Product Security Engineer - Software Security Enablement - Bloomberg

Key Responsibilities

• Integrate security controls into the software development lifecycle for Bloomberg’s commercial applications.
• Conduct threat modeling, code reviews, and static analysis to identify and remediate vulnerabilities.
• Collaborate with product, engineering, and DevOps teams to embed secure coding practices and automate security checks in CI/CD pipelines.
• Develop and maintain security documentation, guidelines, and training materials for internal stakeholders.
• Participate in incident response and post‑mortem activities to improve product security posture.

Requirements

• Strong experience with secure coding in Python and C/C++.
• Proficiency in threat modeling frameworks (e.g., STRIDE, PASTA) and static analysis tools.
• Hands‑on knowledge of secure SDLC practices and CI/CD automation.
• Excellent communication skills and ability to influence cross‑functional teams.
• Experience with cloud security (AWS) and container security is a plus.