Product Security Engineer at Moonpig

Manchester, England, United Kingdom

Apply Now
Moonpig Logo
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
E-commerce, TechnologyIndustries

Requirements

  • Strong knowledge of application security best practices (e.g. OWASP)
  • Experience with at least one major cloud provider (AWS, Azure or GCP)
  • Familiar with Infrastructure as Code (e.g. Terraform, CloudFormation)
  • Confident working with microservices, APIs and secure coding principles
  • Hands-on experience with SAST/DAST tools in CI/CD environments
  • Awareness of security tooling such as WAFs and vulnerability scanners
  • Solid understanding of cryptography, authentication and authorisation
  • A great communicator with a collaborative, pragmatic mindset
  • Ideally have experience measuring and improving security via tooling metrics
  • Ideally have exposure to incident response or threat modelling
  • Ideally knowledge of securing serverless or containerised environments
  • Background in software engineering with a keen interest and solid understanding of product security

Responsibilities

  • Contribute to the product security strategy and roadmap
  • Design, build and innovate on security tools within our DevOps pipeline
  • Partner with engineers to embed secure practices across the SDLC
  • Implement preventative and detective security controls in agile environments
  • Lead and support security testing (internally and with third parties)
  • Act as a subject matter expert during security incidents
  • Raise security awareness through knowledge sharing and collaboration
  • Ensure security is considered in every technical discussion and decision

Skills

Key technologies and capabilities for this role

OWASPApplication SecurityDevOpsSDLCAgileSecurity TestingSecurity Controls

Questions & Answers

Common questions about this position

What skills are required for the Product Security Engineer role?

Required skills include strong knowledge of application security best practices (e.g. OWASP), experience with at least one major cloud provider (AWS, Azure or GCP), familiarity with Infrastructure as Code (e.g. Terraform, CloudFormation), confidence working with microservices, APIs and secure coding principles, and hands-on experience with SAST/DAST tools in CI/CD environments.

What is the salary or compensation for this position?

This information is not specified in the job description.

Is this Product Security Engineer role remote or office-based?

This information is not specified in the job description.

What does the company culture look like at Moonpig Group?

The company emphasizes values that guide how they work and support one another, building a place where people and ideas can thrive, with a focus on spreading joy and making an impact.

What makes a strong candidate for this Product Security Engineer position?

A strong candidate has a background in software engineering with a keen interest and solid understanding of product security, plus ideally experience measuring security via metrics, incident response, threat modelling, or securing serverless/containerised environments.

Moonpig

eCommerce platform for personalized cards and gifts

Website

About Moonpig

Moonpig operates an eCommerce platform that focuses on personalized greetings cards, gifts, and flowers. Customers can create customized products for various occasions like birthdays, anniversaries, and new arrivals. The platform uses technology to ensure a smooth shopping experience, processing over 50 million orders each year. Unlike many competitors, Moonpig emphasizes customer satisfaction and timely delivery, which helps build loyalty among its users. The company's goal is to provide a convenient and enjoyable way for people to celebrate special moments with personalized items.

London, United KingdomHeadquarters
2000Year Founded
IPOCompany Stage
Consumer Software, Consumer GoodsIndustries
201-500Employees

Benefits

Flexible Work Hours
Hybrid Work Options

Risks

Competition from free digital communication platforms may reduce demand for traditional cards.
Eco-conscious consumerism challenges Moonpig to offer more sustainable product options.
Economic uncertainty in key markets may reduce spending on non-essential personalized items.

Differentiation

Moonpig offers personalized greeting cards with customizable captions, unlike traditional cards.
The company integrates AI tools like AI handwriting for enhanced personalization.
Moonpig operates in multiple countries, including the UK, US, Australia, and the Netherlands.

Upsides

Increased demand for personalized digital experiences boosts Moonpig's growth potential.
AI integration enhances customer engagement and aligns with consumer interest in personalization.
Expansion of digital payment solutions facilitates smoother transactions and higher conversion rates.

Related Jobs

United States
Remote iconRemote

Senior Application Security Engineer

M&T Bank
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
United States
Remote iconRemote

Security Engineer, Cloud Security

Red Cell Partners
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Canada +7 more
Remote iconRemote

Senior Backend Engineer, Secure Policy (US/Canada Eastern or European ā€¦

Docker
ā‚¬113,200 - ā‚¬155,700/year
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
Mountain View +1 more
Remote iconRemote

Senior Software Security Engineer

Muon Space
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Software Engineer, Security

Render
$193,000 - $265,000/year
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
United States +4 more
Remote iconRemote

Security Engineer, Product Security

Chainlink Labs
Salary not specified
  • Employment type iconFull Time
  • Experience level iconMid-level (3 to 4 years), Senior (5 to 8 years)
United States
Remote iconRemote

Senior Cloud & Application Security Engineer

Dataminr
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
United States
Remote iconRemote

Detection & Response Engineer III - NG-SIEM (Remote)

Crowdstrike
Salary not specified
Palo Alto
Remote iconRemote

Performance Modeling Engineer

Groq
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
California
Remote iconRemote

Sr. Vulnerability Management Engineer (Remote)

Crowdstrike
Salary not specified
Remote
Remote iconRemote

Senior Engineer, App Security

Healthie
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
California
Remote iconRemote

Senior/Lead Infrastructure Security Engineer

Biorender
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Strategic Solutions Engineer, East

Cresta
Salary not specified
United States +3 more
Remote iconRemote

Security Engineer, Infrastructure Security

OpenAI
$292,500 - $405,000/year
  • Employment type iconFull Time
  • Experience level iconJunior (1 to 2 years)
San Francisco
Remote iconRemote

Security Architect

Earnest
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)

Land your dream remote job 3x faster with AI

Try Jobo Free