Senior Security Engineer

Location

United States

Posted

4 days ago

Salary

0

Seniority

Senior

Job Description

Senior Security Engineer

Mach7 Technologies

Role Description We're looking for a Senior Security Engineer to lead application security efforts across our product portfolio, spanning web applications, APIs, mobile, embedded software, and shipped product deliverables. You'll be embedded in the engineering organization, partnering with product and platform teams to bake security into every phase of the software development lifecycle, not bolt it on at the end. A critical part of this role is developing and maintaining a deep understanding of our product attack surface, how components interact, what's exposed, and where real risk lives. That understanding is what transforms security tooling output into prioritized, meaningful action across threat modeling, vulnerability management, and supply chain risk. This is a high-impact role for someone who is equally comfortable reading source code, threat modeling a new microservice, and coaching a developer through a secure code review. What You'll Do - Application Security & Secure SDLC - Own and evolve the AppSec program across the entire SDLC — from design reviews to post-deployment monitoring — for web, API, mobile, and shipped product deliverables. - Build and maintain a living model of the product attack surface — mapping trust boundaries, data flows, exposed interfaces, and high-value targets — and use it to drive prioritization across all security workstreams. - Conduct threat modeling and architecture security reviews for new features, services, and product releases across all delivery channels. - Perform manual and automated secure code reviews across multiple languages (e.g. Python, Go, TypeScript, C/C++). - Integrate and tune SAST, DAST, and SCA tooling within CI/CD pipelines (GitHub Actions, Jenkins, or equivalent). - Triage and drive remediation of vulnerabilities surfaced through scanning, bug bounty, and pen tests. - Develop and maintain a library of security standards, patterns, and guardrails applicable across product types. - Third-Party & Supply Chain Security - Own the Software Bill of Materials (SBOM) program — define generation, storage, and consumption processes across all product lines. - Establish and maintain policies for evaluating, onboarding, and continuously monitoring third-party dependencies and open-source components. - Triage and prioritize CVEs and license risks surfaced through SCA tooling, driving timely remediation with engineering teams. - Define processes for responding to upstream supply chain incidents (e.g. compromised packages, malicious dependencies). - Collaborate with procurement and legal to assess security risk of third-party vendors and integrations. - Contribute to industry frameworks and internal standards around software supply chain security (SLSA, NIST SSDF, or equivalent). - Act as a trusted security advisor embedded within product engineering squads. - Lead security training, lunch-and-learns, and developer education initiatives. - Collaborate with the Platform team on secrets management, identity, and access controls. - Work with the GRC function to translate compliance requirements (SOC 2, ISO 27001) into engineering controls. - Incident & Vulnerability Management - Participate in the security on-call rotation and lead security incident response investigations. - Drive root cause analysis and communicate findings clearly to engineering leadership. - Build and maintain metrics and dashboards to track the health of the AppSec program. - Participate as a member of the Cybersecurity council, representing development in the organization. Report weekly on new threat intelligence as it relates to product security, and any actions that are being taken to remediate new findings. Qualifications - 5+ years of experience in security engineering, with a strong AppSec focus. - Hands-on experience with threat modeling frameworks (STRIDE, PASTA, or similar). - Proficiency with common AppSec tooling: Semgrep, Snyk, Burp Suite, OWASP ZAP, or equivalents. - Deep understanding of web application vulnerabilities (OWASP Top 10, API security, auth/authz flaws). - Ability to read and reason about code in at least two languages; prior development experience a plus. - Experience with software supply chain security — SBOM generation and analysis (CycloneDX, SPDX), SCA tooling, and dependency risk management. - Strong written and verbal communication skills — you can explain risk to both engineers and executives. Requirements - Experience with cloud-native environments (AWS, GCP, or Azure) and container/Kubernetes security. - Familiarity with software supply chain frameworks such as SLSA, NIST SSDF, or OpenSSF Scorecards. - Contributions to open-source security tooling or security research. - Relevant certifications: OSCP, CSSLP, GWEB, or similar. Who You Are - Experienced security professional with a strong background in application security and secure software development. - Skilled at threat modeling, secure code reviews, and identifying real-world risks across complex systems. - Knowledgeable in web, API, mobile, and software supply chain security best practices. - Comfortable working with developers to embed security throughout the SDLC. - Proficient with security testing and vulnerability management tools, including SAST, DAST, and SCA solutions. - Strong communicator who can translate technical risks into actionable recommendations. - Collaborative, proactive, and driven to improve both product security and engineering security culture. - Passionate about continuous learning, emerging threats, and helping teams build secure products at scale.

Related Categories

Related Job Pages

More Security Engineer Jobs

Security Engineer

Check Point Software Technologies

As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative, and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers’ real-time needs and providing our cutting-edge technologies and services to an ever-growing customer base. Check Point Software Technologies has been honored by Time Magazine as one of the World’s Best Companies and Newsweek’s list of Americas Best Cybersecurity Companies. We've also earned a spot on the Forbes list of the World’s Best Places to Work for five consecutive years and recognized as one of the World’s Top Female-Friendly Companies. If you're passionate about making the world a safer place and want to be part of an award-winning company culture, we invite you to join us.

Role Description You will be responsible for: - Work closely with the sales team to identify prospects - Demonstrate our full portfolio of solutions that help keep organizations safe from threats and protect their operations and information - Educate customers, prospects and partners on the diversity of technical, operational and business challenges many organizations face and how Check Point solutions can solve them - Drive meetings with potential and existing customers to identify their problems and provide appropriate solutions - Address technical questions, offer insight into best practices and manage Proof-of-Concepts - Respond to RFI's & RFP's - Engage and educate key partners and customers on the latest security technologies - Active participation in cybersecurity events Qualifications - 5+ years of engineering and pre-sales experience - Possess strong analytical and problem-solving skills - Good understanding of typical customers networks - Ability to create an end-to-end security solution for a customer’s environment - Excellent communication and presentation skills - Relevant certifications highly preferred, e.g. CCNP / CISSP/ CCSA / CCSE - Must be eligible to work in Brazil without sponsorship from an employer now or in the future - EOE M/F/Veterans/Disabled Company Description As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative, and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers’ real-time needs and providing our cutting-edge technologies and services to an ever-growing customer base. Check Point Software Technologies has been honored by Time Magazine as one of the World’s Best Companies and Newsweek’s list of Americas Best Cybersecurity Companies. We've also earned a spot on the Forbes list of the World’s Best Places to Work for five consecutive years and recognized as one of the World’s Top Female-Friendly Companies. If you're passionate about making the world a safer place and want to be part of an award-winning company culture, we invite you to join us.

Brazil

Managed Services Delivery Manager, Network Security

Check Point Software Technologies

As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative, and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers’ real-time needs and providing our cutting-edge technologies and services to an ever-growing customer base. Check Point Software Technologies has been honored by Time Magazine as one of the World’s Best Companies and Newsweek’s list of Americas Best Cybersecurity Companies. We've also earned a spot on the Forbes list of the World’s Best Places to Work for five consecutive years and recognized as one of the World’s Top Female-Friendly Companies. If you're passionate about making the world a safer place and want to be part of an award-winning company culture, we invite you to join us.

Role Description The Check Point Managed Security Services division is seeking a Managed Services Delivery Manager to join our team. As a Delivery Manager for the Network Security Managed Services group, you will be primarily responsible for performing as a Team Manager and an expert on the Check Point security platform. Check Point support will include advanced policy management, appliance upgrades, troubleshooting, and advanced administration. Core Responsibilities: - Strong networking fundamentals - Strong diagnostic skills - Strong written and verbal communication skills - Proactive, self-motivated, and strong ability to learn new things with little guidance - Function in a client-facing role, providing high-level remote troubleshooting and problem resolution on multiple network environments - Participate in an escalation on-call rotation - Team Manager Daily Responsibilities: - Configure, manage, and upgrade NGFW, IPS, UTM, DLP, VPN, Web Filtering Appliances, and a wide variety of other security products - Provide support for integration and onboarding activities to ensure smooth client transition - Perform network troubleshooting to isolate and diagnose common network problems, using strong TCP/IP networking skills - Participate in the completion of required project deliverables for network and security assessments, implementations, and other scopes of work Qualifications - CCSE (Check Point Certified Security Expert) - 6+ years professional experience maintaining a Check Point Next-Gen Firewall environment - Check Point firewall deployment and configuration experience - Check Point firewall IPSEC VPN deployment and configuration experience - Customer service focus required with strong interpersonal skills including excellent written/verbal communication skills Requirements - Routing/Wireless Experience (Desired, not required) - Cisco ASA / Palo Alto / Fortigate Experience (Desired, not required) - Check Point Maestro Experience (Desired, not required) - Check Point VSX Experience (Desired, not required) - S. or B.A. Degree (Desired, not required) Company Description As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative, and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers’ real-time needs and providing our cutting-edge technologies and services to an ever-growing customer base. Check Point Software Technologies has been honored by Time Magazine as one of the World’s Best Companies and Newsweek’s list of Americas Best Cybersecurity Companies. We've also earned a spot on the Forbes list of the World’s Best Places to Work for five consecutive years and recognized as one of the World’s Top Female-Friendly Companies. If you're passionate about making the world a safer place and want to be part of an award-winning company culture, we invite you to join us.

United States

Sales Development Representative, Workspace Security

Check Point Software Technologies

As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative, and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers’ real-time needs and providing our cutting-edge technologies and services to an ever-growing customer base. Check Point Software Technologies has been honored by Time Magazine as one of the World’s Best Companies and Newsweek’s list of Americas Best Cybersecurity Companies. We've also earned a spot on the Forbes list of the World’s Best Places to Work for five consecutive years and recognized as one of the World’s Top Female-Friendly Companies. If you're passionate about making the world a safer place and want to be part of an award-winning company culture, we invite you to join us.

Role Description As an SDR within the Workspace Security Group, you will play a critical role in educating prospective customers on Check Point’s Workspace Security portfolio—including email security, collaboration security, SaaS protection, and data leakage prevention—with a focus on supporting Federal Government agencies, public sector organizations, and highly regulated environments. - Engaging with inbound prospects requesting demos, quotes, trials, and information on our Workspace Security solutions, including Federal and Public Sector accounts. - Partnering with senior sales leadership to identify opportunities within civilian agencies, defense contractors, system integrators, and regulated enterprises. - Discovering prospect needs and scheduling demonstrations for government stakeholders, IT leadership, cybersecurity teams, program managers, and developers within mid-size organizations through Fortune 500 enterprises across industries such as Federal Government, financial services, healthcare, education, and technology. - Maintaining a daily outbound activity volume of 50–70 calls, including outreach into government and public sector accounts. - Setting highly qualified demonstrations for Field Sales and Public Sector Account Executives that convert into pipeline opportunities. - Performing outbound prospecting to marketing-generated leads as well as cold outreach to net-new Federal and enterprise accounts. - Tracking opportunities, procurement timelines, and follow-up activities in detail to ensure an excellent prospect experience and effective pipeline progression. - Conducting pain discovery conversations and delivering initial solution overviews to organizations evaluating our award-winning Workspace Security platform in security-conscious and compliance-driven environments. - Developing familiarity with Federal cybersecurity initiatives, compliance frameworks, and procurement processes (FedRAMP, Zero Trust, NIST, CISA guidance, etc.). - Consistently increasing the volume and quality of opportunities within your assigned territory and target accounts. Qualifications - Bachelor’s degree strongly preferred - 1–5 years of cold calling experience and inbound lead follow-up, with strong persuasion and negotiation skills - Prior experience supporting Federal Government, Public Sector, GovTech, or highly regulated industries is strongly preferred - Desire to build a long-term career in cybersecurity and technology sales - Experience with CRM and sales tools (Salesforce.com, ZoomInfo, LinkedIn Sales Navigator, Salesloft, Orum, etc.) - Strong ability to connect with prospects, uncover pain points, educate stakeholders, and convert leads into qualified demonstrations - Familiarity with cybersecurity concepts, cloud security, SaaS security, compliance requirements, or Zero Trust frameworks is a plus - Ambitious, independent, goal-driven, and committed to exceeding metrics - Exceptional verbal and written communication skills with strong organization and follow-through - Proven ability to excel in high-volume cold-calling environments - Ability to engage professionally with government stakeholders and enterprise decision-makers - Must be eligible to work in the US without sponsorship from an employer now or in the future - EOE M/F/Veterans/Disabled Company Description As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative, and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers’ real-time needs and providing our cutting-edge technologies and services to an ever-growing customer base. Check Point Software Technologies has been honored by Time Magazine as one of the World’s Best Companies and Newsweek’s list of Americas Best Cybersecurity Companies. We've also earned a spot on the Forbes list of the World’s Best Places to Work for five consecutive years and recognized as one of the World’s Top Female-Friendly Companies. If you're passionate about making the world a safer place and want to be part of an award-winning company culture, we invite you to join us.

United States

Product Marketing Manager, Workspace Security

Check Point Software Technologies

As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative, and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers’ real-time needs and providing our cutting-edge technologies and services to an ever-growing customer base. Check Point Software Technologies has been honored by Time Magazine as one of the World’s Best Companies and Newsweek’s list of Americas Best Cybersecurity Companies. We've also earned a spot on the Forbes list of the World’s Best Places to Work for five consecutive years and recognized as one of the World’s Top Female-Friendly Companies. If you're passionate about making the world a safer place and want to be part of an award-winning company culture, we invite you to join us.

Role Description We are seeking a master storyteller with an aptitude to take very technical concepts and transform them into compelling and understandable stories. The Product Marketing Manager will drive product and technical marketing across our Workspace Security portfolio including email, browse, collaboration, endpoint, and mobile security solutions to develop content, go-to-market plans, and campaign strategies. You’ll work closely with stakeholders across product, engineering, sales, and corporate marketing to create messaging, positioning, and content for sales enablement, demand, and thought leadership that will drive awareness and pipeline for the Workspace Security portfolio and increase sales. This person is a subject matter expert and has exemplary leadership skills to inspire cross-functional teams. - The role will involve 30% messaging, positioning, and strategy and 70% content creation. - Lead product marketing strategy across our workspace security portfolio to develop messaging and positioning. - Collaborate with product management and engineering on product strategy, product roadmap, and product GTM. - Understand our product roadmap, research competitors, business objectives, and analyze industry reports to establish our GTM strategy. - Develop compelling long-form content including blogs, email newsletters, website copy, and sales content to support the entire customer journey. - Meet with customers to support the deal cycle and support events as needed. - Partner across marketing to define a holistic awareness and demand generation plan across a comprehensive set of marketing activities and integrated campaigns. - Develop threat research into campaign and thought leadership content. - Work with external research firms to conduct surveys and other research and obtain key data points and statements that can help promote our solutions. - Build sales tools, collateral, and interactive content which clearly articulate our value proposition, messaging, and positioning. - Work with sales and sales engineering on sales enablement, competitive intelligence, and closing deals. Qualifications - 5+ years in product marketing or product management in enterprise SaaS, cybersecurity experience is a plus. - BA/BS in business or engineering, MBA preferred. - High attention to detail and organizational skills with the ability to deliver content, product launches, and campaigns. - Exceptional storytelling ability and strong copywriting and copyediting skills. - Demonstrable experience working with sales, sales engineering, and supporting customer engagements. - Ability to navigate and build relationships with a global network of stakeholders and flourish in a matrix environment and influence peers. - Self-starter, team player and able to work in a fast-paced environment. - Must be eligible to work in country of residence without sponsorship now or in the future. Requirements - EOE M/F/Veterans/Disabled. Benefits - The wage range for this position takes into consideration a variety of factors in determining your pay. - A reasonable estimate of the current base wage range for this role is $156,030 - $211,100. - In addition to the base compensation, certain roles are eligible for additional compensation, including an annual bonus or sales incentive based on revenue or utilization. - Benefits/perks listed here may vary depending on the nature of your employment with Check Point Software Technologies and the country/state where you work. - US-based employees gain access to healthcare benefits, a 401(k) plan and company match, short-term and long-term disability coverage, basic life insurance, stock awards and an employee stock purchasing plan.

United States
$156.0K - $211.1K / year