Security Lead - Product Security
Glovo
- Barcelona
- Permanente
- Tiempo completo
- Lead Product security team as part of the overall security efforts at Glovo
- Foster the security by design culture by embedding security throughout the development lifecycle of Glovo products
- Vendor management - Be the liaison point between the Product Security team and the corresponding different vendors and partners
- Help shape the backlog, roadmap and vision of the Product Security vertical and ultimately the Security team
- Support the implementation of automated security checks throughout the CI/CD pipelines (SCA, SAST, DAST, fuzzing, etc.)
- Coordinate regular internal and external security assessments on new and existing products, such as penetration tests.
- Help to perform threat modeling, design and code reviews sessions to proactively avoid identify potential vulnerabilities
- Help to build security libraries and tools both for the Security Team and for other teams
- Maintain the vulnerability management process, ensuring that security risks are correctly addressed.
- Support Security team in fostering security culture and designing awareness campaigns
- 7+ years of experience in product security or a similar position
- Proven industry experience as an Engineer Manager
- Ability to explain complex security issues and their impact to diverse audiences
- Experience with security vulnerabilities described in OWASP Top 10 / SANS 25 and CWE classification.
- Experience with modern web application offensive security assessments such as penetration testing
- Coding experience (preferable: python, java or golang)
- Proven problem solving, analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a fast-paced, agile environment
- Excellent written and spoken English communications skills, as well as strong interpersonal and relationship building skills
- Previous experience with Bug Bounties, CTFs or similar activities
- Experience with implementing security across a microservices architecture
- Experience with technologies such as Docker, Kubernetes and Infrastructure as Code
- Experience with the AWS environment
- 🌟 An enticing equity plan *if applicable
- 💪 Top-notch private health insurance to keep you at your peak.
- 🍔 Monthly Glovo meal benefits so you can test new features in our beta app (and to satisfy your cravings!)
- 💳 Discounts on transportation, food, and even kindergarten expenses or office-based nursery.
- 🏊 Discounted gym memberships to keep you energized.
- 🏖️ The freedom to work from home two days a week, and the opportunity to work from anywhere for up to three weeks a year. .
- 👪 Enhanced parental leave (*if applicable)
- 🧠 Online therapy and wellbeing benefits