Create Alert

Product Security Engineer

Apply now »

Date: Jun 24, 2025

Location: Dhaka, BD, 1212 BD

Company: Optimizely

At Optimizely, we're on a mission to help people unlock their digital potential. We do that by reinventing how marketing and product teams work to create and optimize digital experiences across all channels. With Optimizely One, our industry-first operating system for marketers, we offer teams flexibility and choice to build their stack their way with our fully SaaS, fully decoupled, and highly composable solution.  

We are proud to help more than 10,000 businesses, including H&M, PayPal, Zoom, and Toyota, enrich their customer lifetime value, increase revenue and grow their brands. Our innovation and excellence have earned us numerous recognitions as a leader by industry analysts such as Gartner, Forrester, and IDC, reinforcing our role as a trailblazer in MarTech. 

 

At our core, we believe work is about more than just numbers -- it's about the people. Our culture is dynamic and constantly evolving, shaped by every employee, their actions and their stories. With over 1500 Optimizers spread across 12 global locations, our diverse team embodies the "One Optimizely" spirit, emphasizing collaboration and continuous improvement, while fostering a culture where every voice is heard and valued.

Introduction

We’re looking for a Product security engineer to join Optimizely’s Product Security team! Preferably you’ll have experience in the application security field and a good understanding of how applications are deployed in cloud environments,  As part of our wider Security Engineering team, you’ll get to collaborate with our software development, product and SRE teams and you will be given the opportunity to contribute and improve Optimizely One’s product security and cyber risk posture.  

Job Responsibilities

  • Implement and manage application security controls, such as SAST,SCA, DAST in the SSDLC.  

  • Drive vulnerability management and remediation efforts – prioritizing issues, running mitigation campaigns, and designing further preventative controls.  

  • Lead threat modelling and review exercises across Optimizely’s products, identifying and mitigating risks. 

  • Lead the planning, scoping and synchronising of penetration tests and ensure that all findings are prioritized and remediated according to internal SLOs. 

  • Grow, improve, and manage our Bug Bounty program and ensure that all findings are prioritized and remediated according to internal SLOs.  

  • Build deep functional partnerships with Optimizely’s engineering and product teams, helping them deliver secure-by-design solutions. 

Knowledge and Experience

  • Possess knowledge of Application Security tools such as SAST, SCA, DAST, Container and IaC Security. 
  • Good understanding of the vulnerability management lifecycle in modern web applications deployed in cloud environments.  
  • Experience running threat models.  
  • Basic understanding of cloud architecture (preferably Azure, but GCP and AWS also fine), deployment methods (containers, VMs, serverless), and CI/CD pipelines.  
  • Experience working with bug bounty programs and platforms such as BugCrowd, HackerOne etc. 
  • Penetration testing experience welcome but not a must 
  • Good communications skills and the ability to explain vulnerabilities and security concers to technical and not technical stakeholders.  
  • Experience in agile methodologies and way of working and strong team player.  
  • To have the curiosity to solve complex problems and a strong appetite for learning.  

Education

Bachelor’s Degree (Cyber Security, Computer Science or Engineering preferred) or equivalent work experience 

Our new, cutting-edge office space in Dhaka is a testament to our dedication to enhancing your work experience. This state-of-the-art workspace features open workstations, a fully equipped kitchen, a nap room for relaxation, a tranquil zen garden, and an entertaining area, all designed to provide you with the ideal environment to thrive and grow.

As part of our commitment to you, here are other benefits and perks you can expect:

· Best-in-class compensation plans

· Two annual festival bonuses

· Recognition and rewards programs

· Vacations days

· Annual Work/Service Anniversary Leave

· Parental leave (both maternity and paternity)

· Health insurance

· Reproductive benefits for both parents

· Volunteering opportunities to make a difference

· Chance to work alongside our incredible global team

· Free communal transport facilities inside Dhaka to and from the office

· Free catered lunch every day

At Optimizely, our standardized language is English, and it is crucial to have good English communication skills to be successful in your global role. All our external and cross-location communication is done in US English (en-us), but internally you can speak in whichever native language you most identify with.

Optimizely is committed to a diverse and inclusive workplace. Optimizely is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.