RemoteLeaf Logo
Log in Sign up

Staff Product Security Engineer

4 hours, 18 minutes ago
Canada
Full-time
Lead
Application Security Engineer
Cybersecurity
AWS Azure CI/CD Java Kotlin OAuth OWASP Python SAML
Apply Now
Affirm

Affirm

Affirm offers a transparent buy now, pay later service founded in 2012 by Max Levchin. No late fees or surprises, just a responsible way to pay over time for your favorite brands.

Diversified Financial Services
1K-5K
Founded 2012
View All Jobs 68

Description

  • Partner with product teams to ensure security is considered in every phase of product development.
  • Conduct threat modeling and architecture reviews to identify, document, and mitigate threats.
  • Review product source code to find security vulnerabilities and recommend secure implementations.
  • Identify opportunities to automate security processes where appropriate.
  • Spot emerging vulnerability classes and develop solutions before they become problems.
  • Help product teams develop security-focused test cases to enforce security requirements.
  • Advise teams on business security requirements early in the product development lifecycle.
  • Break down large cross-team projects into tasks, manage scope, and drive work to closure.

Requirements

  • Deep understanding of web application architecture and design principles.
  • Experience using modern software development and delivery techniques to build cloud-based services.
  • Experience with Python, Kotlin, Java, AWS, and Azure preferred.
  • Knowledge of common security flaws and remediation approaches from OWASP, SANS, and similar sources.
  • Experience with PCI or other regulated environments.
  • Experience conducting threat models for complex, distributed products using standard methodologies.
  • Experience with authentication mechanisms including SAML and OAuth2.
  • Understanding of continuous integration and continuous deployment processes and tools.
  • BS degree in a related field or equivalent experience.
  • MS degree in a related field or equivalent experience is a plus.

Benefits

  • Base pay range of $178,000 to $228,000 CAD per year.
  • Remote-first work environment with flexibility to work almost anywhere within the country of employment.
  • 100% subsidized medical coverage for employees and dependents.
  • Dental and vision coverage for employees and dependents.
  • Monthly stipends for health, wellness, and tech spending.
  • Flexible Spending Wallets for technology, food, lifestyle needs, and family-forming expenses.
  • Competitive vacation and holiday schedules.
  • Employee stock purchase plan with discounted share purchase opportunities.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Marqeta

Intern - Product Security Engineering

Marqeta 251-1K Diversified Financial Services

Marqeta is hiring a Product Security Engineering Intern for a 12-week summer program to support the security of its products and systems in a flexible, remote-friendly FinTech environment.

United States Internship Entry Level Application Security Engineer
$94k-$110k
AWS CI/CD Cybersecurity DevSecOps Go Java JavaScript Python
48 minutes ago
GitLab

Director, Product Security Architecture

GitLab 1K-5K Internet Software & Services

GitLab is seeking a Director, Product Security Architecture to lead its Security Architecture function and partner with product and engineering leaders to turn product security risks into scalable guidance, standards, and risk-reduction programs.

Europe United States Canada Full-time Lead Application Security Engineer Software Architect
$206k-$290k
CI/CD DevSecOps Microservices
5 hours, 18 minutes ago
GitLab

Staff Product Security Architect

GitLab 1K-5K Internet Software & Services

GitLab is hiring a Staff Product Security Architect to partner with its Core DevOps organization and secure the CI/CD platform across the Plan, Create, Verify, and Package stages.

Europe United States Canada Full-time Lead Application Security Engineer
$140k-$270k
CI/CD DevSecOps Encryption GraphQL Secrets Management
5 hours, 48 minutes ago
GitLab

Intermediate Vulnerability Researcher, AST: Vulnerability Research

GitLab 1K-5K Internet Software & Services

GitLab is seeking an Intermediate Vulnerability Researcher to improve how its application security products detect, evaluate, and report software vulnerabilities across the company’s security testing offerings.

United States Full-time Mid Level Application Security Engineer
$98k-$210k
5 hours, 48 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers