RemoteLeaf Logo
Log in Sign up

Staff Security Engineer, Product Security

1 day, 18 hours ago
United States, Canada
Full-time
Senior
Security Engineer
Cybersecurity
AWS Azure Burp Suite CI/CD GCP Go Java JavaScript Penetration Testing Python
Apply Now
Mozilla

Mozilla

Mozilla, the maker of Firefox, is a non-profit organization ensuring an open, safe, and accessible internet for all users worldwide.

Internet Software & Services
251-1K
Founded 2005
$2M raised
View All Jobs 96

Description

  • Safeguard millions of users by embedding security into Firefox, Mozilla VPN, and other mission-critical products.
  • Ensure software products are secure by integrating security into the full software development lifecycle (SDLC).
  • Anticipate, prioritize, and mitigate risks through threat modeling, security assessments, security testing, and automation.
  • Perform security code reviews.
  • Lead penetration testing on web, mobile, and embedded applications and guide remediation efforts.
  • Develop and maintain automated security tests within CI/CD pipelines to catch vulnerabilities early.
  • Partner with engineers to integrate security throughout the development lifecycle and facilitate secure releases.
  • Help define and enforce security policies and provide guidance to development teams.
  • Help shape Mozilla’s security culture through collaboration, guidance, and education.

Requirements

  • 5+ years of relevant hands-on experience in product and application security.
  • 5+ years of experience with secure coding practices, application security testing (SAST, DAST), threat modeling, and vulnerability assessment.
  • Experience in one or more languages such as Python, Go, Java, or JavaScript for automation and code review.
  • Familiarity with security tools such as Burp Suite, Nessus, and CI/CD automation tools.
  • Strong communication, collaboration, and problem-solving skills.
  • Ability to influence and guide cross-functional teams.
  • Experience with modern architecture and cloud environments such as AWS, Azure, and GCP.
  • Real-world experience, curiosity, passion, and a builder’s mindset are valued more than formal credentials.

Benefits

  • Generous performance-based bonus plans for eligible employees.
  • Rich medical, dental, and vision coverage.
  • Generous retirement contributions with 100% immediate vesting.
  • Quarterly all-company wellness days.
  • Country-specific holidays plus a day off for your birthday.
  • One-time home office stipend.
  • Annual professional development budget.
  • Quarterly well-being stipend.
  • Considerable paid parental leave.
  • Employee referral bonus program.
  • Additional benefits such as life/AD&D, disability, and EAP, varying by country.
  • Remote-friendly work environment open to most locations in the US and Canada.
  • Salary range of $163,000-$217,000 USD for US Tier 1 locations, $150,000-$200,000 USD for US Tier 2 locations, and $138,000-$185,000 USD for US Tier 3 locations.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Prolific

Senior Security Engineer

Prolific 51-250 Professional Services

Prolific is hiring a Senior Security Engineer to support security operations, cloud security, and compliance for a platform handling sensitive data at scale.

United Kingdom Full-time Senior Security Engineer
AWS CI/CD Datadog DevSecOps GCP Kubernetes Penetration Testing SIEM Terraform
1 day, 2 hours ago
Databricks

Specialist Solutions Architect - Cloud Infrastructure & Security

Databricks 1K-5K IT Services

Databricks is seeking a Specialist Solutions Architect focused on Cloud Infrastructure and Security to help customers design, deploy, and secure Databricks environments across public cloud platforms.

United States Full-time Senior Infrastructure Engineer Security Engineer
$264k-$363k
Apache Spark AWS Azure Databricks Encryption GCP Hadoop Java Kafka Network Security OAuth Python SAML Scala SQL Terraform
1 day, 2 hours ago
Hyphen Connect

Senior Security Engineer/ Security Manager (Crypto/ Web3)

Hyphen Connect 1-10 staffing & recruiting

Security Engineer role at a decentralised exchange focused on building secure, scalable on-chain trading infrastructure that combines institutional-grade systems with a simple, safe user experience.

Vietnam Full-time Senior Security Engineer
Ansible Blockchain CI/CD DevSecOps Penetration Testing Terraform
1 day, 3 hours ago
Ensono

Senior IT Security Engineer

Ensono 1K-5K IT Services

Ensono is hiring a Senior Information Security Engineer to design, implement, and maintain enterprise security solutions while leading incident response and supporting global cybersecurity and compliance efforts.

United States Full-time Senior Security Engineer
$112k-$130k
Carbon Black HIPAA Penetration Testing SIEM Splunk
1 day, 3 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers