Lead Security Engineer
Company: DocuSign
Location: Schiller Park
Posted on: January 16, 2026
|
|
|
Job Description:
Docusign brings agreements to life. Over 1.5 million customers
and more than a billion people in over 180 countries use Docusign
solutions to accelerate the process of doing business and simplify
people’s lives. With intelligent agreement management, Docusign
unleashes business-critical data that is trapped inside of
documents. Until now, these were disconnected from business systems
of record, costing businesses time, money, and opportunity. Using
Docusign’s Intelligent Agreement Management platform, companies can
create, commit, and manage agreements with solutions created by the
1 company in e-signature and contract lifecycle management (CLM).
What youll do You will play a critical role in protecting
Docusign’s products and customers by spearheading offensive
security testing initiatives. This includes driving penetration
tests, conducting red team exercises, mentoring team members, and
performing security research. This position is an individual
contributor role reporting to the Director of Offensive Security.
Responsibility • Provide clear technical guidance and direction to
the team • Mentor team members, impartingadvancedoffensive security
skills and knowledge • Oversee the planning and execution of
offensive security projects • Identify and direct areas for
security investigation in coordination with the director and other
leads • Serve as a key subject matter expert and point of contact
for stakeholders, assisting with vulnerability impact analysis and
defining remediation strategies • Work closely with the Product
Security Incident Response Team (PSIRT) and engineering teams to
analyze and drive the resolution of product security issue •
Maintain professional and responsive communication with all
stakeholders throughout the security evaluation lifecycle • Message
key threats to the business to relevant stakeholders • Collaborate
effectively with cross-functional groups, including Threat
Intelligence and PSIRT, to continuously strengthen the overall
product security posture Job Designation Remote:Employee is not
required to be in or near an office frequently and works from a
designated remote work location for the majority of the time.
Positions at Docusign are assigned a job designation of either In
Office, Hybrid or Remote and are specific to the role/job.
Preferred job designations are not guaranteed when changing
positions within Docusign. Docusign reserves the right to change a
positions job designation depending on business needs and as
permitted by local law. What you bring Basic • 12yearsexperience (8
with aMaster’sdegree) in security research, red teaming or
penetration testing experience including on web application
security • Experience in exploit development • Experience with
cybersecurity principles, incident response lifecycles, and
security best practices • Experience with CVSS (Common
Vulnerability Scoring System) for rating vulnerabilities, MITRE
ATTamp;CK for adversary tactics and techniques, and CWE (Common
Weakness Enumeration) for identifying and categorizing software
weaknesses • Experience leading a team effectively and
communicating offensive security findings to leadership Preferred •
Strong analytical and problem-solving skills, with a keen eye for
detail • Excellent written and verbal communication skills, with
the ability to explain technical concepts clearly •
Bachelorsdegreein Computer Science, Information Security, or a
related field • Industry certifications such as OSCP, GXPN, OSEP,
OSWA, OSWE, OSDA • Experience with cloud, container, or network
security testing • Experience with AI security testing
Keywords: DocuSign, Chicago , Lead Security Engineer, IT / Software / Systems , Schiller Park, Illinois
