[Remote] Product Security Engineer at Yubico

United States

Apply Now
Yubico Logo
Not SpecifiedCompensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, Hardware, TechnologyIndustries

Requirements

  • 3+ years in a product security role
  • 3+ years of software development
  • Proficiency in threat modeling
  • Proficiency in C
  • Knowledge of common vulnerability classes
  • Experience in static code analysis
  • Ability to travel to Yubico’s other offices two times per year

Responsibilities

  • Define and evangelize requirements and guidance for secure by design and secure by default principles
  • Implement automation to prevent and detect security flaws in all phases of development
  • Conduct design reviews and manual security assessments
  • Lead training and awareness sessions
  • Define and implement metrics to provide visibility into the impact of your work
  • Define, lead, and influence processes to secure products and services
  • Identify and advocate for new and novel uses of Yubico’s technology

Skills

Key technologies and capabilities for this role

Product SecurityHardware SecurityAuthenticationPasskeysSecurity EngineeringCryptographySecure AccessYubiKey

Questions & Answers

Common questions about this position

What work arrangement options does Yubico offer?

Yubico offers freedom and flexibility, allowing employees to work 100% from home or choose hybrid/onsite arrangements.

What are the main responsibilities of the Product Security Engineer?

Responsibilities include defining and evangelizing secure by design principles, implementing automation to detect security flaws, conducting design reviews and assessments, leading training sessions, and implementing metrics for impact visibility.

What is Yubico's company culture like?

Yubico fosters a strong company culture with an open space for employee voices, Employee Resource Groups like YubiPride and YubiWomen, emphasis on social connections through virtual workspaces and Slack, and a commitment to philanthropy via Secure it Forward.

What salary or compensation does this role offer?

This information is not specified in the job description.

What makes a strong candidate for this Product Security Engineer role?

A strong candidate is passionate about security, enjoys fun challenges in a security-oriented company, and has experience collaborating with firmware and software teams on secure design practices, static/dynamic analysis, and vulnerability remediation.

Yubico

Provides two-factor authentication security keys

Website

About Yubico

Yubico specializes in cybersecurity by offering two-factor authentication solutions, primarily through their product, the YubiKey. The YubiKey is a physical security key that enhances protection against unauthorized access by requiring users to insert or tap the key for authentication, which adds an extra layer of security beyond just passwords. Yubico serves a wide range of clients, including large enterprises, small businesses, and individual consumers, particularly in industries like finance, healthcare, and technology where data protection is crucial. Unlike many competitors, Yubico provides various models of the YubiKey tailored to different security needs and also offers software tools for developers to integrate YubiKey functionality into their applications. The company's goal is to ensure robust security for their customers by continuously expanding their product line and providing support services.

Palo Alto, CaliforniaHeadquarters
2007Year Founded
$88.8MTotal Funding
IPOCompany Stage
CybersecurityIndustries
501-1,000Employees

Benefits

Retirement plan
Wellness benefit
Equity in the company
Learning & development
Global events
Parental leave

Risks

Emerging side-channel attacks like EUCLEAK threaten YubiKey's microcontroller security.
Adversarial AI could undermine Yubico's multi-factor authentication effectiveness.
Reliance on traditional MFA methods may affect Yubico's market if not innovated.

Differentiation

Yubico's YubiKey offers robust two-factor authentication with a physical security key.
YubiKey is compatible with major platforms like Google, Microsoft, and Facebook.
Yubico provides a range of hardware and software solutions for diverse industries.

Upsides

Growing demand for passwordless authentication boosts Yubico's market potential.
YubiKey Bio Series addresses enterprise needs for phishing-resistant biometric security.
Integration with Microsoft Entra ID enhances seamless onboarding for enterprise users.

Related Jobs

Remote
Remote iconRemote

Security Engineer

Offchain Labs
Salary not specified
  • Employment type iconFull Time
  • Experience level iconJunior (1 to 2 years)
United States
Remote iconRemote

Senior Application Security Engineer

M&T Bank
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
United States
Remote iconRemote

Software Engineer, Security

Render
$193,000 - $265,000/year
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Remote
Remote iconRemote

Principal DevSecOps Engineer

Second Front Systems
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
San Francisco
Remote iconRemote

Security Architect

Earnest
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
United States +4 more
Remote iconRemote

Security Engineer, Product Security

Chainlink Labs
Salary not specified
  • Employment type iconFull Time
  • Experience level iconMid-level (3 to 4 years), Senior (5 to 8 years)
Toronto +3 more
Remote iconRemote

Senior Software Engineer, Secure Agents

Cohere
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)

Land your dream remote job 3x faster with AI

Try Jobo Free