RemoteLeaf Logo
Log in Sign up

Senior Staff Engineer - Product Security

13 hours, 23 minutes ago
Canada
Full-time
Lead
Application Security Engineer
Software Development
AWS CI/CD CockroachDB DynamoDB GCP Go HTTP Java JSON Kotlin Kubernetes MySQL Python Secrets Management Terraform TypeScript
Apply Now
Faire

Faire

Faire is an online wholesale marketplace connecting independent retailers with unique merchandise from around the world. With flexible payment terms, free returns, and personalized recommendations, Faire empowers small businesses to compete with larger...

Textiles, Apparel & Luxury Goods
1K-5K
Founded 2017
$1500M raised
View All Jobs 7

Description

  • Set the long-term technical direction for application security across Faire's product areas.
  • Lead the design and implementation of reusable security frameworks for authentication, authorization, secrets management, and data protection.
  • Architect and automate security controls in development and deployment pipelines to prevent, detect, and remediate vulnerabilities at scale.
  • Partner with senior engineering and platform leaders on system design, threat modeling, and architecture decisions.
  • Drive cross-functional security initiatives with Platform, Infrastructure, Risk, and Compliance teams.
  • Mentor and guide engineers across the organization to strengthen secure software design and security-first practices.
  • Lead complex security investigations and incident response efforts, including remediation and continuous improvement.
  • Stay current on emerging threats and modern security practices and incorporate them into engineering systems.

Requirements

  • Deep expertise in software security architecture and engineering for large, distributed systems.
  • Strong programming skills in multiple languages such as Kotlin, Python, TypeScript, Java, or Go.
  • Proven technical leadership on company-wide or cross-organizational initiatives that improved security posture, developer experience, or system resilience.
  • Experience building security automation at scale, including CI/CD integrations, vulnerability management pipelines, and automated testing or remediation frameworks.
  • Hands-on experience with cloud environments such as AWS, OCI, or GCP.
  • Experience with Kubernetes, Terraform, and container security.
  • Strong understanding of application security principles, including authentication, authorization, data protection, and OWASP Top 10.
  • Strategic ability to balance risk reduction with engineering velocity and developer enablement.
  • Excellent communication and collaboration skills with the ability to influence senior leaders and cross-functional teams.
  • Passion for mentoring others and building a security-first engineering culture.
  • Experience with infrastructure security, with the opportunity to expand scope into this area over time.

Benefits

  • Canada base salary range of $216,000 to $297,000 per year.
  • Eligible for equity and benefits.
  • Hybrid work schedule with 3 days per week in the office and 2 flexible remote days.
  • Hybrid employees can work remotely up to 4 weeks per year.
  • Reasonable accommodations available throughout the recruitment process for individuals with disabilities.
  • Equal employment opportunities regardless of protected characteristics.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Coinbase

Blockchain Security Engineer

Coinbase 1K-5K Capital Markets

Coinbase is hiring a Blockchain Security Engineer for its Decentralized Financial Security Team to help design and secure upcoming crypto products and features used by millions of customers.

United States Full-time Senior Application Security Engineer
$152k-$179k
Blockchain Databricks Generative AI Snowflake
10 hours, 38 minutes ago
Veeam Software

Application Security Engineer - Pentester

Veeam Software 1K-5K Internet Software & Services

Veeam is hiring an Application Security Engineer (Offensive Testing) to lead penetration testing and DAST for Veeam Data Cloud products and help engineering teams remediate exploitable web and API security issues.

Czech Republic Full-time Senior Application Security Engineer Penetration Tester
Burp Suite CI/CD OAuth OpenID Connect Penetration Testing SAML
11 hours, 23 minutes ago
Brex

Senior Application Security Engineer

Brex 1K-5K Diversified Financial Services

Brex is hiring a Senior Application Security Engineer to secure its financial platform by identifying vulnerabilities, improving secure development practices, and helping protect new AI-driven product features.

Anywhere Full-time Senior Application Security Engineer
$192k-$240k
AWS GraphQL gRPC Kotlin Kubernetes Penetration Testing Python
12 hours, 53 minutes ago
Quanata

Senior Application Security Engineer [Remote-US]

Quanata 201-500 information technology & services

Quanata is hiring a Senior Application Security Engineer to partner with web, backend, and data science teams to embed security across the software development lifecycle for its context-based insurance products.

United States Full-time Senior Application Security Engineer
$220k-$350k
AWS CI/CD Docker GraphQL JavaScript Kubernetes Microservices Node.js Penetration Testing REST API SonarQube TypeScript
12 hours, 53 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers