Senior Product Security Engineer - Provo

Qualtrics

Qualtrics

Software Engineering, Product
provo, ut, usa
Posted on Nov 14, 2024
At Qualtrics, we create software the world’s best brands use to deliver exceptional frontline experiences, build high-performing teams, and design products people love. But we are more than a platform—we are the creators and stewards of the Experience Management category serving over 18K clients globally. Building a category takes grit, determination, and a disdain for convention—but most of all it requires close-knit, high-functioning teams with an unwavering dedication to serving our customers.

When you join one of our teams, you’ll be part of a nimble group that’s empowered to set aggressive goals and move fast to achieve them. Strategic risks are encouraged and complex problems are solved together, by passing the mic and iterating until the best solution comes to light. You won’t have to look to find growth opportunities—ready or not, they’ll find you. From retail to government to healthcare, we’re on a mission to bring humanity, connection, and empathy back to business. Join over 5,000 people across the globe who think that’s work worth doing.
Senior Product Security Engineer - Provo, UT
Why We Have This Role
Qualtrics operates in an environment where security threats are constantly evolving, making it essential to prioritize security across our operations. The Product Security Senior Specialist plays a crucial role in safeguarding our products and infrastructure against increasing security risks. This individual will support the establishment and maintenance of company-wide security standards, working collaboratively with business units to tackle security challenges. Their contributions are vital in protecting customer data, strengthening the company's reputation, and ensuring that we deliver secure services consistently.
How You’ll Find Success
  • Proactive Initiative: Take ownership of security-related outcomes, actively gathering necessary context to work autonomously toward the goals of platform security.
  • Effective Communication: Foster trust and collaboration by communicating clearly and effectively across all levels of the organization.
  • Security Knowledge: Possess an extensive understanding of security concerns related to products, cloud environments, and infrastructure, providing valuable insights.
  • Collaborative Spirit: Build strong relationships across various product teams to propel security initiatives forward and facilitate cohesive security practices.
  • Analytical Thinking: Demonstrate sound judgment and problem-solving abilities in addressing complex security issues efficiently.
  • Commitment to Learning: Keep pace with the latest trends and developments in security, continuously enhancing your expertise in threat mitigation and security best practices.
How You’ll Grow
  • Deepening Security Knowledge: Deepen your expertise in key areas of Product Security Engineering, such as secure coding practices, threat modeling, and vulnerability management, allowing you to tackle increasingly complex security challenges within our product development lifecycle.
  • Leadership in Security Initiatives: Take the lead on critical security initiatives, including driving security assessments, code review processes, strengthening your leadership capabilities and making a measurable impact on our security posture.
  • Strategic Influence: Collaborate with cross-functional teams to shape and influence security policies and frameworks, contributing to the overall security strategy of the organization and enhancing your ability to drive organizational change.
  • Knowledge Development: Remain current with security trends, augmenting your understanding of emerging threats and innovative solutions.
  • Innovation and Research: Explore and experiment with new security technologies and methodologies, providing innovative solutions to security challenges and reinforcing your position as a key contributor to the organization’s security advancements.
Things You’ll Do
  • Enhance Security Posture: Conduct security assessments to identify, prioritize, and remediate vulnerabilities in our products and infrastructure.
  • Security Code & Design Reviews: Participate in code & design reviews to ensure secure coding and architectural practices are followed, identifying vulnerabilities and recommending secure alternatives to enhance code quality.
  • Threat Modeling: Collaborate with cross-functional teams to perform threat modeling exercises, identifying potential security risks early in the development lifecycle and developing mitigation strategies.
  • Penetration Testing Coordination: Assist in coordinating and executing penetration testing activities, analyzing results, and working with development teams to remediate identified weaknesses promptly.
  • Incident Response Support: Provide expertise during security incidents by helping to analyze breaches, recommending corrective actions, and ensuring lessons learned are documented to prevent future occurrences.
