Director, Product Security
Who We Are
Red Canary was founded to create a world where every organization can make its greatest impact without fear of cyber attack. Our combination of market-defining technology, processes, and expertise are preventing breaches every day. We are completely changing the way security is delivered and setting the new standard for security. If our mission resonates with you, let’s talk!
What We Believe In
- Do what’s right for the customer
- Be kind and authentic
- Deliver great quality
- Be relentless
Challenges You Will Solve
Some of the best security teams in the world depend on our software to protect their organizations, and in turn expect the highest standards of security for our platform.
Delivering excellent, secure software is paramount to the Red Canary mission. You will mature Red Canary’s product security program to ensure secure outcomes for software development at scale. Under your guidance, the Red Canary product security model will be viewed as the standard by which all other security providers are measured.
The program you will join enables rapid development of Red Canary’s features for our customers, by providing repeatable secure patterns and seamless guardrails.
What You'll Do
You command deep understanding of modern web application development, the threats facing these applications, and strategies to mitigate them. You are well attuned to the product development lifecycle, with a passion for security and continuous improvement.
You are passionate about weaving elegant security architecture into software at scale. You are comfortable designing and implementing security best practices at every stage of the development lifecycle, from design through production. You enjoy building relationships with product teams, empowering engineers to ship code fast in a secure fashion.
- Develop, implement, and maintain product security strategy for a range of fast-moving web applications.
- Build relationships with product management, engineering, and architecture teams, advocating for better security at every step of the development lifecycle.
- Lead and mature a team of product security engineers, prioritizing initiatives that consistently deliver better security outcomes.
- Operate across multiple product teams, developing security architecture patterns for implementing new solutions and products.
- Engage in application and domain-specific threat modeling, and attack surface analysis and reduction.
What You'll Bring
- Strong experience leading engineering teams focused on application, product, and/or corporate security
- Strong experience in web application security issues, standards, and best practices (ex. OWASP)
- Strong experience in distributed platform development security and design
- Strong foundation in core information security principles and concepts (TLS, authentication, etc.)
- Experience developing and/or securing enterprise-grade Ruby on Rails applications
- Working knowledge of common languages such as Ruby, Javascript, Go, etc.
- Familiarity in public cloud security deployment and implementation issues (AWS)
- Familiarity with audits and standards requirements such ISO 27001, SOC 2, etc.
- Excellent communication, and the ability to explain complex security topics in simple terms
Targeted base salary range: $200,000 - $250,000 + bonus eligibility and equity depending on experience.
Why Red Canary?
Red Canary is where people embody our mission to improve security outcomes for all. People work hard to maintain a culture that encourages authenticity in order to do your best work. Our people are driven and committed to finding the best security outcomes, delivering real and actionable answers, and being transparent along the way.
At Red Canary, we offer a very rich benefits program to our full-time team members so they can focus on their families and improving our customers’ security. For a full list of benefits, please review our Benefits Summary:
https://redcanary.com/wp-content/uploads/2021/01/Benefit-Summary-Red-Canary.pdf
Individuals seeking employment at Red Canary are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.