Senior Product Security Engineer

Mirantis is seeking a Senior Product Security Engineer to help secure our portfolio of products and services including enterprise software and critical infrastructure. This role is part of our growing Product Security program and will play a key role in implementing security controls driving remediation efforts supporting compliance initiatives and partnering with engineering teams to ensure a secure software development lifecycle.

As a Senior Product Security Engineer you will work closely with engineering security operations and compliance teams to reduce risk across Mirantis products. You will have the opportunity to shape security strategy automate controls and ensure security is embedded into every stage of product development and operations.

Key Responsibilities

• Secure Products & Infrastructure:
  - Design implement and maintain security controls across applications infrastructure and CI/CD pipelines to align with internal security standards and regulatory frameworks (e.g. SOC 2 ISO 27001).
  - Drive adoption of modern security tooling and practices including SAST DAST container image scanning Infrastructure as Code (IaC) security and dependency analysis.

• Offensive Security & Vulnerability Management:
  - Lead vulnerability assessments application security reviews and penetration tests.
  - Triage and prioritize findings collaborating with product and engineering teams to drive timely and measurable remediation.
  - Proactively identify and exploit vulnerabilities to strengthen product security posture.

• Incident Response Support:
  - Partner with Security Operations and Engineering to investigate application and infrastructure vulnerabilities. Contribute to root cause analysis remediation plans and long-term risk reduction.

• Compliance & Assurance:
  - Support security reviews audits and compliance initiatives through documentation evidence collection and coordination with external auditors or vendors.

• Cross-Product Security Coverage:
  - Build and maintain security expertise across multiple Mirantis products to strengthen team resilience provide flexible coverage and help shape a scalable sustainable Product Security program.

• Security Advocacy & Enablement:
  - Champion secure design and development practices provide actionable guidance during security reviews and drive security automation efforts across the SDLC.

Qualifications :

• 5 years of experience in product security application security or a related security engineering role.

• Strong understanding of common vulnerabilities (e.g. OWASP Top 10 SANS Top 25) and secure development best practices.

• Demonstrated experience performing offensive security activities such as manual penetration testing threat modeling and exploitation of vulnerabilities.

• Hands-on experience with security testing and automation including:
   

  • SAST/DAST tooling and pipelines
     

  • Container image scanning (e.g. Trivy Grype Anchore)
     

  • IaC security (e.g. Terraform Helm Kics Checkov)
     

  • Dependency and supply chain security tooling
     

• Familiarity with vulnerability scanning and management tools application security testing and manual review techniques.
   

• Experience with containerized environments Kubernetes and cloud platforms.
   

• Proven ability to integrate security controls into CI/CD pipelines and automate security testing as part of the SDLC.
   

• Excellent collaboration and communication skills with the ability to work closely with product and engineering teams.
   

• Experience with SOC 2 ISO 27001 or similar compliance frameworks is a plus.
   

• Relevant certifications such as OSCP OSEP OSWE or SANS/GIAC certifications (e.g. GPEN GWEB GWAPT GCSA) or other equivalent offensive security and application security credentials are strongly preferred.
   

• Proficiency in scripting or programming languages (e.g. Go Python or similar) is an advantage.

Additional Information :

Why Join Team Lens at Mirantis

• Work with world-class engineers product and design teams in a fast-paced impact-driven environment.

• Flexible remote work within the EU or the option to work from our Helsinki hub.

• Join a company that values user experience community engagement and an open-source ethos at its core.

• Receive a competitive compensation package with strong benefits plan.

If youre passionate about building best in class developer toolswe want to hear from you! Apply today!

What does Mirantis offer you

• Work with an established Silicon Valley leader in the cloud infrastructure industry.

• Work with exceptionally passionate talented and engaging colleagues helping Fortune 500 and Global 2000 customers implement next-generation cloud technologies.

• Be a part of cutting-edge open-source innovation.

• Thrive in the high-energy environment of a young company where openness collaboration risk-taking and continuous growth are valued.

• Professional development and training.

• Attend conferences and working groups.

• Customized workstation (macOS Windows).

• Professional development and training.

• A competitive compensation package with strong benefits plan and stock options.

It is understood that Mirantis Inc. may use automated decision-making technology (ADMT) for specific employment-related decisions. Opting out of ADMT use is requested for decisions about evaluation and review connected with the specific employment decision for the position applied for. You also have the right to appeal any decisions made by ADMT by sending your request to 

By submitting your resume you consent to the processing and storage of your personal data in accordance with applicable data protection laws for the purposes of considering your application for current and future job opportunities.

We are a Leader for Container Management in G2 (#2 after AWS)!

Remote Work :

Yes

Employment Type :

Full-time