Experienced Product Security Engineer

We believe that the way people interact with their finances will drastically improve in the next few years. We’re dedicated to empowering this transformation by building the tools and experiences that thousands of developers use to create their own products. Plaid powers the tools millions of people rely on to live a healthier financial life. We work with thousands of companies like Venmo SoFi several of the Fortune 500 and many of the largest banks to make it easy for people to connect their financial accounts to the apps and services they want to use. Plaid’s network covers 12000 financial institutions across the US Canada UK and Europe. Founded in 2013 the company is headquartered in San Francisco with offices in New York Washington D.C. London and Amsterdam.

The mission of Plaid's Product Security Team is “Improve our customer’s trust by assuring secure development and delivery of products and services  minimizing risk to the ecosystem and preventing security incidents.” The Product Security team is responsible for managing the security processes policies and controls to secure Plaid’s developer and consumer facing products. We are focused on areas like Application Security Vulnerability Management Secure Development Lifecycle Penetration Testing and Cloud Security.

As an Experienced Product Security Engineer at Plaid you'll be a trusted advisor collaborating closely with engineering and product teams to ensure security is a cornerstone of every product. You'll partner with leadership to shape product strategy advocate for strong security controls and influence future product iterations. By leveraging your deep industry knowledge you'll lead the charge in implementing secure architecture and design principles ensuring early detection and prevention of vulnerabilities. Your expertise in security assessments and penetration testing will help identify and mitigate potential threats while your mentorship and training efforts will foster a security-conscious culture. By owning specific areas of Plaid's product portfolio you'll provide expert guidance and minimize risks ultimately strengthening Plaid's security posture.

This role is perfect for you if:

-You thrive in a collaborative environment working alongside product engineering and security teams.

-Your passion lies in designing secure solutions and building robust security programs.

-You possess a deep understanding of security best practices and industry trends.

-You have a knack for translating complex technical concepts into actionable strategies.

-You enjoy developing and mentoring others fostering a strong security culture.

Join us and be part of the future where security is the cornerstone of everything we build!

Responsibilities

• Collaborate with engineering and product teams to integrate security into the product lifecycle from inception to deployment ensuring that security is a core consideration in all design and development decisions.

• Conduct Threat Modeling and Risk Assessments from the early stages of the product development lifecycle to identify assess and prioritize security risks enabling proactive mitigation strategies.

• Perform rigorous security testing and reviews for new features being built in the assigned area to uncover and address security weaknesses.

• Lead incident response efforts investigate root causes and implement corrective actions to minimize impact and prevent future occurrences.

• Foster a Security-Conscious Culture by educating and empowering engineering and product teams through training awareness campaigns and mentorship cultivating a strong security mindset.

Requirements

• Must haves:

• Proven experience in product and application security concepts including API web and mobile app security.

• Ability to communicate complex security concepts to technical and non-technical audiences including senior leadership.

• Expertise in conducting comprehensive threat modeling and risk assessments to identify and mitigate vulnerabilities.

• Proficiency in secure SDLC practices application security testing tools (SAST DAST Burp Suite) container security (Docker Kubernetes) and cloud security.

• Proven ability to thrive in fast-paced environments and excel in ambiguous situations.

• Nice to haves:

• Knowledge and experience in securing AI/ML based products.

• Experience with the risk management associated with financial technology companies.

• Experience with red teaming or penetration testing.

$186840 - $279720 a year

Target base salary for this role is between $186840 and $279720 per year. Additional compensation in the form(s) of equity and/or commission are dependent on the position offered. Plaid provides a comprehensive benefit plan including medical dental vision and 401(k). Pay is based on factors such as (but not limited to) scope and responsibilities of the position candidate's work experience and skillset and location. Pay and benefits are subject to change at any time consistent with the terms of any applicable compensation or benefit plans.

Our mission at Plaid is to unlock financial freedom for everyone. To support that mission we seek to build a diverse team of driven individuals who care deeply about making the financial ecosystem more equitable. We recognize that strong qualifications can come from both prior work experiences and lived experiences. We encourage you to apply to a role even if your experience doesn't fully match the job description. We are always looking for team members that will bring something unique to Plaid!

Plaid is proud to be an equal opportunity employer and values diversity at our company. We do not discriminate based on race color national origin ethnicity religion or religious belief sex (including pregnancy childbirth or related medical conditions) sexual orientation gender gender identity gender expression transgender status sexual stereotypes age military or veteran status disability or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories consistent with applicable federal state and local laws. Plaid is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance with your application or interviews due to a disability please let us know at [email protected].

Please review our Candidate Privacy Notice here .