Product Security Engineer - FedRamp - US Citizenship Required - (InfoSec) - HQ Santa Clara

Job Description

To comply with U.S. federal government requirements, U.S. citizenship is required for this position

Our Mission

At Palo Alto Networks, everything starts and ends with our mission: to be the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on challenging and disrupting the way things are done, and we’re looking for innovators committed to shaping the future of cybersecurity.

We take our mission seriously. We are relentless in protecting our customers and believe that the unique ideas of every team member contribute to our collective success. Our values, crowdsourced by employees, are demonstrated daily through disruptive innovation, collaboration, integrity, and inclusivity.

As part of our team, you will help shape the future of cybersecurity. We work fast, value ongoing learning, and respect each employee as a unique individual. Our development and wellbeing programs, including FLEXBenefits, mental and financial health resources, and personalized learning, support diverse needs.

At Palo Alto Networks, we value collaboration and in-person interactions, primarily working full-time from our offices with flexibility where needed to foster casual conversations, problem-solving, and trusted relationships.

Your Career

As the Product Security Engineer on the Infosec Product Security team, you will be responsible for integrating security into all Palo Alto Networks products end-to-end. You will lead security initiatives, work closely with Product Management, Development, and DevOps/SRE teams to embed security throughout the product lifecycle.

• Build next-gen Application Security technologies with automation into complex CI/CD pipelines.
• Protect application security throughout the lifecycle in cloud (GCP & AWS) and on-premises environments.
• Develop risk-driven automation for SAST, SCA, OSS, DAST, IaC, RASP integrations with advanced tooling.
• Promote and lead adoption of SDLC and security best practices across the application lifecycle.
• Contribute to security assessments and mitigation strategies for AI/ML models and applications, staying informed of emerging threats.
• Define and implement security tooling to improve coverage and response times.
• Design and implement secure software development processes, including coding, testing, and vulnerability management.
• Enhance security reporting, vulnerability management, penetration testing, and compliance efforts.

Your Experience

• At least 1+ years of hands-on cybersecurity experience, with 2+ years in application security, pen testing, security benchmarks, and automation.
• Experience with security tooling and best practices such as pre-commit hooks, dependency scanning, SAST, IAST, OSS, DAST, RASP, vulnerability management.
• Knowledge of security tools benchmarking and tuning.
• Basic understanding of AI/ML security concepts, including adversarial attacks and data privacy, with familiarity with testing frameworks.
• Ability to perform code reviews, static analysis, and security testing.
• Familiarity with industry standards like OWASP, NIST, ISO.
• Experience with AWS and GCP services, IAM, microservice architecture, and securing APIs across multi-cloud environments.
• Strong communication skills for engaging with leadership and technical teams.
• Educational background with a bachelor’s degree in cybersecurity, computer systems, IT, or equivalent military experience.

The Team

Our security team is diverse, innovative, and committed to challenging the status quo to protect Palo Alto Networks and our customers. We value the impact of our work and the opportunity to be at the forefront of cybersecurity innovation.

Join us to be part of a dynamic, fast-paced environment where every challenge is an opportunity to excel and make a difference.

The salary range for this position is $123,000 - $200,000 per year, depending on qualifications and location. Compensation may include stock options and bonuses. Further details are available in our benefits documentation.

We are committed to diversity and inclusion, providing accommodations for qualified individuals with disabilities. Contact us at accommodations@paloaltonetworks.com for assistance.

Palo Alto Networks is an equal opportunity employer, and all qualified applicants will receive consideration regardless of protected characteristics. All personal information will be kept confidential per EEO guidelines.