ARCHIVED
This job listing has been archived and is no longer accepting applications.
MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Sr. Product Security Engineer

Illumio

Sunnyvale, California, United States permanent

Posted: March 6, 2026

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Quick Summary

As a Sr. Product Security Engineer at Illumio, you will be responsible for designing and implementing secure software solutions for various industries, ensuring the confidentiality, integrity, and availability of sensitive data. You will work closely with cross-functional teams to identify and mitigate security risks, and develop effective mitigation strategies to prevent cyberattacks. You should have strong technical skills in security engineering and experience with security frameworks and compliance regulations.

Required Skills

Security Architecture Threat Modeling Security Consulting Secure Code Reviews DAST Product Security Policies Multi-Year Security Programs Hands-On Security Testing API Security Testing Container Security Scanning

Job Description

Onwards Together!

Illumio is the leader in ransomware and breach containment, redefining how organizations contain cyberattacks and enable operational resilience. Powered by the Illumio AI Security Graph, our breach containment platform identifies and contains threats across hybrid multi-cloud environments – stopping the spread of attacks before they become disasters.

Recognized as a Leader in the Forrester Wave™ for Microsegmentation, Illumio enables Zero Trust, strengthening cyber resilience for the infrastructure, systems, and organizations that keep the world running.

Location: 4 on-site days a week in Sunnyvale, CA Headquarters.

Our Team's Vision:

Our Engineering team is shaping the future of cybersecurity. We thrive on visionary leadership, autonomy, and ownership, fostering a culture of innovation that propels us forward in the ever-evolving cybersecurity landscape.

As a Senior Product Security Engineer, you will play a critical role in strengthening the security posture of our products across their entire lifecycle. You will partner closely with Engineering, Product Management, and cross‑functional stakeholders to design secure architectures, evaluate complex systems, perform hands-on security testing, and build automation that scales security across the organization.

This role requires a strong technical foundation, excellent written and verbal communication skills, and the ability to influence engineering teams to adopt secure-by-design principles. You will work independently with minimal oversight, exercising sound judgment to solve problems of diverse scope. You will also drive long-term security maturity by leading multi-year security initiatives that measurably improve our security posture.

Your Impact:

Security Architecture & Design

• Lead security architecture and design reviews for prototypes, components, and new product features in distributed cloud environments.

• Develop and maintain threat models to proactively identify threats, misuses, and residual risks.

• Provide security consulting for emerging technologies, such as AI/ML, defining security requirements and design guardrails.

• Author and maintain product security policies, standards, and architectural guidance.

Security Program Leadership

• Lead multi-year product security programs, driving roadmap planning, execution, cross-functional alignment, and measurable security improvements.

• Develop scalable security strategies that align with engineering velocity, product roadmaps, and business priorities.

• Influence teams across organizations to adopt secure design and secure development practices.

Hands-On Security Testing

• Perform manual and automated security testing to validate real-world exploitability of vulnerabilities.

• Conduct manual secure code reviews with a focus on security and privacy risks.

• Execute DAST, API security testing, and container security scanning.

• Validate reported vulnerabilities and support customer security responses.

Vulnerability Management

• Drive end-to-end vulnerability management, from identification to remediation across code, containers, infrastructure, and cloud.

• Utilize full-stack scanning tools (SAST, SCA, secrets scanning, container scanning) to uncover vulnerabilities early.

• Partner with engineering teams to prioritize and remediate vulnerabilities based on risk and product impact.

• Support product security incident responses, including triage, root-cause analysis, and remediation guidance.

• Enable Trust office to create and share customer vulnerability response.

Security Automation & Tooling

• Build, enhance, and maintain security automation for scalable vulnerability detection, triage, and reporting.

• Promote the adoption of golden secure images, secure-by-default tooling, and supply chain security improvements.

• Improve open-source resiliency through integrity checks, dependency monitoring, and automated safeguards.

• Enable developer self-service through internal security tooling and guidance frameworks.

Security Enablement & Knowledge Development

• Deliver technical security training for engineering teams, including secure coding, secure design, and modern threat awareness.

• Build and maintain a comprehensive security knowledge base, including best practices, threat models, secure design patterns, and remediation guides.

• Produce security evidence and documentation to support compliance, audits, certifications, and customer requirements.

• Prepare and present product security metrics to leadership and key stakeholders.

Your Toolkit:

• 1–2 years of product security or application security experience required.

• ~2 years of software development experience preferred.

• Proficiency in programming languages such as Python, Java, Go, or C++.

• Hands-on experience with SAST, DAST, SCA, container security, and cloud-native security tools.

• Familiarity with security automation, CI/CD pipelines, and script-based tooling.

• Strong understanding of full-stack vulnerabilities, MITRE attack framework, OWASP Top 10 for existing and emerging technologies, secure coding, and microservice architectures.

• Experience with supply chain security and open-source dependency management is a plus.

Our Commitment:

Illumio believes that an environment of unique backgrounds, experiences, viewpoints, and individual contributions drives our success and makes us stronger together. We are dedicated to creating and maintaining a diverse culture and emphasizing inclusion and belonging.

This position involves access to software/technology that is subject to U.S. export controls. Any job offer made will be contingent upon the applicant’s capacity to serve in compliance with U.S. export controls.

#LI-TD1 #LI-ONSITE

All official job offers from our company are extended directly by our recruitment team and will be sent through an official E-Signature document for your review and signature. Please be aware that we do not ask for any personal information in the process of extending offers of employment, such as financial details or social security numbers. Upon acceptance of any offer, we will request such information as part of the onboarding process prior to or on your first day of employment, and only after completing a background check through an authorized third-party vendor. If you receive any communication asking for personal details outside of these processes, please contact us immediately to verify the authenticity of the request. Your security is important to us, and we are committed to a safe and transparent hiring experience.

For roles in San Francisco and Los Angeles: Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Illumio will consider for employment qualified applicants with arrest and conviction records.

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply