RemoteLeaf Logo
Log in Sign up

Senior Product Security Analyst

2 hours, 32 minutes ago
United States, Canada, United Kingdom, Greece, Poland, Portugal
Full-time
Senior
Application Security Engineer
Software Development
Agile AWS Microservices Penetration Testing
Apply Now
Omilia

Omilia

Omilia is a global leader in Conversational AI, offering AI-based self-service solutions for enhanced customer care fulfillment and success.

IT Services
251-1K
Founded 2002
$20M raised
View All Jobs 13

Description

  • Own end-to-end security reviews for assigned products and services from design through release.
  • Lead architecture reviews, threat modeling, and secure design validation for APIs, microservices, and SaaS platforms.
  • Assess security risk independently and approve, delay, or block releases when necessary.
  • Provide risk-based guidance to engineering teams on security findings, remediation, and trade-offs.
  • Own vulnerability triage and prioritization based on exploitability, exposure, and business impact.
  • Interpret results from SAST, DAST, SCA, and manual reviews and translate them into actionable remediation guidance.
  • Monitor external threats, attack techniques, and vulnerability trends relevant to products and platforms.
  • Support investigation and remediation of product and application security incidents.
  • Partner with engineering, platform, and cloud teams to embed secure-by-design practices into the SDLC.
  • Contribute to the evolution of application security standards, guardrails, review practices, and program maturity.

Requirements

  • 5+ years of experience in application security, product security, or a closely related domain.
  • Strong understanding of secure SDLC, OWASP Top 10, threat modeling, vulnerability management, and security risk assessment.
  • Experience owning end-to-end security reviews for applications or products, including release decision support.
  • Hands-on familiarity with SAST, DAST, and SCA, with the ability to interpret findings and assess real-world risk.
  • Experience working with cloud-native SaaS environments, preferably AWS, and API-driven microservice architectures.
  • Working knowledge of PCI DSS and GDPR.
  • Ability to apply independent technical and risk judgment and challenge assumptions to drive remediation.
  • Strong communication skills for both technical and business stakeholders, with excellent verbal and written English.
  • Experience working in agile or iterative development environments.
  • Willingness to collaborate across distributed teams and time zones with reasonable flexibility.
  • Bachelor’s or Master’s degree in Computer Science, Information Security, or a related technical field (nice to have).
  • Relevant certifications such as CCSP, CSSLP, AWS Certified Security, or AWS Solutions Architect (nice to have).
  • Experience with manual application security testing, secure design reviews, or API security analysis (nice to have).
  • Exposure to customer-facing SaaS platforms with regulatory or data protection requirements (nice to have).
  • Familiarity with AI-enabled or data-intensive systems and emerging application security and privacy considerations (nice to have).
  • Experience contributing to security standards, review patterns, or guardrails across multiple teams or products (nice to have).
  • Background in rapidly scaling organizations that are maturing security and compliance practices (nice to have).

Benefits

  • Fixed compensation.
  • Long-term employment with working days vacation.
  • Development support for professional growth, including courses and training.
  • Opportunity to work on cutting-edge technology products with global impact in the service industry.
  • Supportive, fun-to-work-with colleagues.
  • Apple gear provided.
  • Equal opportunity employer with a diverse and inclusive workplace.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Spotify

Security Engineer - Product Security

Spotify Media

Spotify is hiring a Security Engineer for its Product Security team in London or Stockholm to help secure engineering initiatives, application development, and AI-driven systems at global scale.

United Kingdom Sweden Full-time Senior Application Security Engineer Security Engineer
Agile C++ Encryption Generative AI Java Machine Learning Python Scala TypeScript
2 minutes ago
Magnet Forensics

Vulnerability Researcher

Magnet Forensics 251-1K Internet Software & Services

Magnet Forensics is hiring a U.S.-based, remote Vulnerability Researcher to support digital investigative software used to analyze evidence from computers, smartphones, tablets, and IoT devices.

United States Full-time Mid Level Application Security Engineer
$150k-$200k
IoT
1 hour, 2 minutes ago
MoonPay

Application Security Engineer

MoonPay 251-1K Diversified Financial Services

MoonPay is hiring a remote Application Security Engineer to strengthen the security of its digital currency payments platform through application security reviews, testing, and cross-team remediation support.

United States United Kingdom Poland Portugal Spain South Africa Full-time Senior Application Security Engineer
Blockchain CI/CD Cloudflare GraphQL JavaScript Penetration Testing REST API TypeScript
1 hour, 32 minutes ago
EasyPost

Application Security Engineer

EasyPost 51-250 Air Freight & Logistics

EasyPost is hiring a remote Application Security Engineer III to lead security architecture and embed application security across the software lifecycle for its shipping platform.

United States Full-time Senior Application Security Engineer
$150k-$173k
AWS Azure CI/CD DevSecOps GCP Go HIPAA Linux macOS Python REST API Ruby Rust
5 hours, 17 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers