CrawlJobs Logo

Software Engineer, Product Security

Notion

Location Icon

Location:
United States , San Francisco

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

240000.00 - 290000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Millions of people use Notion — and this number is increasing every day. Our users depend on us to deliver a secure and trustworthy experience, and we value this more than anything. In this role, we are looking for a founding member of an elite security engineering team that is responsible for all aspects of ensuring the security of our platform and users. You will be one of Notion’s foremost security expert, understanding the full attack surface of our product and working with a broad range of teams to secure it.

Job Responsibility:

  • Help scale the engineering organization and mentor engineers on best practices in secure software design and architecture
  • enable the growth of Notion’s business by building a secure foundation that earns the trust of Notion’s users
  • design, implement, and (where possible) automate a software development life cycle that balances good vulnerability and risk detection coverage with developer velocity
  • act as a liaison for multiple stakeholders across product, engineering, go to market, and security ops / compliance, to guide and prioritize the right security investments
  • participate in security assessments and advise on on both internal and customer security and privacy needs (e.g. SOC2, ISO 27001, GDPR, penetration testing, enterprise asks)

Requirements:

  • Security architecture and expertise: experience building systems to secure and monitor cloud architectures
  • experience in threat modeling
  • experience securing a cloud-based infrastructure (e.g. AWS)
  • experience designing a secure development life cycle (design reviews, CI / CD integrations, bug bounty program)
  • experience in application security consulting
  • experience in secure library and framework development
  • experience in vulnerability discovery and response
  • experience implementing core security features like authentication to detecting and mitigating malicious activity
  • experience in offensive thinking (e.g. pentesting, red teaming)
  • experience debugging systems in production
  • pragmatic and business-oriented
  • not ideological about technology
  • empathetic communication
  • team player
  • curious and willing to adopt AI tools

Nice to have:

  • Experience responsible for maintaining continuous controls and participating in audits in relation to customer facing certifications (like SOC2)
  • experience leading engineering teams with a security focus
  • experience managing, maintaining, and monitoring systems using technologies like Amazon Web Services, Datadog, Postgres, Redis, Memcached, and Elasticsearch

Additional Information:

Job Posted:
February 21, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Notion - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Software Engineer, Product Security

Principal Software Engineer – Cloud Security

Principal Software Engineer – Cloud Security role at Hewlett Packard Enterprise,...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or master’s degree in computer science, engineering, information systems, or closely related quantitative discipline
  • Typically, 10-15 years’ experience
  • Deep expertise in software systems design, development methodologies, and integration across diverse platforms and technologies
  • Strong business acumen, focusing on aligning technological initiatives with business goals and driving sustainable growth and profitability
  • Exceptional analytical and problem-solving skills, with the ability to navigate complex technical challenges and drive impactful solutions
  • Track record of driving technological innovation, with a portfolio of patents and successful product deployments
  • Exceptional communication and stakeholder management skills, with the ability to effectively convey complex technical concepts to non-technical audiences and influence decision-making at the executive level
Job Responsibility
Job Responsibility
  • Leads the identification, evaluation, and adoption of cutting-edge technologies, innovations, and strategic partnerships to drive growth and competitiveness
  • Drives developing and implementing robust methodologies, standards, and best practices for software systems design, development, and integration
  • Leverages recognized domain expertise and experience to influence decisions
  • Collaborates with executive leadership to align technology initiatives with business objectives, ensuring technology investments deliver measurable value and impact
  • Champion a culture of continuous innovation, thought leadership, and excellence in software systems design and help build technical community
  • Provides strategic guidance and mentorship to senior technical teams, fostering a culture of collaboration, creativity, and high-performance outcomes
  • Analyzes science, engineering, business, and other data processing problems to develop and implement solutions to complex application problems, system administration issues, or network concerns
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Product Security Engineer

