Medallia is the pioneer and market leader in Experience Management. Our award-winning SaaS platform, Medallia Experience Cloud, leads the market in the understanding and management of experience for candidates, customers, employees, patients, citizens and residents.
We are more than a software company. We want to be known as a company that does the right thing, no matter the challenge or controversy. We are committed to creating a culture that values every person and every experience. Individual life experiences shape the way we interact with the world, which is why we encourage people to bring their whole selves to work each day. The strength of our global workforce is the most significant contributor to our success.
We believe: Every Experience Matters. Talent is Everywhere. All Belong Here
At Medallia, we hire the whole person.
We at Medallia feel very strongly about protecting our clients’ information, and are looking for like-minded engineers to solve complex security challenges while enabling the rapid growth of the business globally. This Product Security role is a key role to building security into the development lifecycle of our product portfolio, and offers tremendous growth opportunities at a security conscious company on a high growth trajectory.
Some of the biggest names in Global 2000 organizations rely on Medallia to drive business innovation and customer experience. As Medallia becomes a trusted partner to organizations across the globe and spanning several industry verticals, it is more important than ever that we continue to stay a step ahead in securing our applications, services and data. The Product Security Engineer role will work closely with our global engineering teams and ensure that we build secure and robust software in the world of DevOps and Agile. We are looking for a candidate who is passionate about security, has a strong technical background and loves creating innovative solutions to challenging problems.
Perform application security assessments including architecture review, threat modeling, code review and penetration testing
Automate security testing at scale by building and implementing various tools, following DevSecOps principles and integrating security into the software development lifecycle
Employ knowledge and deep understanding of threat landscape, SaaS industry, and customer feedback to drive the pipeline of impactful security features
Assist and enable engineering teams to adopt secure development practices
Provide software security advice to cross-functional teams including product, engineering, and services
Work closely with engineering and product teams to drive security issues to resolution
Develop software security guidance including training material, best practices, secure coding checklists, reusable code, etc.
, Angular framework and React libraries are used)
Experience performing architecture reviews, threat modeling, code reviews, and/or penetration testing
Hands-on experience with tools and technologies used throughout secure SDLC (e.g., SAST, SCA, DAST, RASP, etc.)
Independent problem solving capabilities and excellent communication skills
Drive to take ownership of projects and drive resolution without close supervision
Proficiency with Python, Ruby, or other scripting languages a plus
Knowledge of micro-services architecture and containers is a plus
At Medallia, we celebrate diversity and recognize the value it brings to our customers and employees. Medallia is proud to be an equal opportunity workplace. Equal opportunity is afforded to all qualified applicants and employees. We do not discriminate on the basis of gender identity or expression, race, ethnicity, religion, national origin, age, sex, marital status, physical or mental disability, Veteran status, sexual orientation, and any other protected category.
Medallia is committed to working with and providing reasonable accommodation for applicants with any disability.