RemoteLeaf Logo
Log in Sign up

Product Security Tech Lead

22 hours, 46 minutes ago
United States
Full-time
Lead
Application Security Engineer
DevOps and Infrastructure
AWS Bash CI/CD DevSecOps Docker Go Kubernetes Penetration Testing Python WAF
Apply Now
TetraScience

TetraScience

TetraScience is the only vendor neutral, open, cloud native platform purpose built for science, providing next generation lab data automation and scientific data management to accelerate scientific discovery and improve human life.

Biotechnology
51-250
Founded 2019
$99M raised
View All Jobs 7

Description

  • Own and evolve the organization’s application security posture across all product lines.
  • Lead offensive and defensive security assessments, including threat modeling, code review, penetration testing, and vulnerability exploitation.
  • Build and integrate automated security tooling such as SAST, DAST, dependency scanning, and IaC scanning into CI/CD pipelines.
  • Develop security automation and internal tooling using Python, Bash, or Go.
  • Partner with Engineering, DevOps, and Infrastructure teams to design and secure AWS architectures.
  • Oversee incident response and root cause analysis for product and infrastructure security events.
  • Define and enforce secure coding standards and lead threat modeling sessions for critical features and services.
  • Continuously identify vulnerabilities, test assumptions, and improve platform resilience.
  • Lead a team of Security Engineers focused on hardening SaaS and data platforms.

Requirements

  • Bachelor’s degree in computer science or an equivalent degree.
  • 8+ years of hands-on experience in Application, Cloud, or Product Security roles.
  • Lead-level or staff-level responsibilities in prior security roles.
  • Deep expertise in AWS security architecture and service hardening.
  • Advanced programming and scripting ability in Python; Bash or Go is a plus.
  • Proven experience with offensive security, such as hacking, exploit analysis, or red team operations.
  • Strong foundation in vulnerability management, threat modeling, and incident response.
  • Proficiency with DevSecOps tools and modern CI/CD environments.
  • Familiarity with container and orchestration security, including Docker, Kubernetes, and EKS.
  • Certifications such as AWS Certified Security – Specialty, OSCP, or CISSP are a big plus.

Benefits

  • 100% employer-paid benefits for all eligible employees and immediate family members.
  • 401(k) retirement plan.
  • Unlimited paid time off (PTO).
  • Flexible working arrangements.
  • Company-paid life insurance.
  • Company-paid long-term disability and short-term disability coverage.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Owner.com

Application Security Engineer

Owner.com 11-50 Internet Software & Services

Owner.com is hiring a remote Application Security Engineer to secure its restaurant-focused AI growth platform by testing, remediating, and preventing application security issues across the product line.

United States Canada Mexico Colombia Full-time Senior Application Security Engineer
$190k-$220k
Penetration Testing
8 hours, 16 minutes ago
Canary

Senior Application Security Engineer

Canary 11-50 Internet Software & Services

Canary Technologies is hiring a Senior Application Security Engineer to embed security into its fully remote engineering organization and help secure and scale its hospitality software platform.

United States Full-time Senior Application Security Engineer
AWS Burp Suite CI/CD Encryption GitHub Actions GitOps Go Helm JavaScript Kubernetes Penetration Testing Python Secrets Management SonarQube Terraform WAF
9 hours, 46 minutes ago
Pennylane

Senior Application Security Engineer

Pennylane 251-1K Diversified Financial Services

Pennylane is hiring a Senior Application Security Engineer to safeguard its web application, cloud infrastructure, and development practices while supporting compliance and security awareness across a fast-growing remote fintech team.

United Kingdom Croatia France Germany Greece Ireland Italy Poland Portugal Romania Spain Full-time Senior Application Security Engineer
AWS CI/CD JavaScript Kubernetes Penetration Testing Python React Ruby Ruby on Rails
10 hours, 30 minutes ago
Spotify

Security Engineer - Product Security

Spotify Media

Spotify is hiring a Security Engineer for its Product Security team in London or Stockholm to help secure engineering initiatives, application development, and AI-driven systems at global scale.

United Kingdom Sweden Full-time Senior Application Security Engineer Security Engineer
Agile C++ Encryption Generative AI Java Machine Learning Python Scala TypeScript
11 hours, 1 minute ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers