RemoteLeaf Logo
Log in Sign up

Senior Staff Engineer - Product Security

1 month, 1 week ago
Canada
Full-time
Lead
Application Security Engineer
Software Development
AWS CI/CD CockroachDB DynamoDB GCP Go HTTP Java JSON Kotlin Kubernetes MySQL Python Secrets Management Terraform TypeScript
Apply Now
Faire

Faire

Faire is an online wholesale marketplace connecting independent retailers with unique merchandise from around the world. With flexible payment terms, free returns, and personalized recommendations, Faire empowers small businesses to compete with larger...

Textiles, Apparel & Luxury Goods
1K-5K
Founded 2017
$1500M raised
View All Jobs 9

Description

  • Set the long-term technical direction for application security across Faire's product areas.
  • Lead the design and implementation of reusable security frameworks for authentication, authorization, secrets management, and data protection.
  • Architect and automate security controls in development and deployment pipelines to prevent, detect, and remediate vulnerabilities at scale.
  • Partner with senior engineering and platform leaders on system design, threat modeling, and architecture decisions.
  • Drive cross-functional security initiatives with Platform, Infrastructure, Risk, and Compliance teams.
  • Mentor and guide engineers across the organization to strengthen secure software design and security-first practices.
  • Lead complex security investigations and incident response efforts, including remediation and continuous improvement.
  • Stay current on emerging threats and modern security practices and incorporate them into engineering systems.

Requirements

  • Deep expertise in software security architecture and engineering for large, distributed systems.
  • Strong programming skills in multiple languages such as Kotlin, Python, TypeScript, Java, or Go.
  • Proven technical leadership on company-wide or cross-organizational initiatives that improved security posture, developer experience, or system resilience.
  • Experience building security automation at scale, including CI/CD integrations, vulnerability management pipelines, and automated testing or remediation frameworks.
  • Hands-on experience with cloud environments such as AWS, OCI, or GCP.
  • Experience with Kubernetes, Terraform, and container security.
  • Strong understanding of application security principles, including authentication, authorization, data protection, and OWASP Top 10.
  • Strategic ability to balance risk reduction with engineering velocity and developer enablement.
  • Excellent communication and collaboration skills with the ability to influence senior leaders and cross-functional teams.
  • Passion for mentoring others and building a security-first engineering culture.
  • Experience with infrastructure security, with the opportunity to expand scope into this area over time.

Benefits

  • Canada base salary range of $216,000 to $297,000 per year.
  • Eligible for equity and benefits.
  • Hybrid work schedule with 3 days per week in the office and 2 flexible remote days.
  • Hybrid employees can work remotely up to 4 weeks per year.
  • Reasonable accommodations available throughout the recruitment process for individuals with disabilities.
  • Equal employment opportunities regardless of protected characteristics.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

e.l.f. Beauty

Senior Application Security Engineer

e.l.f. Beauty 251-1K Consumer Goods

Senior Application Security Engineer role at a remote marketing and digital commerce company focused on securing applications across the software development lifecycle.

India Full-time Lead Application Security Engineer
Agile AWS Azure CI/CD Cybersecurity DevSecOps GCP HTML JavaScript Penetration Testing Python REST API
19 hours, 9 minutes ago
Binance

Binance Accelerator Program - Blockchain / Smart Contract Security

Binance 5K-10K Capital Markets

Binance is seeking a Binance Accelerator Program participant to support smart contract and blockchain security work, including audits, vulnerability analysis, and risk detection across Web3 systems.

Asia Hong Kong Taiwan Internship Entry Level Application Security Engineer
Blockchain Git Python VS Code
1 day, 22 hours ago
Evolve Security Academy

Senior Application Security Tester & AI Red Team Subject Matter Expert

Evolve Security Academy 11-50 Internet Software & Services

Evolve Security is seeking a senior offensive security specialist to lead complex web, API, and AI red team engagements while defining the firm’s testing methodology for LLM-enabled and agentic systems.

United States Full-time Senior AI (Artificial Intelligence) Application Security Engineer
Bash GraphQL JavaScript JWT Metasploit Nmap OpenID Connect Penetration Testing Postman PowerShell Python REST API SAML SPA TypeScript
3 days, 8 hours ago
TOMORROW HIRE

Application Security Engineer - DAST & Burp Suite Enterprise Security Testing

TOMORROW HIRE Internet Software & Services

Application Security Engineer at a fully remote federal contractor supporting secure application development, testing, and compliance for enterprise web applications.

United States Full-time Senior Application Security Engineer
$120k-$140k
Bash Burp Suite C# CI/CD Eclipse Java Linux .NET Python Selenium Unix Visual Studio
3 days, 22 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers