Saltar al contenido principal

BrightDrop - Principal Product Security Engineer

  • Ubicación
    • Palo Alto, California
  • Cronograma Full time
  • Publicado


At BrightDrop, we are reshaping e-commerce by developing smarter, greener, and more efficient ways to deliver goods and services to your door, while delivering a brighter future for the cities where we live. We are building an ecosystem of all-electric, zero-emissions delivery solutions – from electric vehicles, to ePallets and software that leverages real-time data to drive intelligent optimizations for e-commerce. To deliver on our mission we are growing fast and building a team, based in Palo Alto, with offices in Atlanta and Detroit, that is customer-focused, agile and passionate about innovating for a more sustainable future.  

From engineering to product management and operations, BrightDrop is looking for people who can combine a passion for technology and sustainability with high doses of curiosity and rigorous thinking to deliver a better future. 

Backed by General Motors, BrightDrop is striving to improve the communities where we live and deliver a better future for generations to come. We hope you’ll join us. 

The Product Security team at BrightDrop ensures the security of our products and services and as domain experts for our engineering teams and IT teas to protect our customers’ data in today’s dynamic threat landscape. We are a team of highly skilled security engineers that specialize in security research, penetration testing, and security architecture. We evaluate a broad range of technologies including complex web applications, IoT platform, distributed processing, Cloud environments and isolation of entrusted code.  

As a Principal Engineer of Product Security you will lead the effort to secure entire product portfolio adapting Shift Left approach. Your passion for security and in-depth knowledge of Product Security will ensure that you deliver high impact results.


  • Lead Threat Modeling and Penetration testing programs. 

  • Perform Security Design Reviews and Secure Code Reviews 

  • Design and Rollout Security Training Program to foster a culture of software security. 

  • Build and maintain technical guidelines and security best practices 

  • Perform black-box penetration testing and code reviews of our flagship services, product offerings and partners’ applications.   

  • Participate in our incident response and vulnerability remediation efforts. Maintain the vulnerability management system and ensure compliance on SLAs for security bugs with engineering teams. 

  • Evaluate application security tools for internal consumption. Prototype new automation and tooling to improve our detection and prevention capabilities

Additional Description


  • B.S. or M.S. in Computer Science, Electrical Engineering or related experience.  

  • At least 8+ years of experience in Product Security and 3+ years of experience being a Technical Product Security Lead. 

  • Demonstrated success and influence in the Product Security space.  Experience defining security policy, technology requirements, and control objectives. 

  • Experience in implementing Secure SDLC 

  • Lead DevSecOps by integrating SAST, DAST and SCA tools with CI/CD pipeline

  • Demonstrated ability to write clear and comprehensive technical security content. In-depth experience identifying and protecting against web application and web service security vulnerabilities including those found in the OWASP Top 10 IoT Top 10 and CWE Top 25. 

  • Meaningful experience in High level programming languages (C, C++, Java, Python). 

  • Solid knowledge of the browser security model, crypto, and network security.

  • Expert knowledge of secure infrastructure architectures, application architectures, encryption and and broader security technologies. 

  • Knowledge of a broad spectrum range of attack vectors, exploits and mitigations. Outstanding detail-oriented organizational skills. Strong quantitative and analytical skills, proven ability to track and successfully complete complex security programs. Strong influencing skills with an ability to motivate and drive others to succeed.

The salary range for compensation is  ( $197,000 - $291,000 USD Annual ).  It could be filled with a Sr. level, Staff or Principal candidate and salary can be based on degree type and experience

Bonus Potential: An incentive pay program offers payouts based on company performance, job level, and individual performance. Benefits:

Benefits: GM offers a variety of health and wellbeing benefit programs. Benefit options include medical, dental, vision, Health Savings Account, Flexible Spending Accounts, retirement savings plan, sickness and accident benefits, life insurance, paid vacation & holidays, tuition assistance programs, employee assistance program, GM vehicle discounts and more.


Como contratamos

Este es un ejemplo de un contenido de trabajo común que se puede mostrar en la parte inferior de cada descripción de trabajo. Se agrega en el CMS y luego se muestra en cada trabajo. Se puede utilizar para complementar el contenido del trabajo que proviene del ATS.

Egestas faucibus lacus a ac aptent ac condimentum risus iaculis a parturent a enim suscipit semper hendrerit feugiat suspendisse lobortis facilisis vel at dolor ornare rutrum a elementum mi. Rhoncus mollis curae penatibus scelerisque suspendisse faucibus phasellus porttitor maecenas amet a amet hac facilisi a urna a vestibulum vestibulum maecenas per adipiscing ultrices.

Buscamos a los innovadores

Quienes somos

Two GM employees talking in hallway

Our Culture

Working at GM

Driven by innovation and creating an environment to inspire, we embrace the responsibility to make our world better, safer and more equitable for all

A mother and two children spend quality time together in their backyard after work

Total Rewards

A better tomorrow begins with you

From day one, we’re looking out for your well-being— at work and at home— so you can focus on realizing your ambitions

Únete a la comunidad de talentos

Conozca las próximas oportunidades profesionales y eventos en Pendulum

Únete ahora
A scene of people in an office

Únete a la comunidad de talentos

Somos ambiciosos. Estamos comprometidos. Y traemos la pasión de la vida al trabajo. Comuníquese con nosotros para obtener más información sobre cómo comenzar su carrera en GM.

Buscar Oportunidades de Carrera Únete a nuestra Comunidad de Talento
Join Talent Community
2023 WME 4X White Linkedin Award Diversityinc Award Just Award Bloomberg Award Readers Choice Awards