Senior Product Security Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Collaborate with product and engineering teams to embed security into the development lifecycle and propel security initiatives across our technology stack.

• Utilize AI and automation to enhance product security coverage, keeping pace with AI-assisted development within engineering.

• Create and implement scalable security controls and architecture to accommodate our expanding product portfolio.

• Perform thorough security evaluations and threat modeling to detect and address potential vulnerabilities, including those posed by AI-generated code and AI-enhanced features.

• Contribute to our vulnerability management program by triaging bug bounty submissions and vulnerability disclosures, and spearheading remediation efforts.

• Design and establish automated security testing, monitoring, and response capabilities using Tines and AI-driven tools to minimize manual effort.

• Act as an incident responder during security incidents and lead post-incident analyses.

• Advocate for security awareness and offer technical guidance to engineering teams, including best practices for secure AI-assisted development.

⛳️ Requirements

• Over 8 years of experience in application or product security roles, with proven expertise in securing cloud-native applications.

• Strong grasp of modern application security principles, OWASP Top 10, and secure Software Development Lifecycle (SDLC) practices.

• Experience in leveraging AI and automation to expand security programs (e.g., LLM-assisted code review, automated triage, agentic security workflows).

• Familiarity with cloud security (AWS preferred) and securing containerized environments (Docker, Kubernetes).

• Proficient in modern programming languages; experience with Ruby, TypeScript, and/or Rust is highly desirable.

• Understanding of security testing methodologies and tools (SAST, DAST, SCA).

• Experience with CI/CD security integration and DevSecOps practices.

• Strong incident response capabilities and experience in on-call rotations.

• Excellent communication skills with the ability to convey complex security concepts to various audiences.

• Self-motivated with outstanding analytical thinking and problem-solving skills.

🏝️ Benefits

• Comprehensive health and wellness benefits.

• Opportunities for professional development and growth.

• Flexible work arrangements to support work-life balance.

• Engaging work environment with a focus on innovation.