RemoteLeaf Logo
Log in Sign up

Principal Product Security Researcher

2 hours, 38 minutes ago
United Kingdom
Full-time
Lead
Application Security Engineer
Cybersecurity
Apply Now
Chainguard

Chainguard

Chainguard: Fortified Software Delivery Security for developers and CISOs, ensuring secure by default infrastructure and zero workflow friction.

Internet Software & Services
51-250
Founded 2021
$55M raised
View All Jobs 36

Description

  • Own the product security research agenda by scanning the broader ecosystem for emerging attack patterns and risks.
  • Research emerging threats and trends in software supply chain and product security and assess their impact on Chainguard’s products and customers.
  • Translate threat intelligence into clear risks, opportunities, and actionable multi-quarter security plans.
  • Design pragmatic mitigations across people, process, and technology that can be adopted in real products and workflows.
  • Lead large-scale initiatives that reduce risk and improve security maturity across multiple product lines and platforms.
  • Partner with Product, Engineering, and Security leadership to influence roadmaps, architecture decisions, and long-term plans.
  • Work with executive and senior engineering leaders to drive org-level security strategy and secure buy-in for major changes.
  • Identify systemic weaknesses and develop root-cause fixes that persist over time.
  • Mentor and uplevel teams across Product Security and Engineering on threats, risk, and security posture.
  • Represent Chainguard externally through talks, conferences, and thought leadership.

Requirements

  • Deep experience in product or application security with a track record of leading research or threat-focused work that drove company-level outcomes.
  • Expert knowledge across secure architecture, application/product security, software supply chain, and org-level risk management.
  • Ability to balance security, velocity, and reliability across multiple domains.
  • Experience owning ambiguous, cross-functional problems and turning them into structured, prioritized initiatives.
  • Proven ability to present complex ideas to executive stakeholders and drive alignment at the highest levels.
  • Strong familiarity with current industry trends, tooling, and research methods, with the ability to apply them pragmatically.
  • Ability to work independently with high ownership while collaborating effectively across teams.
  • Comfort operating in fast-evolving, uncertain environments and building structure where needed.
  • Open to candidates whose experience is close but not a perfect match, as the company encourages applicants from diverse backgrounds.

Benefits

  • Flexible remote-first culture with team meetup opportunities and bi-annual destination summits.
  • Monthly stipend for coworking spaces, phone, and internet costs.
  • Stock options upon hire and promotion, plus participation in secondary offerings and 10 years to exercise options.
  • 100% covered health, vision, and dental insurance premiums for employees and dependents.
  • Unlimited flexible time off.
  • 18 weeks of paid parental leave for birthing parents and 12 weeks for non-birthing parents.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

BrainRocket

Application Security Engineer

BrainRocket 251-1K Internet Software & Services

BrainRocket is hiring a Senior Application Security Engineer to shape secure architecture and product security across cloud infrastructure, applications, and delivery pipelines for its global tech products.

Portugal Full-time Senior Application Security Engineer
Agile AWS CI/CD CloudFormation Docker GitLab Helm JavaScript Kubernetes Python Shell Scripting Terraform TypeScript
1 hour, 53 minutes ago
Thumbtack

Staff Application Security Engineer

Thumbtack 1K-5K Construction & Engineering

Thumbtack is hiring a Security Engineer to shape application security for its cloud-based, AI-enabled home services platform as the company scales.

Remote
Full-time Lead Application Security Engineer
$221k-$286k
AWS CI/CD GCP Secrets Management
3 hours, 38 minutes ago
Alphasense

Staff Product Security

Alphasense 51-250 Industrial Conglomerates

AlphaSense is hiring a Staff Product Security Engineer in the USA to design and secure AI, data, and cloud-native products across the product lifecycle.

United States Full-time Senior Application Security Engineer Machine Learning Engineer
$184k-$252k
AWS Azure CI/CD DevSecOps GCP Java JavaScript Kubernetes Microservices Python Secrets Management
4 hours, 53 minutes ago
Chime

Senior Application Security Engineer

Chime 1K-5K Banks

Chime is hiring a Sr. Full Stack Application Security Engineer to strengthen security across its mobile, API, backend, and CI/CD environments by partnering closely with product and engineering teams to prevent, find, and remediate vulnerabilities.

United States Full-time Senior Application Security Engineer
$213k-$295k
Android Go iOS Penetration Testing Python Ruby
5 hours, 23 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers