Product Security Engineer

Full Time
Toronto, ON, Canada
2 months ago

Who We Are

Wayfair’s Application Security Team is responsible for safeguarding the security of development and custom products and features. We engage with hundreds of developers and development teams to review and improve the security of custom developed applications, products, and interfaces.  Additionally, we monitor and manage customer security and react to incidents as they arise. We design secure solutions and systems, build trusted relationships with teams across Wayfair and our customers, investigate security incidents, discover and mitigate vulnerabilities, both internal and external. 

What You’ll Do

  • Assist in building & deploying security solutions that will be used across the enterprise
  • Liaise with development and product teams to develop secure products and features for customers, suppliers, partners, and employees
  • Implement ‘Sec’ in DevSecOps model of operations 
  • Perform penetration testing and code reviews of highly complex services that are used by millions of customers
  • Conduct risk analysis and threat modeling to build secure products from ground up
  • Assist in onboarding applications to web application firewall (WAF), maintain and tune WAF rules
  • Triage Bug bounty reports and coordinate with external hackers as part of Wayfair’s Bug Bounty Program
  • Build automations to streamline security workflows and detections

What You'll Need

  • Hands-on scripting experience in Python
  • Exposure to k8s and cloud platforms (Google Cloud preferred). 
  • Exposure to securing applications, REST & GraphQL services
  • Understanding of secure application development or Secure SDLC
  • Understanding of build and release management, CI/CD platforms
  • Exposure to dynamic analysis
  • Understanding of Authentication mechanisms such as JWT & OAuth
  • Experience securing any of these cloud services platforms - GCP, AWS, Azure
  • Relevant security certifications like GWAPT, GPEN, GSEC

Why You'll Love Wayfair

  • Time Off:
    • Paid Holidays
    • Paid Time Off (PTO)
    • Paid Sick Days
  • Health & Wellness:
    • Health & DentalBenefits 
    • Life Insurance
    • Disability Protection (Short Term & Long Term Disability) 
    • Global Wellbeing: Gym/Fitness discounts (including Peloton, Global ClassPass,)
    • Mental Health Support (Global Mental Health, Global Wayhealthy Recordings)
    • Caregiver Services
  • Financial Growth & Security:
    • RRSP (Registered Retirement Savings Plan)
    • Tuition Reimbursement 
  • Family Support:
    • Parental Leave Top-Up Program
    • Global Surrogacy & Adoption Policy
  • Professional Development & Recognition:
    • Rewards & Recognition 
    • Global Employee Anniversary Awards 
    • Paid Volunteer Work 
  • Unique Perks:
    • Employee Discount 
    • Global Pod Outings
  • Work/Life Balance:
    • Emphasizing a supportive & flexible work environment that encourages a balance between personal and professional commitments

About Wayfair Inc.

Wayfair is one of the world’s largest online destinations for the home. Whether you work in our global headquarters in Boston or Berlin, or in our warehouses or offices throughout the world, we’re reinventing the way people shop for their homes. Through our commitment to industry-leading technology and creative problem-solving, we are confident that Wayfair will be home to the most rewarding work of your career. If you’re looking for rapid growth, constant learning, and dynamic challenges, then you’ll find that amazing career opportunities are knocking.

No matter who you are, Wayfair is a place you can call home. We’re a community of innovators, risk-takers, and trailblazers who celebrate our differences, and know that our unique perspectives make us stronger, smarter, and well-positioned for success. We value and rely on the collective voices of our employees, customers, community, and suppliers to help guide us as we build a better Wayfair – and world – for all. Every voice, every perspective matters. That’s why we’re proud to be an equal opportunity employer. We do not discriminate on the basis of race, color, ethnicity, ancestry, religion, sex, national origin, sexual orientation, age, citizenship status, marital status, disability, gender identity, gender expression, veteran status, genetic information, or any other legally protected characteristic.

Your personal data is processed in accordance with our Candidate Privacy Notice (https://www.wayfair.com/careers/privacy). If you have any questions or wish to exercise your rights under applicable privacy and data protection laws, please contact us at dataprotectionofficer@wayfair.com.