RemoteLeaf Logo
Log in Sign up

Sr. Product Security Engineer

3 days, 12 hours ago
United States
Full-time
Senior
Application Security Engineer
Cybersecurity
AWS Bash CI/CD DevSecOps GitHub Actions iOS Node.js Objective-C Python Swift
Apply Now
Raya

Raya

Raya is a global community platform fostering human connections through technology, offering a trusted space to find partners, friends, and collaborations worldwide.

Internet Software & Services
51-250
Founded 2015
View All Jobs 3

Description

  • Lead security reviews of iOS application architecture and design to ensure security is built in from the start.
  • Conduct security-focused code reviews and manage static and dynamic application security testing tools for the iOS app.
  • Oversee identification, assessment, and remediation of vulnerabilities in the iOS application and supporting infrastructure.
  • Perform threat modeling for new features and existing iOS app components and backend services.
  • Drive adoption and enforcement of secure development lifecycle practices within mobile engineering teams.
  • Ensure the security of APIs consumed and exposed by the iOS application.
  • Manage cloud IAM roles and permissions for the mobile backend to improve least-privilege access and cloud security posture.
  • Support incident response activities related to the iOS application, including investigation and remediation.
  • Evaluate, implement, and manage security tools relevant to mobile application security.
  • Provide security guidance and training to mobile developers on secure coding practices.
  • Report on the security posture of the iOS application and related infrastructure to the Head of Information Security.

Requirements

  • 8+ years of experience in a security role with a strong focus on application security.
  • 5+ years of experience in product security engineering with a strong focus on mobile iOS application security.
  • Extensive experience with secure coding principles, mobile security frameworks, and common mobile vulnerabilities such as the OWASP Mobile Top 10.
  • Strong understanding of iOS platform security features and best practices.
  • Proficiency in Swift and Objective-C, including at least 3 years of Swift experience.
  • Proficiency in NodeJS, including at least 3 years of NodeJS experience.
  • 3+ years of experience with cloud security principles and cloud IAM such as AWS IAM as it relates to mobile backend infrastructure.
  • Experience with static and dynamic application security testing tools for mobile applications.
  • 2+ years of experience in a senior or lead security engineer role.
  • Experience with scripting and automation for security tasks, such as Python and Bash.
  • Experience with GitHub Actions.
  • Experience with DevSecOps and CI/CD SCA tools.
  • Strong leadership, communication, analytical, problem-solving, and troubleshooting skills.
  • Ability to prioritize tasks and manage projects effectively in a fast-paced environment.
  • Proficiency with AI coding platforms such as Claude Code and Copilot.
  • Preferred: experience with mobile penetration testing.
  • Preferred: relevant security certifications such as CISSP, CSSLP, or GIAC Mobile Device Security.
  • Preferred: experience integrating security into CI/CD pipelines for mobile applications.
  • Preferred: experience securing artificial intelligence within a mobile product.
  • Preferred: basic experience with Python 3.11+ for scripting and integrations.

Benefits

  • $180,000 - $220,000 annual salary.
  • Remote work option with Los Angeles listed as the alternate location.
  • Full-time employment.
  • Opportunity to work on privacy-focused consumer products with a mobile security emphasis.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Abnormal AI

Senior Software Engineer - Data Security

Abnormal AI Internet Software & Services

Senior Software Engineer, Data Security at Abnormal AI responsible for leading design and implementation of the customer data security and privacy platform to keep sensitive data safe as the company expands into new products, regions, and integrations.

United States Canada Full-time Senior Application Security Engineer
$180k-$258k
GitHub Go Network Security Python Salesforce System Design
19 hours, 45 minutes ago
GuidePoint Security

Application Security Analyst- Remote (Anywhere in the U.S.)

GuidePoint Security 251-1K Internet Software & Services

Application Security Analyst at GuidePoint Security joining the Application Security team to perform assessments and client engagements that identify vulnerabilities, deliver actionable reports, and help clients mature their application security capabilities.

United States Full-time Junior Application Security Engineer
Burp Suite C# C++ DevSecOps IoT Java JavaScript Penetration Testing PHP Postman Python
1 day, 4 hours ago
Brex

Senior Application Security Engineer

Brex 1K-5K Diversified Financial Services

Brex is hiring a Senior Application Security Engineer in Vancouver to find, validate, and help remediate security vulnerabilities across its platform, with growing responsibility for securing AI-driven product features.

Canada Full-time Senior Application Security Engineer
$144k-$180k
AWS GraphQL gRPC Kotlin Kubernetes Penetration Testing Python
3 days, 11 hours ago
Zimperium

Detection Researcher (iOS Focused)

Zimperium 251-1K Professional Services

Zimperium is hiring a remote Detection Researcher focused on iOS to research and build advanced mobile threat detection techniques that protect enterprise devices against jailbreak, hooking, tampering, and other compromise methods.

Latvia United Kingdom Netherlands Romania Spain Germany Argentina Hungary Italy Full-time Senior Application Security Engineer
C iOS Objection Objective-C Penetration Testing Python Swift
3 days, 11 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers