Product Security Engineer

With a strong security engineering background, you’re looking for a role that gives you the freedom to increase MongoDB’s resonance with customers by strengthening our core database products. You’re passionate about solving hard security engineering problems while putting a strong emphasis on customer experience, leveraging your own significant experience. You enjoy collaborating with different teams to innovate and implement pragmatic solutions.

The MongoDB Product Security organization is a diverse collection of individuals working together to scale MongoDB’s security, both security of the products themselves and the security features we offer to customers. The team is responsible for the MongoDB Database Server (Community and Enterprise editions).

The MongoDB Product Security organization works with software engineers to design, implement, and operate systems in a manner that protects customer data. It is a multidisciplinary team that covers product, software, cloud, infrastructure, and operational security concerns.  The team does the following:

• Build a developer driven security program where there is tight integration with engineering artifacts, process, and tooling
• Use software architecture and coding patterns to reduce the impact of security issues
• Be security subject matter experts for our tech stack and products. 

• You will take ownership, define strategy, and drive improvement for parts of our program such as fuzzing, threat modeling, secrets management, or container security
• Advocate for and lead complex security projects from inception through completion
• Drive architecture, patterns, and processes across Server Engineering that make security the easiest path
• Partner closely with engineering teams to design and implement security controls across our software and systems
• Research and POC new attacks against our systems. Plan and perform product security assessments including architecture review threat modeling, code review, pen testing and general security consulting to proactively build security controls
• Serve as a security subject matter expert for software security and architecture
• Educate the engineering org on security through CTFs, lunch-and-learns, and one-on-one mentorship

• 3 years of experience in application security, software security, or product security
• Demonstrated experience in C++ programming, performing security assessments on low-level codebases, and implementing remediation strategies for memory-related security flaws such as buffer overflows and memory leaks
• Scripting experience and ability to contribute code back to our environments
• Comfortable leading threat modeling and being a security ambassador to other engineering teams
• Communicate complex technical issues in a simple manner that builds trust with a variety of audiences
• A strong sense of ownership and delivery
• Can facilitate a conversation rather than dominate it
• Skilled at providing collaborative, actionable feedback, not just a list of flaws
• Can work flexible hours occasionally to collaborate with US-based colleagues 

Don’t feel that you meet all of the requirements?  We encourage you to apply anyway because studies have shown that some strong candidates may self-select out of the interview process prematurely.  We have a diverse, inclusive, equitable, and high-performing environment at MongoDB and want to continuously improve our ability to deliver for customers.

• Subject matter expertise in database security, or data security
• Knowledge of database engines, database internals, or applied cryptography
• Experience contributing or partnering with security researchers to identify vulnerabilities that eventually are published CVEs or administrative responsibilities of a CNA

• Seeing projects through from conception to completion in order to deliver new services or capabilities for the team
• Establishing yourself as a go-to person for discussing security topics

We are looking to speak to candidates who are based in Dublin for our hybrid working model.

MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the database for the AI era, enabling innovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform—the most widely available, globally distributed database on the market—helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available across AWS, Google Cloud, and Microsoft Azure.

With offices worldwide and nearly 60,000 customers—including 75% of the Fortune 100 and AI-native startups—relying on MongoDB for their most important applications, we’re powering the next era of software.

Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB. 

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB is an equal opportunities employer. 

REQ ID: 4263321472