Senior Security Engineer (Application Security)

TL;DR

Senior Security Engineer (Application Security): Build and mature a Vulnerability Management Program to identify, assess, prioritize, and remediate security vulnerabilities across products, platforms, and infrastructure with an accent on security tooling, risk scoring, and remediation strategies. Focus on designing scalable security solutions, developing dashboards, and collaborating with product and development teams to enhance security posture.

Location: Remote within United States or Canada

Salary: $156,000–$210,000 USD (US roles), $143,000–$193,000 CAD (Canada roles)

Company

hirify.global builds market-leading enterprise password management and Extended Access Management solutions focused on secure identity and device trust, serving over 180,000 businesses including Fortune 100 and AI companies.

What you will do

• Design, build, and scale security solutions for the vulnerability management program.
• Develop tools to correlate, enrich, and prioritize vulnerability findings from multiple sources.
• Create dashboards and reporting metrics tailored to diverse audiences.
• Analyze vulnerabilities to inform development teams and eliminate vulnerability classes.
• Partner with product and development teams to improve triage workflows and remediation strategies.
• Mentor engineers and shape vulnerability management strategy evolution.

Requirements

• Location: Must be based in the United States or Canada
• 5+ years of IT or engineering experience with a security focus.
• Experience with bug bounty programs, vulnerability research, validation, remediation, or pentesting.
• Strong software development understanding and coding ability.
• Ability to set technical direction and work collaboratively with technical and non-technical stakeholders.
• Adaptability to fast-paced environments with shifting priorities.

Nice to have

• Experience with Rust and/or Golang or ability to learn new languages quickly.
• Familiarity with compliance standards like SOC2, ISO, PCI.
• Experience building or maintaining vulnerability management programs in medium to large organizations.

Culture & Benefits

• Remote-first work environment with required travel for in-person engagement.
• Competitive health, dental, and retirement benefits.
• Generous paid time off and parental leave top-up programs.
• Equity grants and incentive programs.
• Focus on collaboration, transparency, and core values of simplicity, honesty, and people-first.
• Commitment to leveraging AI and machine learning technologies.

Hiring process

• Background check including employment, education, criminal, and credit history as permitted by law.
• Use of AI/ML technologies in recruitment with opt-out option available.