Jobs
Poshmark logoPoshmark

Senior Manager, Cloud & Product Security

Confidence can sometimes hold us back from applying for a job. Here’s a secret: there's no such thing as a "perfect" candidate. Poshmark is looking for exceptional people who want to make a positive impact through their work and help create an organization where everyone can thrive. So whatever background you bring with you, please apply if this role would make you excited to come to work every day.

Poshmark is a leading social marketplace for new and secondhand style for women, men, kids, pets, home, and more. By combining the human connection of physical shopping with the scale, ease, and selection benefits of ecommerce, Poshmark makes buying and selling simple, social, and sustainable.

Security team at Poshmark is responsible for securing our application platform, cloud infrastructure, and IT systems to protect Poshmark and its 80 million Community members. As Sr. Manager, Cloud & Product Security, you will collaborate with other security and engineering teams on identifying vulnerabilities in our application while improving visibility and implementing application security best practices throughout SDLC.

Responsibilities

  • Provider overall leadership to the Poshmark India Security Team
  • Directly responsible for Product/Application security and Cloud Infrastructure Security.
  • Lead the application security program and mentor other application security engineers
    • Define and driving the secure SDLC including threat modeling and product driven security testing
    • Manage and run penetration testing program and bug bounty programs
    • Participate in product requirement and technical design discussions to influence requirements and designs and to mentor other engineers
    • Create application security and secure coding standards and educate developers
    • Integrate, enhance and implement devsecops tooling SAST, IAST, SCA and others as required to shift left security
  • Lead the Cloud infrastructure security program and mentor other cloud security engineers
    • Responsible for CSPM
    • Define and manage web application firewall
    • Responsible for security change management of infrastructure and provide guidance and recommendations to the Engineering team
  • Vulnerability management of Infrastructure and Product 
  • Mentor the team to provide white glove solutions to engineering teams

6-Month Accomplishments 

  • Understand Poshmark products, architecture and infrastructure
  • Own vulnerability management of product and infrastructure
  • Own multiple product portfolios and integrate release certification process
  • Streamline release certification processes

Requirements

  • 10+ years of professional hands-on experience in application security or Cloud Security with at least few years in Management
  • Strong foundation of security architecture, protocols, vulnerabilities, and countermeasures
  • Strong understanding of secure coding standards and security risks (e.g. OWASP, SANS and others).
  • Familiarity with cryptography primitives and fundamentals (e.g. SSL/TLS, PKI)
  • Demonstrated experience in programming languages (e.g. JRuby, Java, Kotlin, Swift, and/or JavaScript) and development tools (e.g. Gradle, Jenkins)
  • Experience with AWS or cloud environments and ability to recommend designs for
  • Ability to juggle multiple responsibilities and prioritize automation over manual process.
  • Strong attention to detail and accountability under minimal supervision
  • Strong growth mindset
  • Willingness to work with diverse teams across India and USA

About Us

Poshmark is a leading social marketplace for new and secondhand style for women, men, kids, pets, home, and more. By combining the human connection of physical shopping with the scale, ease, and selection benefits of e-commerce, Poshmark makes buying and selling simple, social, and sustainable. Its community of more than 80 million registered users across the U.S., Canada, Australia, and India, is driving the future of commerce while promoting more sustainable consumption. For more information, please visit www.poshmark.com, and for company news and announcements, please visit investors.poshmark.com. You can also find Poshmark on Instagram, Facebook, Twitter, Pinterest, and YouTube.

Why Poshmark?

At Poshmark, we’re constantly challenging the status quo and are looking for innovative and passionate people to help shape the future of Poshmark. We’re disrupting the industry by combining social connections with e-commerce through data-driven solutions and the latest technology to optimize our platform. We’re nothing without our amazing team who deliver an unparalleled social shopping experience to the millions of people we connect each day.

We built Poshmark around four core values: 1) focus on people to create empowered communities that drive success; 2) together we grow to support each other to strive for our dreams; 3) lead with love to foster genuine connections built upon a foundation of respect; and 4) embrace your weirdness to accept and empower one another on their own unique journey. We’re invested in our team and community, working together to build an entirely new way to shop. That way, when we win, we all win together. Come help us build the most connected shopping experience ever.  We will set you up with comprehensive global and in-country benefits to support you and your family needs.

Poshmark is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

View Poshmark's Job Applicant Privacy Policy here.

Cyber Security Jobs by Category

Full Time jobsManager jobsJavascript jobsApplication Security jobsDevsecops jobs

Cyber Security Salaries

Full Time SalaryManager SalaryJavascript SalaryApplication Security SalaryDevsecops Salary