Product Security Architect

Product Security Architect page is loaded Product Security Architect Apply remote type In Office locations Melbourne, Australia time type Full time posted on Posted Today job requisition id R31541 Job Description Who we're looking for Product Security at Zendesk is a globally distributed team of security engineers focused on full stack product security including application & infrastructure security, data & software engineering, and offensive security.
We understand how to build applications securely and enjoy crafting creative approaches to scale security through automation and secure design.
We develop and build processes and tools that allow us to make the right, secure decisions for our customers and bake security into our products.
We partner with our engineers to prioritize security during the entire software development lifecycle and provide them the tools and programs to do so, including a mature bug bounty program, regular and in-depth security reviews, static/dynamic tooling, and vulnerability lifecycle management.
What you'll be doing Collaborate with Zendesk Engineering teams in Melbourne and regionally early in the development lifecycle to build secure design practices for AI products and new features.
Review new architecture changes to identify security risks and build practical solutions for risk management and mitigation using tools like Terraform, Python, and Burp Suite.
Provide mentorship and guidance to other members of the Zendesk Security team, sharing expertise and best practices to enhance team capabilities.
Develop 'at scale' solutions to problems like Content Security Policy (CSP), automating authorization testing against API inventories, Evaluate and implement security tools as needed to strengthen our security framework and address evolving threats.
What you bring to the role Basic Qualifications:10 years of experience in Security, with at least 5 years supporting secure software development.
Programming experience involving real world development.
Strong understanding of AWS products and services, their unique risks, and how to address those risks.
Strong written and verbal communication skills to complement the ability to work in a global, asynchronous manner.
The ability to influence other teams without direct authority.
Knowledge of modern web application technologies including their security threats and vulnerabilities.
Ability to work on multiple projects/tasks at once - balancing and prioritizing work appropriately Excellent problem-solving skills and self-motivation to learn and upskill regularly.
Preferred Qualifications: Experience with application security or supporting secure software development.
CVE's, participation in bug bounties or security competitions.
Security certifications such as AWS, OSCP, etc.
Hybrid: In this role, our hybrid experience is designed at the team level to give you a rich onsite experience packed with connection, collaboration, learning, and celebration - while also giving you flexibility to work remotely for part of the week.
This role must attend our local office for part of the week.
The specific in-office schedule is to be determined by the hiring manager.
The intelligent heart of customer experience Zendesk software was built to bring a sense of calm to the chaotic world of customer service.
Today we power billions of conversations with brands you know and love.
Zendesk believes in offering our people a fulfilling and inclusive experience.
Our hybrid way of working, enables us to purposefully come together in person, at one of our many Zendesk offices around the world, to connect, collaborate and learn whilst also giving our people the flexibility to work remotely for part of the week.
Zendesk is an equal opportunity employer, and we're proud of our ongoing efforts to foster global diversity, equity, & inclusion in the workplace.
Individuals seeking employment and employees at Zendesk are considered without regard to race, color, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, disability, military or veteran status, or any other characteristic protected by applicable law.
We are an AA/EEO/Veterans/Disabled employer.
If you are based in the United States and would like more information about your EEO rights under the law, please click here.
Zendesk endeavors to make reasonable accommodations for applicants with disabilities and disabled veterans pursuant to applicable federal and state law.
If you are an individual with a disability and require a reasonable accommodation to submit this application, complete any pre-employment testing, or otherwise participate in the employee selection process, please send an e-mail to peopleandplaces@zendesk.com with your specific accommodation request.
About Us Zendesk is on a mission to simplify the complexity of business and make it easy for companies and customers to create connections.
Our customer experience software unlocks the power of billions of interactions, enabling businesses to build rich, meaningful relationships with their customers.
More meaningful moments.
Fewer Zoom calls.
What's it like to work here? Our offices reflect the global cities we call home, and have spaces for collaboration, quiet, and events.
With our hybrid approach, you'll experience flexibility and connection, collaboration, and learning with your team.
Recruitment Scam Alerts We're aware of an increase in recruitment scams where individuals falsely claim to represent Zendesk.
These scammers may ask for money or personal information by offering fake job opportunities through e-mail, text message or social media.
Please verify the source of any job-related communications carefully.
All official Zendesk communications are conducted through "@zendesk.com " email addresses.
If you encounter suspicious messages, do not respond and report them to peopleandplaces@zendesk.com
#J-18808-Ljbffr

---