RemoteLeaf Logo
Log in Sign up

Senior Staff Engineer - Product Security

1 month, 4 weeks ago
Canada
Full-time
Lead
Application Security Engineer
Software Development
AWS CI/CD CockroachDB DynamoDB GCP Go HTTP Java JSON Kotlin Kubernetes MySQL Python Secrets Management Terraform TypeScript
Apply Now
Faire

Faire

Faire is an online wholesale marketplace connecting independent retailers with unique merchandise from around the world. With flexible payment terms, free returns, and personalized recommendations, Faire empowers small businesses to compete with larger...

Textiles, Apparel & Luxury Goods
1K-5K
Founded 2017
$1500M raised
View All Jobs 7

Description

  • Set the long-term technical direction for application security across Faire's product areas.
  • Lead the design and implementation of reusable security frameworks for authentication, authorization, secrets management, and data protection.
  • Architect and automate security controls in development and deployment pipelines to prevent, detect, and remediate vulnerabilities at scale.
  • Partner with senior engineering and platform leaders on system design, threat modeling, and architecture decisions.
  • Drive cross-functional security initiatives with Platform, Infrastructure, Risk, and Compliance teams.
  • Mentor and guide engineers across the organization to strengthen secure software design and security-first practices.
  • Lead complex security investigations and incident response efforts, including remediation and continuous improvement.
  • Stay current on emerging threats and modern security practices and incorporate them into engineering systems.

Requirements

  • Deep expertise in software security architecture and engineering for large, distributed systems.
  • Strong programming skills in multiple languages such as Kotlin, Python, TypeScript, Java, or Go.
  • Proven technical leadership on company-wide or cross-organizational initiatives that improved security posture, developer experience, or system resilience.
  • Experience building security automation at scale, including CI/CD integrations, vulnerability management pipelines, and automated testing or remediation frameworks.
  • Hands-on experience with cloud environments such as AWS, OCI, or GCP.
  • Experience with Kubernetes, Terraform, and container security.
  • Strong understanding of application security principles, including authentication, authorization, data protection, and OWASP Top 10.
  • Strategic ability to balance risk reduction with engineering velocity and developer enablement.
  • Excellent communication and collaboration skills with the ability to influence senior leaders and cross-functional teams.
  • Passion for mentoring others and building a security-first engineering culture.
  • Experience with infrastructure security, with the opportunity to expand scope into this area over time.

Benefits

  • Canada base salary range of $216,000 to $297,000 per year.
  • Eligible for equity and benefits.
  • Hybrid work schedule with 3 days per week in the office and 2 flexible remote days.
  • Hybrid employees can work remotely up to 4 weeks per year.
  • Reasonable accommodations available throughout the recruitment process for individuals with disabilities.
  • Equal employment opportunities regardless of protected characteristics.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Nebius

Application Security Engineer

Nebius 51-250 Internet Software & Services

Nebius is hiring an Application Security Engineer to help secure its AI cloud platform by identifying vulnerabilities, improving secure development practices, and supporting application security across the software lifecycle.

United Kingdom Europe Netherlands Czech Republic Germany Full-time Mid Level Application Security Engineer
$81k-$259k
Burp Suite Cybersecurity Go Java JavaScript Linux OpenID Connect Penetration Testing Python SAML
4 hours, 37 minutes ago
GuidePoint Security

Senior Application Security Engineer - Southeast region (Remote)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a senior Application Security consultant to help client organizations strengthen and operationalize their AppSec programs through a mix of advisory work, hands-on engineering, and executive-level guidance.

United States Full-time Senior Application Security Engineer
AWS Azure CI/CD DevSecOps GCP Kubernetes Secrets Management
5 hours, 7 minutes ago
Spotify

Security Engineer- Product Security

Spotify Media

Spotify is hiring a Security Engineer for Product Security to secure its platform, infrastructure, and engineering initiatives for hundreds of millions of users across London or Stockholm.

United Kingdom Sweden Full-time Mid Level Application Security Engineer
Agile C++ CI/CD Encryption Generative AI Java Python Scala TypeScript
5 hours, 22 minutes ago
MLabs

Product Security Engineer

MLabs 11-50 Internet Software & Services

MLabs is hiring a Product Security Engineer to secure an enterprise-grade open-source proof-of-stake blockchain platform as it scales across protocol upgrades, EVM-compatible services, and cross-chain infrastructure.

Singapore United Kingdom Switzerland Germany Hong Kong Full-time Senior Application Security Engineer
$75k-$85k
Blockchain CI/CD Encryption gRPC Java Rust
5 hours, 37 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers