Staff Security Engineer, Product Security

• Protect Mozilla's vision of the internet as a global public resource by building, breaking, and hardening products. • Reduce risk in applications and ensure products live up to Mozilla's dedication to privacy and a joyful Internet. • Safeguard millions of users by embedding security into Firefox, Mozilla VPN, and other mission-critical products.

• Have 5+ years of relevant hands-on experience in product and application security. • Have 5+ years of experience and proficiency in secure coding practices, application security testing (SAST, DAST), threat modeling, and vulnerability assessment. • Have experience in one or more languages like Python, Go, Java, or JavaScript for automation and code review. • Have familiarity with security tools like Burp Suite, Nessus, and tools for CI/CD automation. • Have strong communication, collaboration, and problem-solving skills with the ability to influence and guide cross-functional teams.

• Have formal credentials in security. • Have experience with cloud environments such as AWS, Azure, or GCP. • Have a builder's mindset with curiosity and passion for security.

• Ensure software products are secure by embedding security into the full Software Development Life Cycle (SDLC). • Anticipate, prioritize, and mitigate risks through proactive threat modeling, security assessments, security testing, and automation. • Perform security code reviews. • Lead penetration testing on web, mobile, and embedded applications, then guide remediation efforts. • Develop and maintain automated security tests within CI/CD pipelines to catch vulnerabilities early. • Partner with engineers to integrate security throughout the software development lifecycle as a core design principle. • Provide security guidance, develop secure solutions, and facilitate secure releases. • Help define and enforce security policies and provide security guidance to development teams. • Help shape Mozilla's security culture through collaboration, guidance, and education.

• Receive generous performance-based bonus plans. • Access rich medical, dental, and vision coverage. • Benefit from generous retirement contributions with 100% immediate vesting. • Enjoy quarterly all-company wellness days where everyone takes a pause together. • Take country-specific holidays plus a day off for your birthday. • Receive a one-time home office stipend. • Access an annual professional development budget. • Receive a quarterly well-being stipend. • Enjoy considerable paid parental leave. • Participate in an employee referral bonus program.

Mozilla Corporation is the non-profit-backed technology company that has shaped the internet for the better over the last 25 years. Mozilla makes pioneering brands like Firefox, the privacy-minded web browser. With more than 225 million people around the world using Mozilla products each month, the company is shaping the next 25 years of technology and helping to reclaim an internet built for people, not companies. Mozilla Corporation is wholly owned by the non-profit 501(c) Mozilla Foundation, meaning it is not beholden to any shareholders—only to its mission.