RemoteLeaf Logo
Log in Sign up

Senior Product Security Engineer

2 weeks, 5 days ago
United States
Full-time
Senior
Application Security Engineer
Cybersecurity
AWS CI/CD DevSecOps Docker Kubernetes Ruby Rust TypeScript
Apply Now
Tines

Tines

Tines is a smart, secure workflow builder that empowers technical teams to automate processes without code, making security teams more effective and efficient.

Construction & Engineering
51-250
Founded 2018
$96M raised
View All Jobs 13

Description

  • Partner with product and engineering teams to integrate security throughout the development lifecycle.
  • Lead product security initiatives across the engineering stack.
  • Use AI and automation to scale security coverage and keep pace with AI-assisted development.
  • Design and implement security controls and architecture that scale with the growing product portfolio.
  • Conduct threat modeling and security reviews to identify and mitigate vulnerabilities, including AI-related risks.
  • Contribute to vulnerability management by triaging bug bounty and vulnerability disclosure reports and driving remediation.
  • Develop automated security testing, monitoring, and response capabilities to reduce manual toil.
  • Serve as an incident responder during security events and lead post-incident reviews.
  • Provide security education and technical guidance to engineering teams on secure development practices.

Requirements

  • 8+ years of experience in application or product security roles.
  • Experience securing cloud-native applications.
  • Strong understanding of modern application security principles, OWASP Top 10, and secure SDLC practices.
  • Experience using AI and automation to scale security programs, such as LLM-assisted code review or automated triage.
  • Experience with cloud security, with AWS preferred.
  • Experience securing containerized environments such as Docker and Kubernetes.
  • Proficiency in modern programming languages; experience with Ruby, TypeScript, and/or Rust is highly desirable.
  • Knowledge of security testing methodologies and tools, including SAST, DAST, and SCA.
  • Experience with CI/CD security integration and DevSecOps practices.
  • Strong incident response skills and experience participating in on-call rotations.
  • Excellent communication skills and strong analytical thinking and problem-solving abilities.
  • Must be authorized to work for any employer in the U.S.; visa sponsorship is not available.
  • Preferred experience securing AI/ML systems and LLM-powered features.
  • Preferred familiarity with LLM red-teaming, AI threat modeling frameworks such as MITRE ATLAS or OWASP LLM Top 10, and emerging AI security standards.
  • Preferred hands-on experience building agentic or automated security workflows using Tines or similar platforms.
  • Preferred contributions to open-source security tooling or participation in the security research community.
  • Preferred experience designing secure-by-default developer platforms, paved roads, or golden paths.
  • Preferred background in bug bounty triage at scale or running a public VDP/bug bounty program.
  • Preferred familiarity with multi-tenant SaaS security challenges.
  • Preferred experience supporting FedRAMP Moderate/High and/or DoD Impact Level 4/5/6 environments.
  • Preferred prior experience at a high-growth startup launching new products or expanding product lines.

Benefits

  • Target annual compensation of $218-$235k plus equity.
  • Remote work based in the United States.
  • Opportunity to work in an AI-forward engineering environment on a growing product security program.
  • Equal employment opportunity for all employees and applicants.
  • A culture that emphasizes learning, growth, curiosity, integrity, simplicity, speed, and soundness.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

GuidePoint Security

Senior Application Security Consultant, Strategic Services- Remote (Anywhere in the U.S.)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a Senior Application Security Consultant to deliver client-facing application security assessments and advisory services across industries.

United States Full-time Senior Application Security Engineer
C# C++ DevSecOps Encryption Generative AI Java JavaScript PHP Python
4 hours, 40 minutes ago
instacart.careers

Senior Product Security Engineer II

instacart.careers 1K-5K Internet Software & Services

Instacart is hiring a Security Engineering professional to conduct offensive security work across its products and internal tools while helping strengthen product security and privacy at scale.

United States Full-time Senior Application Security Engineer
$192k-$242k
Penetration Testing
3 days, 4 hours ago
GuidePoint Security

Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is seeking a security engineering professional to help implement and operationalize application security tooling and practices across modern software development environments.

United States Full-time Senior Application Security Engineer
Azure Burp Suite CI/CD CircleCI GitHub Actions Jenkins
4 days, 3 hours ago
instacart.careers

Senior Product Security Engineer II

instacart.careers 1K-5K Internet Software & Services

Instacart is hiring a Security Engineer to join its Security Engineering team and conduct offensive security work across product and internal tools to strengthen the company’s security posture.

Canada Full-time Senior Application Security Engineer
$145k-$152k
Penetration Testing
4 days, 4 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers