We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

Staff Product Security Engineer at Owlet Baby Care. Owlet is changing the world of parenting with meaningful products that truly make a difference for millions around the world. Owlet has helped more than a million parents keep their children safe, while bringing joy and sleep to the parenting journey. We believe every parent deserves the peace of mind that comes with a better understanding of their baby’s needs.. Learn more about our amazing mission at: . https://owletcare.com/pages/why-owlet. . We are looking for a seasoned Staff Product Security Engineer to lead and advance our product and application security initiatives. This role demands deep technical expertise across all facets of product security and secure software development. Experience securing medical devices is a significant plus. The ideal candidate will be hands-on, strategic, and serve as a security champion across product engineering teams. . Key Responsibilities. . Product Security Leadership - define and implement product and application security strategies throughout the SDLC.. . Security Architecture & Design - collaborate with product and engineering teams to design secure architectures for web, mobile, and cloud-based applications.. . Secure Development - integrate security best practices into CI/CD pipelines, promote secure coding practices, and conduct secure code reviews and threat modeling sessions.. . Security Assessments - lead and perform penetration testing, static/dynamic code analysis, and security reviews for internally developed and third-party applications.. . Tooling & Automation - develop and maintain automated security testing tools, workflows, and integrations to scale security across product teams.. . Security Incident Response - lead investigation and remediation of security incidents related to products and applications.. . Support Security Compliance Initiatives - support various compliance initiatives such as SOC2, ISO27001, Cyber Resilience Act, US Cyber Trust Mark. . Mentorship & Advocacy - educate engineers on secure development practices, influence engineering culture, and act as a liaison between security and engineering teams.. . . . B.S. in Computer Science, Cyber Security or a related field.. . 5+ years of experience in cloud security engineering with a focus on application/product security; experience securing medical devices is a plus.. . Deep understanding of OWASP Top 10, secure coding, threat modeling, authentication/authorization, cryptography, and cloud-native application security.. . Strong grasp of NIST CSF and other regulatory frameworks.. . Experience with Data Governance and Privacy.. . Certifications CISSP, CSSLP, GWAPT, or equivalent are a plus.. . Experience with tools like SAST/DAST, SCA, container security, and languages like Python and JavaScript. . Soft Skills Strong communication and collaboration skills with the ability to drive cross-functional initiatives. . Company Location: United States.