Senior Software Engineer, Platform Security

Job Description

For over 20 years, Smartsheet has helped people and teams achieve–well, anything. From seamless work management to smart, scalable solutions, we’ve always worked with flow. We’re building tools that empower teams to automate the manual, uncover insights, and scale smarter. But more than that, we’re creating space– space to think big, take action, and unlock the kind of work that truly matters. Because when challenge meets purpose, and passion turns into progress, that’s magic at work, and it’s what we show up for everyday.

We are seeking a passionate and experienced Senior Software Engineer to join our Security Application Development team. In this role, you will be instrumental in designing, building, and maintaining robust security features for our SaaS product that will delight our customer CIOs. You will work on challenging problems at the intersection of application development and security, directly contributing to the resilience and trustworthiness of our platform. This is an exciting opportunity to leverage your software development expertise to create secure-by-design solutions that protect our customers and their data 24/7.

You will work remotely from Bulgaria.

What You Will Do

• Develop Secure Product Features: Design, build, and implement security features and functionalities directly into our SaaS product using modern programming languages (e.g., Java, Kotlin, Go, TypeScript, Python) and associated frameworks.
• Build Scalable and Secure Services: Develop scalable back-end services and APIs with a security-first mindset, ensuring high availability and performance in our multi-cloud environment (primarily AWS).
• Integrate Security into SDLC: Collaborate with product and engineering teams to embed security best practices throughout the entire software development lifecycle, from design to deployment.
• Automate Security Controls: Engineer and automate security controls, threat detection mechanisms, and vulnerability remediation processes within the application.
• Conduct Code Reviews and Architectural Discussions: Participate actively in code reviews and architectural discussions, advocating for secure coding practices and robust security designs.
• Solve Challenging Security Problems: Tackle complex security challenges related to data protection, access control, authentication, authorization, and secure communication within a distributed system.
• Create and maintain API integrations between internal and external systems. Implement and test API solutions to ensure they meet functionality, performance, and security standards. Monitor API performance and address any integration challenges or issues.
• Mentor and Lead: Serve as a subject matter expert in application security, mentoring junior engineers and fostering a culture of security ownership across development teams.
• Strategically Apply AI Tools: Strategically apply and champion AI tools within your team's domain to improve project execution, system design, quality, and debugging, leading adoption of AI best practices and driving measurable productivity gains.

Assist with Security Incident Remediation: We manage a SOC on a global 24/7 basis. This role will assist in that effort during daytime working hours.

What You Have

• 5+ year...