Senior Product Security Engineer

ConnectWise is an industry and Global leading software company with over 3000 colleagues in North America EMEA and APAC. As a community-driven software company dedicated to the success of technology solution providers our suite helps over 45000 of our partners manage their businesses better sell more efficiently automate service delivery and remotely control technology so they can consistently deliver amazing customer experiences.

Our company is powered by our connections our colleagues and our community. And we accept all kinds.

Game-changers innovators culture-loversand humankind.

We invite discovery and debate. We recognize key moments as milestones.

We see you and value you for your unique contributions. Our inclusive positive culture lays the foundation to ensure every colleague is valued for their perspectives and skills giving you the choice of how YOU make a difference.

Curious Read this opportunity to learn how YOU can make a difference at ConnectWise!

We at ConnectWise a (US product IT company) hiring for Senior Product Security Engineer for our team who would be responsible for designing and implementing security best practices at each stage of the system development lifecycle from design through production.

This role works in partnership with cross-functional teams to act as a security subject matter expert while supporting and advancing the security of ConnectWise applications.

Experience: 5 Years to 10 Years

Relevant Experience: 3 Years

Work locations: Pune Mumbai Bangalore Hybrid and also complete Remote option available.

Work Type: Hybrid and Remote

Mandatory Skills:-Programming skills in Dot Net Java Go (Any Skill is fine) with Penetration & Security testing is a must.

Essential Duties and Responsibilities

Provides support to cross-functional teams with a high attention to detail

Researches analyzes and documents findings

May coach review and/or delegate work to other team members

Conducts security assessments threat modeling and vulnerability reporting and develops security architecture patterns for implementing new solutions and products

Performs application security reviews for our products and services to identify and/or validate vulnerabilities and attack chains.

Communicates findings attack paths and recommendations to technical and executive stakeholders through written reports and verbal presentations

Develops and maintains methodologies for penetration testing

Assists with decision-making prioritization and support throughout the secure software development life cycle (s-SDLC) on a variety of security domains

Participates in requirements gathering secure coding and configuration software testing and third-party component management and defect management

Serves as point of contact on secure development and security best practices

Consults cross-functionally to embed security gates into their existing SDLC leveraging automation when possible

Drives the development of standards practices and processes to establish manage and report adherence to application security requirements and best practices

Attends regular stand-ups and planning meetings to build positive relationships with key stakeholders

Serves as the security authority on assigned products ensuring the security controls are functioning security requirements are provided before coding begins and that vulnerabilities are fixed within their SLAs

Ensures s-SDLC controls are embedded in assigned product and serves as control owner for a subset of these controls

Engages in application and domain-specific threat modeling as well as attack surface analysis and reduction.

Educational/Vocational/Previous Experience Recommendations:

• Ability to manage projects and processes independently with limited supervision

Recognized subject matter expert of applicable work area

Ability to situationally adapt and understand new technology/processes as per business requirement

Ability to identify application vulnerabilities and advise on appropriate remediation

Solid understanding of common languages such as .NET Python JavaScript Go etc.

Strong foundation in core information security principles and concepts (encryption authentication etc.)

Effective communication skills with the ability to explain sophisticated security topics in simple terms to technical and non-technical stakeholder

ConnectWise is an Equal Opportunity Employer dedicated to building a diverse and inclusive workforce and providing a workplace free from discrimination and harassment. ConnectWise provides equal employment opportunities to all employees and applicants without regard to race ethnicity color religion age sex (including pregnancy) sexual orientation gender gender identity or expression ancestry national origin citizenship status physical or mental disability genetic information military/veteran status marital status familial or parental status or any other characteristic or status protected by applicable federal state and local laws.

The statements above are intended to describe the general nature and level of work being performed by individuals assigned to this duties may be assigned as needed. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions of the job and/or to receive other benefits and privileges of employment. If you need a reasonable accommodation for any part of the application and hiring process please contact us at or 1-.