Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our Security team to enhance product security and support software development.
- Company: Mattermost is a leading collaborative workflow solution for critical organisations worldwide.
- Benefits: Enjoy remote work flexibility, competitive pay, and a commitment to diversity and inclusion.
- Why this job: Make an impact in security while collaborating with a global team on innovative solutions.
- Qualifications: BS in Computer Science or related field with 3+ years in application security or secure development.
- Other info: We welcome applicants from all backgrounds and provide accommodations during the interview process.
The predicted salary is between 36000 - 60000 £ per year.
At Mattermost, we build the #1 collaborative workflow solution for defense, intelligence, security, and critical infrastructure organizations. Trusted by governments, financial institutions, and technology companies, our platform enables secure, efficient operations for the world’s most critical teams.
We’re dedicated to empowering organizations to operate with confidence, reducing risks, and accelerating productivity. Guided by our core values of Customer Obsession, Earn Trust, Self Awareness, Ownership and High Impact, we collaborate closely with our customers to deliver solutions that meet complex needs and drive success.
Mattermost is seeking a results-driven and analytical Product Security Engineer to help ensure the security of our product and services across the company. As part of our Security team, you will work closely with a globally distributed team to support all aspects of the software development life cycle. You will be responsible for the implementation of additional application security tooling and/or processes across the company, coordinating with relevant stakeholders, gathering requirements, and leading the implementation.
Responsibilities Include:
- Support the application vulnerability management and mitigation approaches
- Conduct application security reviews through manual code review or static/dynamic code analysis
- Engage in threat modelling and design reviews of in-house developed software components
- Provide security guidance and training to internal development teams
- Triage SCA findings and support internal development teams in SCA findings remediation
- Improve and/or automate existing processes to increase efficiency
Requirements:
- BS in Computer Science, Cybersecurity, Software Engineering, or a related technical field, or equivalent experience, with 3+ years of relevant experience in application security, secure software development, or penetration testing
- Understanding of web application security and secure development practices
- Familiarity with common security libraries, security controls, and common security flaws
- Experience with static/dynamic analysis, and common exploit methods
- Excellent written and verbal communication skills
- Demonstrable teamwork skills and resourcefulness
Preferences:
- Experience working in open source communities
- Experience running a bug bounty programme
- Experience with Threat Modelling applications
- Certifications in the domain of penetration testing or application security (e.g., OSCP, OSWE, GWAPT, etc.)
- Experience with Electron, React, or React Native
- Participation in Bug Bounties, CTFs, or similar activities
Mattermost takes a market-based approach to pay and pay may vary depending on your location. The successful candidate’s starting pay will be determined based on job-related skills, experience, qualifications, work location, and market conditions. These ranges may be modified in the future.
Mattermost is an EEO Employer, We are a remote-first, open-source company.
We are continually working to expand our hiring in more countries and regions, ensuring compliance with local laws and regulations, which takes time.
Mattermost values your unique perspective—we welcome all applicants. We encourage individuals from all backgrounds to apply and are committed to assessing candidates based on their skills and qualifications. We do not tolerate discrimination against staff or applicants based on race, religion, national origin, age, disability, pregnancy status, veteran status, or other personal characteristics.
If you require accommodations during the interview process, please let us know—we’re happy to assist.
Create a Job Alert
Interested in building your career at Mattermost? Get future opportunities sent straight to your email.
Apply for this job
*
indicates a required field
First Name *
Last Name *
Preferred First Name
Email *
Phone
Resume/CV
Enter manually
Accepted file types: pdf, doc, docx, txt, rtf
Enter manually
Accepted file types: pdf, doc, docx, txt, rtf
Education
School Select…
Degree Select…
LinkedIn Profile
Website
Github Profile
How did you hear about Mattermost?
Why are you interested in this role at Mattermost?
On a scale of 1 (not a fit) to 10 (perfect fit) how would you rate your potential fit for the role for which you\’re applying? Please share why.
Have you used Mattermost previously or contributed to the open-source project? If so, please tell us the ways you\’ve been involved.
#J-18808-Ljbffr
Product Security Engineer employer: Mattermost
Contact Detail:
Mattermost Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Product Security Engineer
✨Tip Number 1
Familiarise yourself with the specific security tools and practices mentioned in the job description. Understanding application vulnerability management and secure development practices will give you a solid foundation to discuss during interviews.
✨Tip Number 2
Engage with the open-source community, especially if you have experience with Electron, React, or React Native. Contributing to relevant projects can showcase your skills and passion for security, making you a more attractive candidate.
✨Tip Number 3
Prepare to discuss your experience with threat modelling and application security reviews. Be ready to share specific examples of how you've implemented security measures in past roles, as this will demonstrate your hands-on experience.
✨Tip Number 4
If you've participated in bug bounties or CTFs, make sure to highlight these experiences. They not only show your practical skills but also your commitment to continuous learning and improvement in the field of security.
We think you need these skills to ace Product Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in application security, secure software development, and penetration testing. Use specific examples that demonstrate your understanding of web application security and secure development practices.
Craft a Compelling Cover Letter: In your cover letter, express your enthusiasm for the role at Mattermost. Discuss how your skills align with their core values, such as Customer Obsession and Ownership, and mention any experience you have with open source communities or bug bounty programmes.
Showcase Relevant Projects: If you've worked on projects involving static/dynamic analysis or threat modelling, be sure to include these in your application. Highlight any contributions to open-source projects or participation in CTFs that demonstrate your practical skills.
Prepare for Technical Questions: Anticipate technical questions related to application security and secure coding practices. Be ready to discuss common security flaws and how you would approach vulnerability management and mitigation in a collaborative environment.
How to prepare for a job interview at Mattermost
✨Understand the Company Values
Before your interview, make sure you understand Mattermost's core values: Customer Obsession, Earn Trust, Self Awareness, Ownership, and High Impact. Be prepared to discuss how your personal values align with these and provide examples from your past experiences.
✨Showcase Your Technical Skills
As a Product Security Engineer, you'll need to demonstrate your knowledge of application security, secure software development, and penetration testing. Be ready to discuss specific tools and methodologies you've used in previous roles, and consider preparing a brief case study or example of a successful project.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills and ability to handle real-world security challenges. Think about past experiences where you identified vulnerabilities or improved security processes, and be ready to explain your thought process and the outcomes.
✨Engage with the Interviewers
Interviews are a two-way street! Prepare thoughtful questions about the team dynamics, current security challenges at Mattermost, and opportunities for professional growth. This shows your genuine interest in the role and helps you determine if it's the right fit for you.