Senior Product Security Engineer

Location / San Francisco, CA, United States

Apply Now

Mavenlink seeks a thoughtful, enthusiastic Senior Product Security Engineer to join us on our San Francisco R&D team. The role primarily consists of full stack development to improve the security of our software stack, as well as opportunities to shape the future of product security at Mavenlink.

Mavenlink is a mature SaaS platform helping service organizations to manage their businesses. Substantial customer growth is bringing interesting security challenges that we’d like your help with.

Our team culture emphasizes collaboration, communication, and enthusiasm for helping each other. We use agile values to evolve our practices. You will work next to our DevOps, Tooling and Architecture teams and influence the way our entire R&D team builds and delivers secure software.

What You'll Do:
  • Be an evangelist for secure coding and secure software design to the team

  • Establish patterns and tooling around secure development practices

  • Work directly with R&D Leadership to establish and achieve quarterly product and infrastructure security goals

  • Act as a point of triage and escalation for inbound security reports (we use HackerOne)

  • Work to maintain and improve the overall security of customer-facing infrastructure, including production infrastructure and our software development lifecycle

  • Contribute positively to team culture

Your opinion, voice and experience will be valued, and you’ll have our support in pursuing your ideas.

This is a senior individual contributor role reporting directly to the VP of Platform and Security, and there are opportunities to grow into a leadership role in security, if desired.

What We're Looking For:
  • Commitment to contributing to an inclusive workplace

  • Experience contributing to complex application development efforts

  • Proficient with web application security

  • Experience with security by design and defense in depth for cloud-based applications

  • Experience with penetration testing

  • Knowledge of security best practices for public clouds (AWS or GCP preferred)

  • Experience with Ruby on Rails, React & Redux is a plus
 • Appreciation for agile/XP approaches to software development

About Mavenlink

Mavenlink is a Software as a Service platform for running professional services businesses. Our customers include companies like design agencies, architecture firms, and IT consultancies—any company that bills their clients for their time. We help these businesses plan project staffing, deliver projects, manage budgets, and understand company performance.

Founded in 2008, we’re now over 250 employees with strong sales growth. We have a mature, productive startup culture combined with company stability and reliability. Our recent $39M investment round led by Goldman Sachs validated our progress and positioned us for continued success.

Mavenlink is an Equal Opportunity Employer.
Ml logo bl bridge

If you don't see your dream job listed, tell us a little about yourself and apply here. We are always looking for talented team players to join our growing company.