  • Security Documentation and Training: Develop and maintain security documentation while also conducting training sessions for development teams on best practices related to secure coding, vulnerability management, and incident response.
  • Collaboration on Security Standards: Work closely with various product teams to ensure adherence to security standards and frameworks, advising on security policies and procedures to foster a security-first mindset throughout the development process.
  • Continuous Improvement: Stay current with evolving security threats and vulnerabilities, incorporating lessons learned and industry best practices to continuously improve our product security strategies and controls.
What We’re Looking For On Your Resume
  • While we appreciate diverse experiences, we emphasize your capabilities and the results you have delivered. For this role, the following are particularly important:
  • Demonstrated Expertise: Show your experience in the field of security, ideally over 7 years, and provide examples of how you've influenced security culture within teams.
  • Breadth of Security Knowledge: Highlight your proficiency in various aspects of security, including product, cloud, and infrastructure security, as well as vulnerability management and data protection practices.
  • Collaborative Achievements: Evidence your ability to partner and work effectively across different business units to achieve shared security objectives.
  • Problem-Solving Acumen: Share instances where you successfully addressed security vulnerabilities or complex challenges decisively and efficiently.
  • Strategic Involvement: Ideally, you will have had a role in formulating and implementing security strategies that yielded positive, transformative outcomes.
Remember, we’re more interested in the achievements you’ve made over the years than the number of years you’ve worked. If you have confidence in your abilities but hesitate to apply due to self-doubt, we encourage you to take the leap.
What You Should Know About This Team
  • Innovative Environment: The Product Security team is at the forefront of Qualtrics' cutting-edge advancements in Experience Management and AI, employing advanced technologies to enhance the integrity and security of our platform.
  • Critical Function: Our efforts are foundational to the insights our clients derive across their entire lifecycle, from employee experience to market research. By securing vital data, we empower organizations to bridge the digital divide and roll out intuitive products globally.
  • Technical Expertise: Though we have a specialized focus on security, our work is highly technical and innovatively driven, rooted in complex problem-solving.
  • Significant Impact: By ensuring robust security and data protection, our team significantly enhances the quality and trustworthiness of Qualtrics' offerings, reinforcing customer confidence.
  • Growth-Oriented Culture: We promote a learning environment where team members can work with advanced tools and methodologies, expanding their skill sets while contributing to the company’s ambitious mission.
Joining our team means stepping into a role that's vital, challenging, and deeply linked to Qualtrics' aim of reshaping industries by harnessing the power of Experience Management and AI.
Our Team’s Favorite Perks and Benefits
  • Wellness Reimbursement for $300 per quarter for wellness activities including gym memberships, spa massages, workout equipment, meditation apps, and much more.
  • $1800 Experience bonus to be used for an “Experience” of your choosing
  • Amazing QGroup Communities; MOSAIQ, Green Team, Qualtrics Pride, Q&Able, Qualtrics Salute, and Women’s Leadership Development, which exist as places for support, allyship, and advocacy.
The Qualtrics Hybrid Work Model: Our hybrid work model is elegantly simple: we all gather in the office three days a week; Mondays and Thursdays, plus one day selected by your organizational leader. These purposeful in-person days in thoughtfully designed offices help us do our best work and harness the power of collaboration and innovation. For the rest of the week, work where you want, owning the integration of work and life.
Qualtrics is an equal opportunity employer meaning that all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.
​​​​​​​Applicants in the United States of America have rights under Federal Employment Laws: Family & Medical Leave Act,Equal Opportunity Employment,Employee Polygraph Protection Act
Qualtrics is committed to the inclusion of all qualified individuals. As part of this commitment, Qualtrics will ensure that persons with disabilities are provided with reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please let your Qualtrics contact/recruiter know.
Not finding a role that’s the right fit for now? Qualtrics Insiders is the one-stop shop for all things Qualtrics Life. Sign up for exclusive access to content created with you in mind and get the scoop on what we have going on at Qualtrics - upcoming events, behind the scenes stories from the team, interview tips, hot jobs, and more. No spam - we promise! You'll hear from us two times a month max with fresh, totally tailored info - so be sure to stay connected as you explore your best role and company fit.