Product Security Engineer

We are seeking a hands-on and collaborative Product Security Engineer to strengthen our growing Product Security program. In this role, you will be a key contributor to securing Five9’s products throughout the software development lifecycle. You’ll partner closely with development, DevOps, and cloud engineering teams to identify, assess, and mitigate security risks, ensuring our products remain resilient against evolving threats.

 

Key Responsibilities:

• Conduct vulnerability assessments across applications, infrastructure, and cloud environments, and manage the lifecycle from discovery through remediation
• Partner with development teams to integrate security into CI/CD pipelines and champion secure coding practices
• Provide actionable remediation guidance, helping teams prioritize and resolve vulnerabilities effectively
• Deliver clear, data-driven reports to stakeholders and leadership, highlighting security trends, remediation progress, and residual risks
• Automate security testing, reporting, and workflows to improve efficiency and scalability
• Stay ahead of emerging threats, tools, and industry best practices, and help evolve Five9’s product security capabilities

 

Requirements:

• Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent professional experience
• Security certifications (CISSP, CISM, Security+, or similar) are a plus
• Minimum of 2 years of experience in product or application security
• Hands-on experience with one or more vulnerability management or application security tools (e.g., Rapid7, Qualys, Nessus, Wiz, Semgrep, Legit Security, or similar)
• Strong ability to work with data using Excel, SQL, Python, or data visualization platforms to identify trends and present findings
• Excellent analytical and problem-solving skills with the ability to communicate complex issues in simple terms to both technical and non-technical stakeholders
• Strong collaboration skills and ability to influence across teams
• Proven track record of handling sensitive information with integrity and confidentiality
• Strong understanding of SDLC and security methodologies

 

Preferred Skills:

• Experience in a regulated industry, especially financial services or telecom
• Experience with cloud security and hybrid environments
• Familiarity with US and International regulatory compliance frameworks such as PCI-DSS, ISO 27001, SOC2, etc.
• Experience with scripting and automation tools including Tines and supporting ticketing integrations with Jira

 

Benefits:

• Five9 Shares
• Bonus Scheme
• 10% Flex Benefit
• Meal Allowance
• Medical Insurance
• Life Insurance 
• 25 day Annual Leave + Public Holidays