Dopple

Senior Product Security Engineer

Myrtle Point, Oregon, United States

$175,000 – $200,000Compensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Biotechnology, CybersecurityIndustries

Requirements

Candidates should possess 5-7 years of experience in product security, cloud security engineering, or a related field. A strong understanding of Google Cloud Platform (GCP) services and security best practices, including IAM, networking, data protection, and workload runtimes, is essential. Hands-on experience with penetration testing coordination, threat modeling, and risk assessment is required, along with proficiency in Infrastructure-as-Code tools like Terraform and CI/CD integrations. Familiarity with designing and enforcing least-privilege IAM and conducting access reviews is necessary, as is the ability to clearly communicate security risks and recommendations to engineering and leadership audiences. Preferred qualifications include professional certifications such as GCP Professional Cloud Security Engineer, OSCP, or CISSP, experience building reusable security guardrails and automation at scale, and familiarity with Kubernetes (GKE) and container security.

Responsibilities

The Senior Product Security Engineer will lead product and cloud security by embedding into engineering workflows and acting as the subject matter expert for GCP. This involves running security architecture reviews for product features and the GCP environment, leading threat modeling, and owning penetration testing engagements from scoping to remediation. The role also includes designing and enforcing least-privilege IAM in GCP, building security guardrails through policy and infrastructure-as-code, and ensuring security issues are triaged, tracked, and resolved. Responsibilities extend to providing enablement and mentorship for engineers, creating practical documentation and runbooks, and reporting progress and risks with metrics to security leadership. The engineer will also mentor other engineers and code owners on secure-by-default coding and architecture best practices.

Skills

Product Security
Cloud Security
GCP
Architecture Reviews
Threat Modeling
Penetration Testing
IAM
Infrastructure-as-Code
Networking
Data Protection
CI/CD
Security Guardrails

Dopple

Subscription service for custom children's clothing

About Dopple

Dopple is a subscription service that curates custom wardrobes for children, focusing on providing unique and stylish clothing options. The service operates by delivering regular shipments of clothing tailored to the individual tastes and needs of each child, based on information provided by parents and data collected from their interactions with the service. This personalized approach makes shopping exciting, as each delivery offers a surprise element. Dopple partners with a variety of brands, including both well-known names and emerging designers, to ensure a diverse selection of high-quality clothing. Unlike many competitors, Dopple emphasizes a community experience through their "dopplegang," fostering customer engagement and loyalty. The company's goal is to enhance the shopping experience for parents while providing children with fashionable clothing, with plans to expand internationally in the future.

Raleigh, North CarolinaHeadquarters
2018Year Founded
$9.5MTotal Funding
SEEDCompany Stage
Consumer GoodsIndustries
11-50Employees

Benefits

Competitive salary and equity grants
Medical, dental & vision insurance
Paid time off & work from home flexibility (during and after COVID-19)
Free Dopple subscription and significant employee discounts
Learning and development programs, including education reimbursement

Risks

Increased competition from new subscription services may dilute Dopple's customer base.
Rising costs of premium brands could lead to higher subscription fees.
International expansion may face regulatory challenges and increased operational costs.

Differentiation

Dopple offers personalized children's clothing through a unique subscription model.
The company partners with over 200 brands, including Stella McCartney Kids and Versace.
Dopple uses machine learning to tailor clothing selections to individual tastes.

Upsides

Growing demand for sustainable children's clothing boosts Dopple's market potential.
AI-driven personalization enhances customer experience and engagement for Dopple.
U.S. children's clothing market growth supports Dopple's expansion plans.

Land your dream remote job 3x faster with AI