Senior Product Security Engineer, Wayfair
A global online homeware marketplace
Open for applications
A global online homeware marketplace
1001+ employees
Open for applications
1001+ employees
Company mission
To help everyone, anywhere create their feeling of home.
Role
Who you are
- Minimum of 5 years of experience in secure application development or application security
- Experience with secure application development or Secure SDLC
- Hands-on scripting experience in Python
- Experience securing k8s, REST and GraphQL services with deep understanding of securing micro service architectures
- Experience securing any of these cloud services platforms - GCP (Preferred), AWS, Azure
- Understanding of Authentication mechanisms such as SAML, JWT, OAuth etc
- Understanding of build and release management, CI/CD platforms
- Experience securing any of these cloud services platforms - GCP, AWS, Azure
- Cloud Security Certifications is a plus
- We would love to see experience with WAF, Bug Bounty Program and Open source security tools
What the job involves
- Wayfair’s Application Security Team is responsible for safeguarding the security of development and custom products and features
- We engage with hundreds of developers and development teams to review and improve the security of custom developed applications, products, and interfaces
- Additionally, we monitor and manage customer security and react to incidents as they arise. We design secure solutions and systems, build trusted relationships with teams across Wayfair and our customers, investigate security incidents, discover and mitigate vulnerabilities, both internal and external
- Lead enterprise wide security initiatives by working closely with development teams
- Strategize and collaborate with security development to build security solutions that can be used across the enterprise using Python and Java
- Be the trusted security SME for the Org and liaise with development and product teams to develop & deploy secure products and features for customers, suppliers, partners, and employees
- Implement ‘Sec’ in DevSecOps model of operations
- Conduct risk analysis, threat modeling and penetration testing of highly complex services to build secure products from ground up
- Keep development teams up-to-date with secure coding practices by providing them training and the latest trends in secure development
- Build runbooks and knowledge base to assist developers with secure development
- Coordinate with and manage external hackers as part of Wayfair’s Bug Bounty Program
- Maintain, tune, and own the web application firewall (WAF)
Our take
Wayfair emerged in the early era of eCommerce with a mission to revolutionize online shopping, offering customers a convenient platform to purchase goods. Today, it stands as one of the foremost global players in the online furniture delivery industry, boasting an impressive inventory of over 33 million products.
Renowned for its extensive product range and comprehensive service offerings, Wayfair distinguishes itself by providing an end-to-end customer experience, from browsing to doorstep delivery. Despite its prominence, the company faces profitability challenges attributed largely to expansion expenses. Nonetheless, its solid presence in the competitive online homeware sector solidifies its position as a key contender.
With ambitious global expansion plans, Wayfair remains committed to maintaining its leadership in the industry. As it aspires to become the ultimate destination for all home needs, its more recent ventures into physical retail represent significant strides toward this overarching goal.
Kirsty
Company Specialist at Welcome to the Jungle
Insights
Some candidates hear
back within 2 weeks
-14% employee growth in 12 months
Company
Company values
- Relentless Customer Focus: Delivering an exceptional customer experience drives everything we do. We invest in understanding our customers and partners. We are all in customer service
- Deliver Rsults With Agility: We prioritize work that drives long-term value. We execute with urgency, learn from failure, and nimbly pivot. The outcomes of our efforts are impactful, measurable results
- Use Good Judgement: We are bold and confident, never reckless. We make reasoned, calculated decisions based on data, critical thinking, and pattern recognition
- Build the Best Team: We lead by setting the bar high, articulating clear goals, and diving deep. We hire, develop, and leverage only the best. Our leaders continually reevaluate and strengthen their teams and do not shy away from hard decisions. We expect and demonstrate excellence
- Collaborate Effectively: We invest in cross-functional global partnerships that maximize impact and minimize duplication. We prize collaboration in all interactions – with our teammates, stakeholders, and suppliers. We disagree, align, and commit. Effectiveness and efficiency in collaboration are required.
- Respect Others: We earn and show respect, treating our teammates and partners with empathy and inclusion. We presume good intent while prioritizing impact. We balance confidence and candor with humility and kindness.
- Be an Owner: We are Wayfair first. We act on what’s best for the company, ahead of team or individual goals. We spend every dollar as if it is our own. We take pride in Wayfair’s success while planning the next win. We always think long-term
- Innovate & Improve: We are not limited by precedent. We boldly challenge the norm. We continually identify opportunities to innovate, improve, and simplify. We value incremental improvements, but we also look for game-changing breakthroughs.
- Adapt & Grow: We value adaptability and self-reflection. We find opportunity in every change, experience, and mistake. We are committed to continuous self-improvement.
Company HQ
Prudential / St. Botolph, Boston, MA
Articles
Leadership
Niraj Shah
(Co-Founder & CEO)Studied Engineering at Cornell University before co-founding Spinners, a Boston-based IT services company. Previously acted as Entrepreneur in Residence for Greylock and has served as CEO of Wayfair since co-founding the company in 2002.
Steven Conine
(Co-Founder)Co-founded Spinners before working for Operations at iXL. Conine also co-founded Pillar VC in 2016.
Salary benchmarks
We don't have enough data yet to provide salary benchmarks for this role.
Submit your salary to help other candidates with crowdsourced salary estimates.
Share this job
View 69 more jobs at Wayfair