This role involves working primarily from home as a Product Security Engineer fo...
Location
Location
United States
Salary
Salary:
101900.00 - 234500.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in Electrical Engineering, Computer Science, or related technical field
  • Background in software engineering including C/C++, Python and/or Golang
  • Ability to read and understand source code in C is a must
  • Minimum 2 years of experience working with cryptographic modules in a technical capacity
  • Minimum 3 years of experience in software development of cryptographic modules
  • Minimum 3 years of experience with certification schemes, including Common Criteria, FIPS, DoDIN
  • Minimum 4 years of experience in a position handling government certifications or security testing.
Job Responsibility
Job Responsibility
  • Assist in the execution of Common Criteria, FIPS, and DoDIN-APL certifications across all HPE Aruba Networking product lines
  • Operate as a representative of HPE Aruba Networking with various accredited labs during the evaluation process
  • Assist in the generation of documentation (e.g. FIPS security policies, CC security targets), whether creating/editing directly or working with an external author
  • Provide consulting, information, and advice to developers and QA around how certification works
  • Attend regularly scheduled meetings with accredited labs and engineering/QA to ensure project milestones are on track
  • Communicate gaps and deficiencies found by accredited testing labs to the relevant engineering and product teams to ensure remediation
  • Monitor government standards and communicate to management and engineering when changes are made that may impact a release
  • Assist in the development, compliance, and maintenance of FIPS compliant cryptographic module(s).
What we offer
What we offer
  • Health & Wellbeing
  • Comprehensive suite of benefits supporting physical, financial, and emotional wellbeing
  • Personal & Professional Development
  • Programs catered to career growth
  • Unconditional inclusion and flexibility to manage work and personal needs.
  • Fulltime
Read More
Arrow Right

Product Security Engineer

The Senior Security Engineer/Threat Researcher position will be part of Aruba Th...
Location
Location
United States , Remote
Salary
Salary:
101900.00 - 234500.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • B.S. or M.S. in software engineering, computer science, cybersecurity, or a related field (or equivalent experience)
  • 7+ years of professional experience in software engineering, vulnerability research, penetration testing, or a related security discipline
  • Programming experience in C and at least one additional language used for secure software development, such as Rust, Go, or Python
  • Hands-on experience with security testing tools and techniques, such as fuzzing, reverse engineering, and exploit development frameworks (e.g., Metasploit, Immunity Debugger, Ghidra, or IDA Pro)
  • Understanding of memory-unsafe vulnerabilities, including buffer overflows, use-after-free, integer overflows, and format string vulnerabilities, as well as mitigation techniques such as ASLR, DEP, and stack canaries
  • Strong knowledge of web application security, including OWASP Top 10 vulnerabilities such as XSS, SQL injection, XXE, CSRF, and insecure deserialization
  • Familiarity with secure coding practices, threat modeling, and static and dynamic application security testing (SAST/DAST) tools
  • Knowledge of modern cryptographic algorithms and security protocols (e.g., TLS, IPsec, OAuth) and their implementation pitfalls
  • Demonstrated ability to analyze, exploit, and remediate security vulnerabilities in complex codebases
  • Strong written and verbal communication skills, with the ability to create detailed technical reports and convey complex concepts to both technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Conduct advanced security assessments of HPE Aruba networking products, including manual code reviews and penetration testing, to uncover vulnerabilities such as memory-unsafe errors, insecure deserialization, and authentication/authorization flaws
  • Develop proofs of concept (PoCs) to demonstrate the exploitability of identified vulnerabilities and provide actionable remediation guidance to engineering teams when requested
  • Develop and maintain custom tools to assist in vulnerability discovery, exploit development, and tracking and disclosure of vulnerabilities to the public
  • Assist in managing Aruba’s bug bounty program, collaborating with external researchers and product engineering teams to triage, reproduce, and remediate reported vulnerabilities
  • Assist in writing vulnerability disclosure bulletins and managing the process of releasing those bulletins to the public
  • Serve as a subject-matter expert on secure coding practices, particularly in memory-safe and memory-unsafe programming languages, and evangelize these practices across product engineering teams
  • Conduct original security research on non-Aruba products and technologies, including discovering new vulnerabilities, publishing papers, and presenting at leading security conferences
  • Positively represent Aruba in the global security community by fostering collaboration with security researchers while balancing the goals of researchers with the needs of our customers.
What we offer
What we offer
  • Comprehensive suite of benefits that supports physical, financial, and emotional wellbeing
  • Specific programs catered to helping employees reach career goals
  • Inclusive working environment.
  • Fulltime
Read More
Arrow Right

