Basic Information

Country:

United States

State:

Texas

City:

Houston

Date Published:

23-Jul-2025

Job ID:

45352

Travel:

You may occasionally be required to travel for business

Looking for more details about our benefits? You can also learn all about them by clicking HERE

Description and Requirements

Hybrid: #LI-Hybrid

"At BMC trust is not just a word - it's a way of life!"

We are an award-winning, equal opportunity, culturally diverse, fun place to be. Giving back to the community drives us to be better every single day. Our work environment allows you to balance your priorities, because we know you will bring your best every day. We will champion your wins and shout them from the rooftops. Your peers will inspire, drive, support you, and make you laugh out loud! 

We help our customers free up time and space to become an Autonomous Digital Enterprise that conquers the opportunities ahead - and are relentless in the pursuit of innovation! 

EMPLOYER: BMC HELIX, INC.

JOB TITLE: Product Developer III

JOB DUTIES: Drive the vulnerability management program for BMC Helix products, ensuring compliance with US Federal standards, including FedRAMP. Responsibilities include identifying and mitigating vulnerabilities within SLAs, collaborating with cross-functional teams, and driving continuous program improvements. Orchestrate, design, and support the implementation of the DevSecOps pipeline to be adopted across all BMC Helix SaaS products. Conduct threat modeling exercises for US-based product teams to identify potential risks and enhance security posture. Gather product security requirements, address customer feedback, and resolve security-related customer cases for North American clients. Collaborate with US-based teams, including Infosec, SaaS Security, and SaaSOps, to execute the Product Security Group’s charter. Empower US-based product teams to shift left by delivering secure code training and automating third-party software upgrades. Co-lead the product security incident response program, managing zero-day vulnerabilities and critical threats. Provide subject matter expertise in SaaS Security and application security, guiding teams on secure practices. Respond to RFPs and security questionnaires related to product security and application security to support customer and business needs. Perform Static Application Security Testing (SAST) and secure code reviews for BMC products to identify and mitigate vulnerabilities. Advise product teams on remediating vulnerabilities in accordance with BMC’s secure coding standards. Conduct secure design reviews to uncover security flaws and recommend remediation strategies. Create, update, and maintain policies related to Secure Software Development Life Cycle (SDLC) to ensure consistent product/application security practices across the organization. Ensure BMC meets compliance standards for product/application security by supporting regular audits and assessments. Drive key product security initiatives to enhance the overall security posture across BMC. Hybrid work policy w/in commuting distance

JOB REQUIREMENTS: Master’s degree or foreign equivalent in Computer Engineering or Computer Science, or a related field and 4 years of experience in product security or application security.

Four years of experience to include:

(1) Secure SDLC and vulnerability management;

(2) Static Application Security Testing (SAST);

(3) Conducting secure code review; and

(4) Conducting secure architecture review.

Three years of experience to include:

(1) Threat modeling;

(2) Supporting product security incident response; and

(3) Application of security frameworks and standards.

OTHER: Worksite: 2103 CityWest Blvd, Houston, TX, 77042; Hybrid work policy w/in commuting distance; 40 hours/week

Annual Salary: $149,947 - $166,000

CA-DNP

Our commitment to you!

BMC’s culture is built around its people. We have 6000+ brilliant minds working together across the globe. You won’t be known just by your employee number, but for your true authentic self. BMC lets you be YOU!

If after reading the above, you are unsure if you meet the qualifications of this role but are deeply excited about BMC and this team, we still encourage you to apply! We want to attract talents from diverse backgrounds and experience to ensure we face the world together with the best ideas!

BMC is committed to equal opportunity employment regardless of race, age, sex, creed, color, religion, citizenship status, sexual orientation, gender, gender expression, gender identity, national origin, disability, marital status, pregnancy, disabled veteran or status as a protected veteran. If you need a reasonable accommodation for any part of the application and hiring process, visit the accommodation request page.

BMC Software maintains a strict policy of not requesting any form of payment in exchange for employment opportunities, upholding a fair and ethical hiring process.

We use AI technology to support parts of our recruitment process, but people—not algorithms—make all final hiring decisions. AI may assist with tasks like scheduling, screening for role alignment, or helping us manage large volumes of applications more efficiently. However, candidates are reviewed by a member of our recruitment team, and interviews and hiring decisions are always made by people. We’re committed to ensuring that technology enhances fairness, efficiency, and the candidate experience—never replaces genuine human judgment.