Назад
Company hidden
13 часов назад

Staff Product Security Engineer (Cybersecurity)

174 200 - 293 702$
Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Staff Product Security Engineer (Cybersecurity): Developing and optimizing security frameworks for the product lifecycle with an accent on shifting security left and integrating AI into the SSDLC. Focus on implementing secure-by-design principles, driving vulnerability remediation, and establishing scalable AI-assisted security scanning.

Location: Remote within the continental United States

Salary: $174,200 - $293,702

Company

hirify.global is a leading cybersecurity organization specializing in identity security and protecting organizational assets at scale.

What you will do

  • Partner with Engineering teams to identify and mitigate security risks and implement secure deployment practices throughout the SDLC.
  • Drive threat modeling activities and implement appropriate security controls and secure-by-design principles.
  • Leverage AI-powered tools to enhance security engineering productivity and secure AI-enabled applications and workflows.
  • Coordinate internal and external penetration testing initiatives and oversee the bug bounty program.
  • Perform root cause analysis for vulnerabilities and recommend long-term security improvements.
  • Develop security training, technical documentation, and mentor engineers on secure coding standards.

Requirements

  • 5-7 years of experience in product security, application security, or software engineering.
  • Expertise with security testing tools including SAST, SCA, DAST, and Container security scanners.
  • Experience with CI/CD security controls and DevSecOps practices.
  • Proficiency in one or more languages: Python, Go, Java, JavaScript/TypeScript, or Ruby.
  • Deep expertise in threat modeling, secure architecture design, and vulnerability management.
  • Must be based in the continental United States.

Nice to have

  • Knowledge of AI security frameworks such as OWASP AI Security and Privacy Guide, NIST AI Risk Management Framework, or Open SSF AI/ML Security Framework.

Culture & Benefits

  • Comprehensive health, dental, and vision insurance.
  • 401(k) savings and investment plan with company matching.
  • Flexible vacation policy, paid parental leave, and sick leave.
  • Health Savings Account (HSA) with employer contribution.
  • Life insurance and Accidental Death & Dismemberment (AD&D) coverage.
  • Employee Assistance Program (EAP) and various voluntary insurance options.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →