Taro Logo

Product Security Engineer

Mattermost

Mattermost builds the #1 collaborative workflow solution for defense, intelligence, security, and critical infrastructure organizations.
Canada
Security
Mid-Level Software Engineer
Remote
3+ years of experience
Cybersecurity · Enterprise SaaS

Job Description

Mattermost, the leading collaborative workflow solution provider for critical organizations, is seeking a Product Security Engineer to join their Security team. This role combines software engineering with security expertise, focusing on ensuring the security of Mattermost's products and services. The position offers the opportunity to work with a globally distributed team in a remote-first, open-source company environment.

The ideal candidate will play a crucial role in implementing application security tooling and processes across the company. They will be responsible for conducting security reviews, threat modeling, and providing security guidance to development teams. With a required background in Computer Science or related fields and 3+ years of experience, the role demands both technical expertise in security practices and strong communication skills.

Working at Mattermost means joining a company that values Customer Obsession, Earn Trust, Self Awareness, Ownership, and High Impact. The organization serves prestigious clients including governments, financial institutions, and technology companies, making this an opportunity to impact critical infrastructure security at a global scale.

The position offers a market-based compensation approach, varying by location and experience. As an EEO Employer, Mattermost welcomes diverse perspectives and backgrounds, maintaining a strong commitment to creating an inclusive work environment. The remote-first nature of the role provides flexibility while working on meaningful security challenges in an open-source context.

Last updated 3 days ago

Responsibilities For Product Security Engineer

  • Support the application vulnerability management and mitigation approaches
  • Conduct application security reviews through manual code review or static/dynamic code analysis
  • Engage in threat modelling and design reviews of in-house developed software components
  • Provide security guidance and training to internal development teams
  • Triage SCA findings and support internal development teams in SCA findings remediation
  • Improve and/or automate existing processes to increase efficiency

Requirements For Product Security Engineer

Go
JavaScript
  • Bachelor's degree in Computer Science, Cybersecurity, Software Engineering, or related technical field, or equivalent experience, with 3+ years of relevant experience
  • Understanding of web application security and secure development practices
  • Familiarity with common security libraries, security controls, and common security flaws
  • Experience with static/dynamic analysis, and common exploit methods
  • Experience in one or more programming languages, ideally Go or JavaScript
  • Excellent written and verbal communication skills
  • Demonstrable teamwork skills and resourcefulness

Related Jobs

Taro Footer Icon
Taro Footer Logo
Explore Interview QuestionsGoogle Interview QuestionsMeta Interview QuestionsAmazon Interview QuestionsApple Interview QuestionsNetflix Interview Questions
Explore Jobs By LevelEntry-Level Software Engineer JobsMid-Level Software Engineer JobsSenior Software Engineer JobsStaff Software Engineer Jobs
Explore TrendingLayoffsPerformance Improvement PlanSystem DesignInterpersonal CommunicationTech Lead
ProductH-1B Visa Salary DatabaseBecome An AffiliateGreat DiscussionsPerksTopics
CompanyBlogPrivacy PolicyTerms & ConditionsSupport
Taro iOS appTaro Android app
LinkedIn IconTwitter IconYouTube Icon
Copyright © Taro