Product Security Test Engineer

As part of our HPE Operations Cybersecurity Lab, the Security Systems/Software E...
Location
Location
Puerto Rico , Aguadilla
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent
  • Typically 4-6 years experience
  • Expertise in multiple software systems design tools and languages
  • Experience of relational database management systems and their query languages (e.g. SQL)
  • Strong Experience writing software using any modern language and technology stack, i.e Python, Javascript, and frameworks for building APIs and user interfaces
  • Knowledge of tools like Metasploit, Nmap, Burp Suite, Wireshark, vulnerability scanning tools, network mapping, and packet analysis
  • Experience in overall architecture of software systems for products, solutions and IT systems
  • Expertize working in a DevSecOps environment
  • Knowledge of OWASP Top 10 vulnerabilities, web-based attacks (SQL injection, XSS, CSRF), and web protocols
  • Experience with encryption methods and their applications
Job Responsibility
Job Responsibility
  • Designs security enhancements, updates, and programming changes for portions and subsystems of systems software, including operating systems, compliers, networking, utilities, databases, and Internet-related tools
  • Analyzes design and determines coding, programming, and integration activities required based on security requirements and general objectives and knowledge of overall architecture of product or solution
  • Design, develop, test, and maintain robust, scalable, and high-quality security and software solutions
  • Supports application and systems security strategy, architecture and roadmaps, review application architectures, code and system services from a security perspective
  • Writes and executes complete security testing plans, protocols, and documentation for assigned portion of application
  • identifies and debugs, and creates solutions for issues with code and integration into application architecture
  • Leads a project team of other software systems engineers and internal and outsourced development partners to develop reliable, cost effective and high quality solutions for assigned systems portion or subsystem
  • Collaborates and communicates with management, internal, and outsourced development partners regarding software systems design status, project progress, and issue resolution
  • Represents the software systems engineering team for all phases of larger and more-complex development projects
  • Provides guidance and mentoring to less-
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Product Security Engineer

HPE Aruba Networking is looking for a person excited to work at the intersection...
Location
Location
United States , San Juan
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in Information Security, Computer Science, or related technical field
  • A background in software security, either academic or work experience, including reverse engineering, vulnerability classes such as buffer overflows and their prevention, web application security, and/or cloud security
  • Programming knowledge of at least one programming language with the ability to look at source code and figure out what it’s doing
  • Familiarity with the purpose of tools such as IDEs, compilers, source code revision control systems, ASPM, SCA and code scanners
  • Minimum 3 years of experience working directly in software engineering or in an adjacent field with exposure to the software engineering environment
  • Experience conducting risk assessments, threat modeling, and/or compliance assessments
  • Experience supporting the integration of security practices through the software development lifecycle
Job Responsibility
Job Responsibility
  • Assist in the execution of product compliance assessments against various frameworks (e.g. NIST SSDF, NIST SP 800-218, SP 800-53, CIS Benchmarks)
  • Assist in the development and/or maintenance of GRC and SDLC tooling implementations, including scripting and automation
  • Operate as a representative of HPE Aruba in working groups, with government representatives, and with auditors
  • Provide consulting, information, and advice to product teams around implementing and improving the maturity of our SDLC
  • Document known issues and provide information to product teams in a manner which allows for easy interpretation and corrective actions to be performed
  • Monitor worldwide government standards and communicate to management and product teams when changes are made that may impact an existing control or introduce new requirements
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

