Senior Security Engineer 4, Product & Application Security

Senior Security Engineer 4, Product & Application Security

Remote (Canada)

PagerDuty empowers teams of all kinds to do the critical work that moves business forward through the PagerDuty Operations Cloud.

PagerDuty is seeking a Senior Security Engineer to join our diverse, customer-focused team! As a Senior Security Engineer, you will be a key contributor in leading security initiatives for PagerDuty’s SaaS offerings, focusing on application security through architecture reviews, threat modeling sessions, and defining secure-by-design product standards and protections that support PagerDuty’s security mission. Since we own and operate what we build, you’ll collaborate closely with engineers across many product development teams. You will work closely with our internal development teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers.

This is an exciting opportunity to build security solutions that make developers and customers happy. The ideal candidate will come from a large enterprise environment focused on establishing security standards, coordinating with product development teams, and developing strategies for secure-by-default architectures and tooling.

KEY RESPONSIBILITIES

• Embrace the role of hands-on technical lead in defining product security standards and guiding platform protections.
• Establish criteria and conduct comprehensive security reviews throughout all stages of product development to identify and address security risks.
• Perform regular threat assessments, coordinate with third-party testers for penetration testing, and conduct internal penetration testing to identify and mitigate security risks.
• Mentor and guide team members to ensure product and business objectives are prioritized in project implementations.
• Work with loosely defined requirements where you exercise your analytical skills to clarify questions, share your approach, and collaborate with the team to design and implement effective security frameworks.
• Participate in the team’s On-Call rotation, triaging and addressing security issues as they arise, and implement measures to prevent future occurrences.
• Enable service team security implementations by developing security-as-code constructs, including infrastructure-as-code (IaC) modules, libraries and frontend components.
• Establish and uphold baseline standards and hardened configurations for platform components.
• Continuously enhance security frameworks by focusing on product security standards and software supply chain protections, tailored for application security in cloud-native, microservices environments.

BASIC QUALIFICATIONS

• 5+ years of experience as a Security Engineer focused on product and application security in a cloud-native, microservices environment, preferably within AWS.
• Demonstrated experience with security standards and patterns for APIs, microservices, and serverless architectures, including best practices for secure SDLC integration and development.
• Familiarity with cloud-native product technologies including:
• Vulnerability detection (e.g., Qualys/Nessus, Wiz, Snyk)
• SIEM (e.g., SumoLogic, LogRythm, or Splunk)
• Container Security (e.g., Kubernetes, EKS)
• CI/CD Discipline (e.g., CircleCI, Buildkite, Helm, Terraform, Chef)
• Security Incident Response & Risk Management
• 4 years of experience and proficiency in at least one programming language and framework (e.g., Python, Bash, Phoenix/Elixir, Java, Ruby on Rails).
• Exceptional written, oral communication, and interpersonal skills.
• Strong organizational skills with the ability to successfully manage multiple priorities and deadlines.

PREFERRED QUALIFICATIONS

• Strong hands-on experience in deploying secure coding practices, automation, threat modeling and application security solutions.
• Strong understanding of modern application architectures, including microservices, containerization, and cloud-native applications.
• Experience with obtaining and maintaining FedRAMP authorization.
• Experience working at a SaaS company larger than 1,000 employees and $100M in revenue.
• Ability to analyze complex problems, and implementing these solutions with a growing proficiency in change management.
• Demonstrates a strong sense of ownership and a commitment to excellence in securing systems within a SaaS environment, with the ability to identify and implement resilient, effective product security measures.
• Proven history of mentoring and coaching.

The base salary range for this position is 156,000 - 232,000 CAD. This role may also be eligible for bonus, commission, equity, and/or benefits.

Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience.

Apply anyway! We extend opportunities to a broad array of candidates, including those with diverse workplace experiences and backgrounds. Whether you're new to the corporate world, returning to work after a gap in employment, or simply looking to take the next step in your career path, we are excited to connect with you.

About PagerDuty

PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management. The PagerDuty Operations Cloud revolutionizes how critical work gets done, and powers the agility that drives digital transformation. Customers rely on the PagerDuty Operations Cloud to compress costs, accelerate productivity, win revenue, sustain seamless digital experiences, and earn customer trust.

PagerDuty is Great Place to Work-certified, a Fortune Best Workplace for Millennials, a Fortune Best Medium Workplace, a Fortune Best Workplace in Technology, and a top rated product on TrustRadius and G2.

Additional Information

PagerDuty is committed to creating a diverse environment and is an equal opportunity employer. PagerDuty does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, parental status, veteran status, or disability status.

PagerDuty is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application process. Should you require accommodation, please email accommodation@pagerduty.com and we will work with you to meet your accessibility needs.