Product Security Lead

Island is hiring!

We’re a team of hungry, high character professionals from all backgrounds who came together to reinvent work for the modern enterprise.

And we’re always looking for world-class human beings (not resumes) to join the movement.

In this role, you will have the opportunity to work with a small, but highly skilled and talented team. You will have the freedom to self-promote and take on additional responsibilities as you see fit. This is a great opportunity for someone who is looking to make a big impact in a dynamic and fast-paced environment.

As a Product Security Lead at Island, your primary responsibility will be to ensure the security and integrity of our product developments and enhancements. You will play a critical role in identifying vulnerabilities, mitigating risks, and guiding the design of robust security measures to safeguard our Enterprise Browser.

Responsibilities:

1. Security Assessment: Conduct thorough security assessments and penetration testing on Island's Enterprise Browser and related applications to identify vulnerabilities, weaknesses, and potential threats.
2. Research and Analysis: Stay up-to-date with the latest security trends, threats, and technologies to proactively identify emerging risks and develop appropriate countermeasures.
3. Secure-Design Collaboration: Collaborate with development teams to integrate security best practices into the design and architecture of new product features and enhancements.
4. Vulnerability Remediation: Work closely with developers to provide guidance and support in addressing identified vulnerabilities and security issues.
5. Compliance and Standards: Ensure that Island's products adhere to industry security standards and compliance requirements.

Requirements:

• 3+ years of experience in application security research, penetration testing, and vulnerability assessment.
• Demonstrated leadership abilities, including the ability to lead security projects, mentor junior team members, and influence security best practices within the organization.
• Proficiency in security testing tools and methodologies.
• Strong knowledge of application security, OWASP Top 10, and common attack vectors.
• Familiarity with secure coding practices and principles.
• Excellent communication and collaboration skills.