Designs, develops, troubleshoots and debugs security programs for software enhan...
Location
Location
United States
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent
  • Typically 6-10 years experience in a security role
  • Extensive experience with product security for multiple software systems design tools and languages
  • Excellent analytical and problem solving skills
  • Experience in overall architecture of software systems for products and solutions
  • Designing and integrating software systems running on multiple platform types into overall security architecture
  • Evaluating forms and processes for software systems security testing and methodology, including writing and execution of test plans, debugging, and testing scripts and scanning tools
  • Excellent written and verbal communication skills
  • mastery in English and local language
Job Responsibility
Job Responsibility
  • Leads multiple projects & teams of other software systems engineers and internal and outsourced development partners to integrate security into all stages of design and development for complex products and platforms, including solution design, analysis, coding, testing, and integration
  • Manages and expands relationships with internal and outsourced development partners on software systems secure design and development
  • Reviews and evaluates designs and project activities for compliance with systems design and security guidelines and standards
  • provides tangible feedback to improve product quality and mitigate failure risk
  • Provides security expertise, leadership and perspective to cross-organization projects, programs, and activities
  • Drives innovation and integration of new technologies into projects and activities in the software systems design organization
  • Provides guidance and mentoring to less- experienced staff members
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Product Security Engineer - Secure SDLC Analyst

HPE Aruba Networking is looking for a person excited to work at the intersection...
Location
Location
United States , San Juan
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in Information Security, Computer Science, or related technical field
  • A background in software security, either academic or work experience, including reverse engineering, vulnerability classes such as buffer overflows and their prevention, web application security, and/or cloud security
  • Programming knowledge of at least one programming language with the ability to look at source code and figure out what it’s doing
  • Familiarity with the purpose of tools such as IDEs, compilers, source code revision control systems, ASPM, SCA and code scanners
  • Minimum 3 years of experience working directly in software engineering or in an adjacent field with exposure to the software engineering environment
  • Experience conducting risk assessments, threat modeling, and/or compliance assessments
  • Experience supporting the integration of security practices through the software development lifecycle
Job Responsibility
Job Responsibility
  • Assist in the execution of product compliance assessments against various frameworks (e.g. NIST SSDF, NIST SP 800-218, SP 800-53, CIS Benchmarks)
  • Assist in the development and/or maintenance of GRC and SDLC tooling implementations, including scripting and automation
  • Operate as a representative of HPE Aruba in working groups, with government representatives, and with auditors
  • Provide consulting, information, and advice to product teams around implementing and improving the maturity of our SDLC
  • Document known issues and provide information to product teams in a manner which allows for easy interpretation and corrective actions to be performed
  • Monitor worldwide government standards and communicate to management and product teams when changes are made that may impact an existing control or introduce new requirements
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Software Product Engineering Manager

Applies advanced subject matter knowledge to manage staff activities in solving ...
Location
Location
United States , Aguadilla
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or master's degree in computer science, Information Systems, or equivalent
  • Typically, 5 or more years of related work experience, including minimum 2 years of people management experience
  • Experience leading or managing technical teams, including software development and security
  • Strong Understanding of multiple software systems design tools and languages, including testing methodology and test plans
  • Experience and technical background related to IT Security and engineering environments, including servers, networks, storage, and cloud systems
  • Understanding of Secure application and Secure software Development Lifecycle (SDLC)
  • Understanding of Agile methodologies
  • Advanced English Level
  • Experience working in a hardware and software environment
  • Python experience is desired
Job Responsibility
Job Responsibility
  • Provides direct and ongoing leadership for a team of individual contributors designing and developing security tests, enhancements and updates
  • Manages headcount, deliverables, schedules, and costs for multiple ongoing projects
  • Communicates project status and escalates issues to direct managers, program managers, and internal and external development partners
  • Manages relationships with outsourced partners and suppliers, global security teams and R&D team
  • Proactively identifies opportunities for process improvement and cost reductions opportunities
  • Provides people-care management for assigned team members, including hiring, setting and monitoring of annual performance plans, coaching, and career development
  • Manage laboratory resources, systems and infrastructure to support lab activities
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy