Full-Time Product Security Engineer

About the team & opportunity What’s so great about working on Calendly’s Security team? Calendly is growing rapidly and is scaling its security team to ensure the security of its users. You will have the chance to work with a small team of exceptional security engineers to build Calendly’s security practice from the ground up. Why do we need you? We are looking for a Security Engineer who will bring significant application and infrastructure security skills, automation experience, and a strategic mindset to security. You will report to the head of Product Security, and will be responsible for ensuring the security of Calendly’s products and infrastructure, shipping security automation, and driving security improvements in Calendly’s roadmap.

A day in the life of a Product Security Engineer at Calendly On a typical day, you will be working on: Protecting and securing next generation artificial intelligence features for Calendly’s millions of users. Introducing systemic security and privacy controls in Calendly’s software and environment. Defining and communicating security requirements and threat modeling new features, as well as standardizing security measures for common engineering patterns. Actively engaging with engineering, product, and infrastructure stakeholders regarding security strategy and tactics. Contributing to the Product Security team’s automated tooling and vulnerability management program. Supporting our bug bounty program and conducting security reviews.

What do we need from you? Experience in application security, software development, and/or security experience at a SaaS or technology company. Experience guiding product, engineering, or infrastructure stakeholders in delivering secure features. Experience articulating security principles and practices to technical and non-technical audiences. Experience with a variety of security tools (SAST, DAST, ASPM, SCA, etc) and OWASP top ten web application vulnerabilities. Experience in at least one modern programming languages (Ruby, Python, Go, C#, etc.). Understanding of the Linux operating system, and systems engineering fundamentals. Authorized to work lawfully in the United States of America as Calendly does not engage in immigration sponsorship at this time.

What’s in it for you? Ready to make a serious impact? Millions of people already rely on Calendly’s products, and we’re still in the midst of our growth curve — it’s a fantastic time to join us. Everything you’ll work on here will accelerate your career to the next level. If you want to learn, grow, and do the best work of your life alongside the best people you’ve ever worked with, then we hope you’ll consider allowing Calendly to be a part of your professional journey.

Base salary The ranges listed below are the expected annual base salary for this role, subject to change. Calendly takes a number of factors into consideration when determining an employee’s starting salary, including relevant experience, relevant skills sets, interview performance, location/metropolitan area, and internal pay equity. Base salary is just one component of Calendly’s total rewards package. All full-time (30 hours/week) employees are also eligible for our Quarterly Corporate Bonus program (or Sales incentive), equity awards, and competitive benefits. Calendly uses the zip code of an employee’s remote work location, or the onsite building location if hybrid, to determine which metropolitan pay range we use. Tier 1 Salary$153,000—$207,000 USD Tier 2 Salary$140,300—$189,800 USD Tier 3 Salary$127,500—$172,500 USD

What is the last date for applying to the job?

Which countries are accepted for this remote job?