Senior Product Security Engineer - InfoSec - Bulgaria

Senior Product Security Engineer - InfoSec - Bulgaria Who we are We're Redis. We built the product that runs the fast apps our world runs on. (If you checked the weather, used your credit card, or looked at your flight status online today, you’re welcome.) At Redis, you’ll work with the fastest, simplest technology in the business—whether you’re building it, telling its story, or selling it to our 10,000+ worldwide customers. We’re creating a faster world with simpler experiences. You in? THE TEAM Why will you enjoy this new opportunity? The Product Security team focuses on securing Redis products by embedding security into every stage of development—combining automation, modern tooling, and emerging AI capabilities to stay ahead of evolving threats. You’ll combine deep application security expertise with automation and AI-driven tooling to identify, prioritize, and remediate vulnerabilities. This is a hands-on role with high ownership, working closely with engineering teams to embed security into the development lifecycle and continuously improve our security posture. THE ROLE What type of work will you be doing: - Own and operate vulnerability management processes across Redis products, from discovery through remediation and reporting - Implement, evaluate, and manage AI-based security scanning tools to improve coverage and signal quality - Conduct product security assessments using both traditional and AI-assisted techniques (e.g., SAST, DAST, code analysis, LLM-assisted review) - Partner directly with engineering teams to triage findings, drive remediation, and improve secure development practices - Integrate security tools and workflows into CI/CD pipelines to enable continuous, automated security testing - Manage and triage findings from bug bounty platforms (e.g., HackerOne), ensuring timely validation and response - Build automation to reduce manual effort in vulnerability tracking, reporting, and remediation workflows - Use Jira to track, prioritize, and communicate security issues across teams - Contribute to improving internal security standards, processes, and tooling WHAT YOU’LL BRING TO REDIS Your experience and strengths: - 6+ years of experience in application security, product security, or a related field - Strong experience operating vulnerability management programs, including triage, prioritization, and reporting - Hands-on experience using Jira (or similar tools) to manage and track security issues at scale - Experience working with bug bounty platforms such as HackerOne or Bugcrowd - Practical experience with security tools (e.g., SAST, DAST, dependency scanning) and understanding their trade-offs - Experience building or using automation (scripting, APIs, pipelines, or integrations) to improve security workflows - Strong understanding of common application vulnerabilities (OWASP Top 10, secure coding practices) - Ability to work cross-functionally and communicate clearly with engineering teams - Experience with AI/ML-driven security tools or workflows (e.g., LLM-assisted code review, AI-based scanning) - Familiarity with cloud-native environments (Kubernetes, containers, microservices architectures) - Experience integrating security into modern CI/CD pipelines What are the benefits and perks of working at Redis Bulgaria ● Competitive compensation package formed by salary and equity grants ● 25 days of vacation time ● Hybrid working options from both home and the office ● Home internet & phone monthly allowance ● One-time home-office setup allowance ● Health and dental insurance for you ● Personal life insurance ● Critical Illness Cover ● Lunch and snacks in the office ● Multisport/CoolFit card As a global company, we value a culture of curiosity, diversity of thought, and innovation from our employees, customers, and partners. Redis is committed to a diverse and inclusive work environment where all employees’ differences are celebrated and supported, and everyone ... (truncated, view full listing at source)