Owlet Baby Care

Compensation

Full Description

Owlet is changing the world of parenting with meaningful products that truly make a difference for millions around the world. Owlet has helped more than a million parents keep their children safe, while bringing joy and sleep to the parenting journey. We believe every parent deserves the peace of mind that comes with a better understanding of their baby’s needs. Learn more about our amazing mission at: https://owletcare.com/pages/why-owlet We are looking for a seasoned Senior Product Security Engineer to lead and advance our product and application security initiatives. This role demands deep technical expertise across all facets of product security and secure software development. Experience securing medical devices is a significant plus. The ideal candidate will be hands-on, strategic, and serve as a security champion across product engineering teams. Key Responsibilities Product Security Leadership - define and implement product and application security strategies throughout the SDLC. Security Architecture & Design - collaborate with product and engineering teams to design secure architectures for web, mobile, and cloud-based applications. Secure Development - integrate security best practices into CI/CD pipelines, promote secure coding practices, and conduct secure code reviews and threat modeling sessions. Security Assessments - lead and perform penetration testing, static/dynamic code analysis, and security reviews for internally developed and third-party applications. Tooling & Automation - develop and maintain automated security testing tools, workflows, and integrations to scale security across product teams. Security Incident Response - lead investigation and remediation of security incidents related to products and applications. Support Security Compliance Initiatives - support various compliance initiatives such as SOC2, ISO27001, Cyber Resilience Act, US Cyber Trust Mark Mentorship & Advocacy - educate engineers on secure development practices, influence engineering culture, and act as a liaison between security and engineering teams. B.S. in Computer Science, Cyber Security or a related field. 5+ years of experience in cloud security engineering with a focus on application/product security; experience securing medical devices is a plus. Deep understanding of OWASP Top 10, secure coding, threat modeling, authentication/authorization, cryptography, and cloud-native application security. Strong grasp of NIST CSF and other regulatory frameworks. Experience with Data Governance and Privacy. Certifications CISSP, CSSLP, GWAPT, or equivalent are a plus. Experience with tools like SAST/DAST, SCA, container security, and languages like Python and JavaScript Soft Skills Strong communication and collaboration skills with the ability to drive cross-functional initiatives Owlet offers a comprehensive benefits package that supports your health, financial well-being, and work-life balance: Health & Wellness: Multiple medical plan options (PPO and High-Deductible with HSA), plus dental, vision, life, and disability coverage. Wellness resources include mental health support, EAP access, and fitness incentives. Financial Benefits: A competitive 401(k) plan with company match, $500 Work From Home Stipend, employee stock purchase program, and potential equity grants. Work-Life Balance: Generous flexible PTO policy, including Flex Fridays, paid parental leave (up to 14 weeks), and remote/hybrid work options. Owlet Baby Care, Inc. is the equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, protected veteran status, disability status, or any other characteristic protected by law.