RemoteLeaf Logo
Log in Sign up

Principal Product Security Researcher

1 day, 23 hours ago
United States
Full-time
Lead
Application Security Engineer
Cybersecurity
Apply Now
Chainguard

Chainguard

Chainguard: Fortified Software Delivery Security for developers and CISOs, ensuring secure by default infrastructure and zero workflow friction.

Internet Software & Services
51-250
Founded 2021
$55M raised
View All Jobs 54

Description

  • Own the product security research agenda by scanning the broader ecosystem for emerging attack patterns and risks.
  • Research emerging threats and trends in software supply chain and product security and assess their impact on Chainguard’s products and customers.
  • Design pragmatic mitigations across people, process, and technology that can be adopted in practice.
  • Lead large-scale, multi-quarter initiatives that reduce risk and improve security maturity across multiple product lines and platforms.
  • Partner with Product, Engineering, Security, and executive leadership to shape security strategy and influence roadmap decisions.
  • Identify systematic weaknesses and develop durable plans that address root causes.
  • Mentor and uplevel teams across Product Security and Engineering on threats, risk, and long-term security posture.
  • Represent Chainguard externally through talks, conferences, and thought leadership.

Requirements

  • Deep experience in product security or application security with a track record of leading research or threat-focused work that delivered company-level outcomes.
  • Expert knowledge across secure architecture, application/product security, software supply chain, and org-level risk management.
  • Ability to balance security, velocity, and reliability.
  • Experience owning ambiguous, cross-functional problems and turning them into structured, prioritized initiatives.
  • Proven ability to present complex ideas to executive stakeholders and drive alignment.
  • Ability to work independently with high ownership while collaborating effectively with others.
  • Comfort operating in fast-evolving, uncertain contexts and building structure.
  • Strong awareness of industry trends, tooling, and research methods, with the ability to apply them pragmatically.

Benefits

  • Base salary range of $201,000 to $226,000 USD.
  • Flexible remote-first culture with team meetup opportunities and bi-annual destination summits.
  • Monthly stipend for coworking spaces, phone, and internet costs.
  • Stock options upon hire and promotion, plus participation in secondary offerings and 10 years to exercise options.
  • 100% covered health, vision, and dental insurance for employees and dependents.
  • Unlimited flexible time off.
  • 18 weeks of paid parental leave for birthing parents and 12 weeks for non-birthing parents.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

GuidePoint Security

Senior Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a Security Engineering professional to implement and operationalize application security tooling and practices across software development and CI/CD environments for a broad range of customer-facing security engagements.

United States Full-time Senior Application Security Engineer
Azure Burp Suite CI/CD CircleCI GitHub Actions Jenkins
3 hours, 30 minutes ago
GuidePoint Security

Application Security Engineer (Remote in the U.S.)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring an Application Security professional to run and operationalize security testing tools across client development environments and help teams identify and remediate web application risks.

United States Full-time Mid Level Application Security Engineer
Azure Bamboo C# C++ CI/CD GitHub Java JavaScript Jenkins PHP Python
10 hours, 37 minutes ago
ShopBack

Product Security Engineer

ShopBack 1K-5K IT Services

ShopBack is hiring a Product Security Engineer to help secure its cloud-native, microservices, web, and mobile products across the software development lifecycle as the company scales its shopping, rewards, and payments platform.

India Full-time Mid Level Application Security Engineer
Go LLM Microservices Node.js Python TypeScript
1 day, 2 hours ago
Alphasense

Senior Application Security Engineer

Alphasense 51-250 Industrial Conglomerates

AlphaSense is hiring a Senior AI Application Security Engineer to lead hands-on application security for AI-native and agentic features in a fast-moving SaaS engineering environment.

United States Full-time Senior Application Security Engineer
$157k-$216k
AWS Burp Suite CI/CD Docker GitHub GitHub Actions Go Helm Java JavaScript Kotlin Kubernetes Penetration Testing Python Terraform TypeScript
1 day, 16 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers