Engineering Manager, Application Security - Product Security (Remote)
CrowdstrikeSalary not specified
Not SpecifiedCompensation
Mid-level (3 to 4 years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, Software DevelopmentIndustries
Requirements
- Deep technical background in code security or static application security testing (SAST)
- Experience in software product management, preferably in an agile context
- Passionate about secure software development and application security testing
- Deep understanding of the security needs in at least one specialty domain (e.g., cloud, IaC, or mobile security)
- Familiar with the application security testing (AST) market and its vendors
- Technical comprehension of the architectures related to code scanning and static analysis
- Highly autonomous and pragmatic
- Open-minded and very positive
Responsibilities
- Contribute to the product visions and communicate about them, internally and externally
- Research, clarify, and prioritize opportunities to build and maintain an effective roadmap
- Interact with users and customers on the SonarSource product forum to support them, integrate their feedback, and identify opportunities
- Develop a deep understanding of code security and how SonarSource can enable developers to write more secure software
- Work closely with other product managers to design cross-product features
- Align with the engineering and UX teams on the problems to solve and support them during the end-to-end development stage of the solutions
- Sync with the engineering teams to ensure a balance between innovation, consolidation, and stability
- Attend conferences and give talks if desired
- Help the Product Management team grow in its organization, tools, and processes
Skills
Key technologies and capabilities for this role
Questions & Answers
Common questions about this position
Is this position remote?
Yes, this is a remote position.
What is the salary for this role?
This information is not specified in the job description.
What skills are required for the Security Product Manager role?
Required skills include experience in software product management (preferably agile), deep understanding of security needs in a specialty domain like cloud or IaC, familiarity with the AST market, and technical comprehension of code scanning and static analysis.
What is the company culture like at SonarSource?
The culture values highly autonomous and pragmatic individuals who are open-minded and very positive, with opportunities to attend conferences, give talks, and help grow the Product Management team.
What makes a strong candidate for this position?
A strong candidate has a deep technical background in code security or SAST, passion for secure software development, and experience shaping product visions in an agile environment.
Sonar
Tools for code quality and security
About Sonar
SonarSource provides tools aimed at improving code quality and security for software developers. Its main products include SonarLint, an IDE plugin that gives real-time feedback on code quality; SonarQube, a self-managed solution for comprehensive code analysis and reporting; and SonarCloud, a cloud-based service that offers similar features with the convenience of cloud management. SonarSource operates on a subscription-based model, allowing clients to access its tools through annual subscriptions or usage-based pricing for cloud services. The company serves over 400,000 organizations worldwide, emphasizing the importance of writing clean, maintainable, and secure code. SonarSource's goal is to promote the philosophy of "Clean Code," which enhances the efficiency of development teams and improves the security and reliability of software applications.
Vernier, SwitzerlandHeadquarters
2008Year Founded
$444.6MTotal Funding
LATE_VCCompany Stage
Enterprise Software, CybersecurityIndustries
501-1,000Employees
Benefits
Flexible Work Hours
Hybrid Work Options
Professional Development Budget
Risks
Tidelift acquisition may cause integration challenges, disrupting Sonar's operations.
Cultural challenges may affect the partnership with Adactin in Australia.
New distribution agreement with QBS Software may lead to channel conflicts.
Differentiation
SonarSource supports over 30 programming languages, offering broad compatibility for developers.
SonarLint provides real-time feedback in IDEs, enhancing code quality during development.
SonarQube and SonarCloud offer comprehensive code analysis, ensuring high standards for codebases.
Upsides
Sonar's acquisition of Tidelift enhances its open source software security capabilities.
Partnership with Adactin expands Sonar's reach in the Australian market.
Integration with AI-driven tools boosts Sonar's code quality assessment efficiency.
Related Jobs
RemoteRemoteStaff Product Security Software Engineer (Remote)
QuoraSalary not specified
Full Time
Junior (1 to 2 years)
RemoteSecurity Engineer, Cloud Security
Red Cell PartnersSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemotePrincipal DevSecOps Engineer
Second Front SystemsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Director, Product Security
1PasswordSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteVP Product, Core Products
AerospikeSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteProduct Security - Infrastructure Security Engineer
PayPalSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteSr. Product Manager - Mobile (Remote)
Rula$181,000 - $212,900/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSolutions Consultant - East
SmartsheetSalary not specified
RemoteStaff Software Engineer, Product Security
SlackSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteSenior Product Manager, Pentest as a Service
HackerOneSalary not specified
RemoteProduct Manager, Internal Tools
Pearl HealthSalary not specified
- Full Time
- Entry Level & New Grad