Product Security Engineer, Sigma Computing

$170-200k

+ Stock Options

AWS
TypeScript
GCP
Python
Rust
Azure
Golang
Mid and Senior level
San Francisco Bay Area
Sigma Computing

Business intelligence software solutions

Open for applications

Sigma Computing

Business intelligence software solutions

201-500 employees

B2BEnterpriseAnalyticsVisualisationBusiness IntelligenceSaaSData AnalysisCloud Computing

Open for applications

$170-200k

+ Stock Options

AWS
TypeScript
GCP
Python
Rust
Azure
Golang
Mid and Senior level
San Francisco Bay Area

201-500 employees

B2BEnterpriseAnalyticsVisualisationBusiness IntelligenceSaaSData AnalysisCloud Computing

Company mission

To empower everyone to make the best possible decisions at every turn by removing the barriers that prevent people from analyzing data across sources and delivering the full spectrum of self-service cloud analytics and business intelligence.

Role

Who you are

  • Bachelor’s degree in Computer Science, Information Security, or a related field. Advanced degree preferred
  • Proven experience in offensive security roles such as red teaming, penetration testing, or ethical hacking
  • 4+ years of experience in Product security, with a proven track record in designing, implementing, and managing security programs for cloud-based platforms at Product companies
  • 2+ years of experience in a penetration testing or similar offensive security role
  • Expertise with secure software development practices, including threat modeling, code review
  • Familiarity with programming languages such as Golang, Rust, Typescript, Python or similar
  • Proficiency in security tools and technologies, such as static and dynamic analysis tools, penetration testing tools, and vulnerability scanners
  • Strong technical background in security architecture, CI/CD enablement, cryptography, network security, and application security
  • Good understanding of cloud computing technologies and security principles, particularly in AWS, Azure, or GCP environments
  • Relevant Security Certifications like OSCP or similar is a plus

What the job involves

  • As a Product Security engineer at Sigma, you will play a crucial role in ensuring the security of our data analytics products
  • In this role, you'll have the opportunity to see the big picture and engage in activities that span offensive security testing and architecture review, collaborating closely with product and engineering teams to build secure and resilient solutions
  • This is a hands-on role that demands understanding of attack vectors, a proactive approach to finding vulnerabilities, and the ability to work strategically to influence security architecture and design
  • Your primary goal will be to identify and mitigate security risks, establish robust security practices, and ensure compliance with relevant security standards and regulations
  • You will be encouraged to write blogs, speak and join security events to talk about the work you are doing and how other companies can utilize it to better analyze their security data
  • Conduct offensive security activities including red teaming, blackbox penetration testing, and vulnerability research and improve defensive blue team capabilities
  • Perform comprehensive penetration testing on SaaS applications, and cloud infrastructure
  • Collaborate with Engineering and Product teams to integrate security best practices into the software development lifecycle (SDLC)
  • Perform threat modeling / data flow diagramming / design risk analysis/ security assessments, code reviews in partnership with business partners, providing guidance that balances security requirements with functional requirements
  • You'll have the freedom to not only think like an attacker but also shape the security architecture to preemptively thwart those attacks
  • Work on incident response efforts related to product security incidents and breaches
  • Communicating and collaborating with partner teams, service owners, Information Security, and senior leadership to influence, prioritize, and drive the resolution of discovered security findings
  • Promote and grow culture of security within product engineering teams & design, build and operate uniform scalable security policies and controls for our entire product surface

Share this job

View 65 more jobs at Sigma Computing

Insights

Top investors

46% employee growth in 12 months

Company

Company benefits

  • Medical/Dental/Vision Insurance
  • 401(k)
  • Flexible Vacation
  • Flexible Schedule
  • Access to Health & Wellness Partners
  • Parental Leave

Funding (last 2 of 6 rounds)

May 2024

$200m

SERIES D

Dec 2021

$300m

SERIES C

Total funding: $566.3m

Our take

Sigma Computing is cloud analytics and business intelligence solution that provides live access to cloud data warehouses using an intuitive spreadsheet interface, allowing customers to analyze data and make insight-driven decisions in a matter of moments, not weeks. The company’s unique architecture of expanding data improves both performance and security by exclusively retaining data in cloud warehouses like Snowflake.

The company boasts more than 220 enterprise customers, including US Foods, Blackstone, and Athenahealth, who rely on Sigma Computing to make confident data-driven decisions. The company’s iterative and community-driven approach to A&BI frees data experts to focus on more innovative, fulfilling initiatives.

The company’s impressive funding rounds, co-led by D1 Capital Partners and XN, with support from exciting investors including Snowflake Ventures, Sigma Computing aims to continue to rapidly scale and democratize data analytics for organizations of all sizes.

Kirsty headshot

Kirsty

Company Specialist at Welcome to the Jungle