platform surfaces (web, mobile backends, APIs) and driving remediation with DevOps and product squads. Plan and execute offensive engagements across web/mobile/API, auth flows, and business logic...

  • YourCareer: Cloud Security Engineer

    hace 2 días

    España Liebherr A tiempo completo

    We are expanding our Global Corporate Information Security Team and looking forward new colleagues joining our teams:  The Cloud Security Engineer is responsible for implementing security controls, managing cloud security tools, and ensuring compliance with security best practices. They work hands-on with cloud infrastructure, automation, and security...

  • Senior Java Software Engineer

    hace 2 semanas

    españa OpenVPN Inc. A tiempo completo

    We are the team that created OpenVPN, the industry-standard VPN protocol now used by most of the commercial VPN providers worldwide. We are currently looking for a rockstar to push further the product that millions of people around the world will be interacting with on a daily basis! You should have a strong working knowledge of Java, REST APIs, and...

  • YourCareer: SAP Security Engineer

    hace 2 días

    España Liebherr A tiempo completo

    The SAP Security Engineer is responsible for implementing, maintaining and monitoring security controls across SAP systems to protect against unauthorized access, data breaches, and other cyber threats. This role requires hands-on experience with SAP security tools and configurations, as well as a strong understanding of cybersecurity principles and...

  • YourCareer: Data Security Engineer

    hace 2 días

    España Liebherr A tiempo completo

    The Data Security Engineer is responsible for implementing and maintaining security controls that protect data at rest, in transit, and in use. They focus on encryption, data loss prevention (DLP), access controls, monitoring to prevent unauthorized access and ensuring compliance with data regulations.We're looking for a Data Security Engineer (m/f/d) to...

  • Application Security Engineer

    hace 1 semana

    España Bit2Me A tiempo completo

    **Descripción**: ¿Eres un experto en integrar la seguridad en el día a día del desarrollo de software? ¿Tienes experiência en implementar prácticas DevSecOps innovadoras? ¿Quieres sumarte a nuestra misión de acercar las criptomonedas a la sociedad? Sigue leyendo, porque en Bit2Me buscamos a alguien como tú para unirse a nuestro equipo como...

  • Senior Security Auditor

    hace 2 semanas

    España The GLI Group A tiempo completo

    **Location: Spain, Italy, Slovenia, Bulgaria or Poland** Headquartered in Canada with locations across the United States and around the globe with a footprint on six continents, Bulletproof, a GLI company has decades of technology, security, and compliance expertise. **Bulletproof’s work in the security space has been recognized nationally and globally...

  • DevSecOps Engineer

    hace 2 semanas

    España Edpuzzle A tiempo completo

    About us Edpuzzle is a leading edtech company with offices in San Francisco and Barcelona and over 12 years of history helping teachers find and create exciting, interactive learning experiences. We're a software company built by teachers, for teachers, committed to empowering educators with intuitive software to engage students all in one place, from video...

  • Senior Asic Design Engineer

    hace 1 semana

    España Synopsys A tiempo completo

    50886BR - CANADA - Canada, CANADA - Ontario - Kanata, CANADA - Ontario - Markham, CANADA - Ontario - Mississauga, CANADA - Ontario - Nepean, CANADA - Ontario - Toronto, CANADA - Ottawa **Job Description and Requirements** - **Senior Digital Design Engineer**- **Key Qualifications** - Relevant ASIC/FPGA digital design experience **in the industry**: -...

Senior Product Security Engineer

hace 3 semanas

españa Mirantis A tiempo completo

About Mirantis Mirantis is the Kubernetes-native AI infrastructure company, enabling organizations to build and operate scalable, secure, and sovereign infrastructure for modern AI, machine learning, and data-intensive applications. By combining open source innovation with deep expertise in Kubernetes orchestration, Mirantis empowers platform engineering teams to deliver composable, production‑ready developer platforms across any environment—on‑premises, in the cloud, at the edge, or in sovereign data centers. As enterprises navigate the growing complexity of AI‑driven workloads, Mirantis delivers the automation, GPU orchestration, and policy‑driven control needed to manage infrastructure with confidence and agility. Committed to open standards and freedom from lock‑in, Mirantis ensures that customers retain full control of their infrastructure strategy.

