AppSec Jobs
← Back to all jobs

SmartBear

Senior Product Security Engineer

Wrocław, Dolnośląskie, PolandWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About SmartBear

SmartBear is a software company based in Somerville, MA, specializing in tools for web and API testing, performance monitoring, and software quality assurance. Founded in 2003, the company has grown to support over 16 million developers, testers, and engineers across more than 32,000 organizations globally. SmartBear's mission is to be the preferred choice for software development teams by providing innovative tools that enhance application delivery and automate processes throughout the software development lifecycle. The company offers a comprehensive suite of AI-powered tools designed to accelerate development and improve software quality. Their solutions include web and API testing, mobile app testing through cloud-based technology, and tools for peer code review. SmartBear's products integrate easily with existing technology stacks, helping organizations streamline their workflows and deliver high-quality software more efficiently.

Industry

information technology & services

Employees

1,000

423 engineers

Revenue

$150M

Website

Visit →

Security at SmartBear

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • SmartBear's AppSec philosophy is centered on the concept of 'embedded security,' where security is treated as a fundamental component of the product lifecycle rather than a final gate.
  • The philosophy emphasizes that security is not an afterthought but rather embedded into how products are designed, built, and operated.
  • Security professionals serve as advocates for security throughout the product and engineering processes, enabling developers while maintaining high security standards.

Security Team

  • SmartBear utilizes an embedded organizational model for its Product Security team.
  • Security professionals are integrated directly into engineering and product teams to act as advocates throughout the development process.
  • The security function is led by a Global CISO (Christine Whichard).
  • The team operates collaboratively with a focus on cross-functional advocacy and security reviews throughout the product lifecycle.

Key Initiatives

  • SmartBear maintains a structured Secure SDLC that includes proactive reviews and continuous testing.
  • Key initiatives include: secure design and architecture reviews, code scanning and dependency analysis, vulnerability identification and remediation through continuous scanning and testing, managing access with roles and permissions, and implementation of AI governance with approved AI tools and use cases.
  • The company focuses on shifting security left by integrating it into the software development lifecycle.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.