Job Description

Mirantis is seeking a Senior Product Security Engineer to help secure our portfolio of products and services, including enterprise software and critical infrastructure. This role is part of our growing Product Security program and will play a key role in implementing security controls, driving remediation efforts, supporting compliance initiatives, and partnering with engineering teams to ensure a secure software development lifecycle. As a Senior Product Security Engineer, you will work closely with engineering, security operations, and compliance teams to reduce risk across Mirantis products. You will have the opportunity to shape security strategy, automate controls, and ensure security is embedded into every stage of product development and operations.

Key Responsibilities

Secure Products & Infrastructure: - Design, implement, and maintain security controls across applications, infrastructure, and CI/CD pipelines to align with internal security standards and regulatory frameworks (e.g., SOC 2, ISO 27001).- Drive adoption of modern security tooling and practices including SAST, DAST, container image scanning, Infrastructure as Code (IaC) security, and dependency analysis. Offensive Security & Vulnerability Management: - Lead vulnerability assessments, application security reviews, and penetration tests.- Triage and prioritize findings, collaborating with product and engineering teams to drive timely and measurable remediation.- Proactively identify and exploit vulnerabilities to strengthen product security posture. Incident Response Support: - Partner with Security Operations and Engineering to investigate application and infrastructure vulnerabilities. Contribute to root cause analysis, remediation plans, and long-term risk reduction.

Compliance & Assurance: - Support security reviews, audits, and compliance initiatives through documentation, evidence collection, and coordination with external auditors or vendors. Cross-Product Security Coverage: - Build and maintain security expertise across multiple Mirantis products to strengthen team resilience, provide flexible coverage, and help shape a scalable, sustainable Product Security program. Security Advocacy & Enablement: - Champion secure design and development practices, provide actionable guidance during security reviews, and drive security automation efforts across the SDLC.

Qualifications

5+ years of experience in product security, application security, or a related security engineering role. Strong understanding of common vulnerabilities (e.g., OWASP Top 10, SANS Top 25) and secure development best practices. Demonstrated experience performing offensive security activities such as manual penetration testing, threat modeling, and exploitation of vulnerabilities. Hands‑on experience with security testing and automation, including: SAST/DAST tooling and pipelines Container image scanning (e.g., Trivy, Grype, Anchore) IaC security (e.g., Terraform, Helm, Kics, Checkov) Dependency and supply‑chain security tooling Familiarity with vulnerability scanning and management tools, application security testing, and manual review techniques.

Experience

with containerized environments, Kubernetes, and cloud platforms. Proven ability to integrate security controls into CI/CD pipelines and automate security testing as part of the SDLC. Excellent collaboration and communication skills, with the ability to work closely with product and engineering teams.

Experience

with SOC 2, ISO 27001, or similar compliance frameworks is a plus. Relevant certifications such as OSCP, OSEP, OSWE, or SANS/GIAC certifications (e.g., GPEN, GWEB, GWAPT, GCSA), or other equivalent offensive security and application security credentials are strongly preferred. Proficiency in scripting or programming languages (e.g., Go, Python or similar) is an advantage. Additional Information What does Mirantis offer you?

Work with an established Silicon Valley leader in the cloud infrastructure industry. Work with exceptionally passionate, talented and engaging colleagues, helping Fortune 500 and Global 2000 customers implement next‑generation cloud technologies. Be a part of cutting‑edge, open‑source innovation. Thrive in the high‑energy environment of a young company where openness, collaboration, risk‑taking, and continuous growth are valued.

Professional development and training. Attend conferences and working groups. Customized workstation (macOS, Windows). A competitive compensation package with strong benefits plan and stock options.

It is understood that Mirantis, Inc. may use automated decision‑making technology (ADMT) for specific employment‑related decisions. Opting out of ADMT use is requested for decisions about evaluation and review connected with the specific employment decision for the position applied for. You also have the right to appeal any decisions made by ADMT by sending your request to By submitting your resume, you consent to the processing and storage of your personal data in accordance with applicable data protection laws, for the purposes of considering your application for current and future job opportunities. #J-18808-Ljbffr