Remoote.app

Work from anywhere. Start here.

JobsFree resume builderCompaniesLog in
Apply

Security Engineer

Posted 24 days agoViewed

View full description

πŸ’Ž Seniority level: Middle, 1+ years

πŸ“ Location: United States

πŸ’Έ Salary: 101500.0 - 178250.0 USD per year

πŸ” Industry: Design-driven platform for building brands and businesses online

🏒 Company: SquarespaceπŸ‘₯ 1001-5000πŸ’° Post-IPO Secondary about 1 year agoDeveloper ToolsPublishingE-Commerce PlatformsWeb DesignSoftware

πŸ—£οΈ Languages: English

⏳ Experience: 1+ years

πŸͺ„ Skills: PythonJavaJavascriptGo

Requirements:
  • Bachelor's degree in Computer Science or a relevant field, or equivalent hands-on experience in the security domain.
  • 1+ years of experience in threat modeling and risk assessments, helping identify security risks and proposing mitigation strategies.
  • Hands-on experience deploying secure coding practices, automation tools, and application security solutions (e.g., SAST, DAST, SCA tools).
  • Experience in programming languages such as Python, Java, JS or Go.
Responsibilities:
  • Demonstrate a broad understanding of security fundamentals to protect the organization's assets and infrastructure.
  • Collaborate with product teams to design security solutions and implement patching workflows.
  • Improve existing security monitoring tools and workflows.
  • Conduct threat modeling and risk assessments to identify vulnerabilities.
  • Communicate complex technical security issues cross-functionally.
Apply

Related Jobs

Apply
πŸ”₯ Staff Security Engineer, Application Security
Posted 3 days ago

πŸ“ United States

🧭 Full-Time

πŸ’Έ 180000.0 - 230000.0 USD per year

πŸ” Cybersecurity

🏒 Company: Trail of BitsπŸ‘₯ 11-50SecurityNational SecurityCyber SecuritySoftware

  • Extensive experience in application security, focusing on identifying and mitigating cloud infrastructure vulnerabilities.
  • Track record of conducting technical security assessments across different platforms.
  • Strong programming and code auditing skills with experience in fuzzing and static analysis tools.
  • Proficiency in programming languages such as Go, Python, Rust, and JavaScript.
  • Ability to communicate complex security concepts effectively and mentor junior engineers.

  • Lead comprehensive security reviews of cloud-native applications and architectures, including cloud platform configurations.
  • Design and implement custom security tools for automated vulnerability detection.
  • Perform detailed architecture reviews and threat modeling, providing remediation guidance.
  • Work directly with industry-leading teams to analyze and recommend security improvements.
  • Contribute to application security advancement through research and development efforts.

AWSDockerPythonCloud ComputingCybersecurityGCPJavascriptKubernetesAPI testingAzureGoRustMicroservices

Posted 3 days ago
Apply
Apply
πŸ”₯ Senior Offensive Security Engineer (IoT Security)
Posted 4 days ago

πŸ“ United States

πŸ’Έ 120000.0 - 175000.0 USD per year

πŸ” Cybersecurity

🏒 Company: PraetorianπŸ‘₯ 101-250πŸ’° $10,000,000 Series A almost 5 years agoPenetration TestingSecurityCloud SecuritySoftware EngineeringCyber SecurityEnterprise SoftwareNetwork Security

  • Demonstrated passion for offensive security and adversarial engineering.
  • 2+ years of IoT security experience in hardware/software reverse engineering, firmware analysis, embedded cryptography, wireless protocols, or IoT PaaS security.
  • Additional experience in product security testing, network security testing, web app penetration testing, and cloud security.
  • Understanding of threat models and attack paths.
  • Ability to write technical reports and present findings.

  • Provide technical execution on offensive security projects focused on IoT Security.
  • Identify nuanced vulnerabilities in advanced systems.
  • Develop custom methodologies, payloads, exploits, and tools.
  • Document mitigation strategies for emerging or undocumented risks.
  • Create comprehensive reports and presentations for clients.
  • Mentor other engineers in technical and professional development.
  • Collaborate with the security community to develop novel attack techniques.

AWSPythonEmbedded SystemsIoTMentoring

Posted 4 days ago
Apply
Apply
πŸ”₯ Senior Offensive Security Engineer (Software Security)
Posted 5 days ago

πŸ“ United States, Canada, Singapore, Poland, UK

πŸ’Έ 120000.0 - 175000.0 USD per year

πŸ” Cybersecurity

🏒 Company: PraetorianπŸ‘₯ 101-250πŸ’° $10,000,000 Series A almost 5 years agoPenetration TestingSecurityCloud SecuritySoftware EngineeringCyber SecurityEnterprise SoftwareNetwork Security

  • Demonstrated passion for offensive security and adversarial engineering.
  • 2+ years of experience in one or more offsec domains: software, hardware, network, or cloud penetration testing.
  • Ability to write technical reports and present technical findings both internally and externally.
  • Experience with startup and/or high-tech companies.
  • Prior security consulting experience a major plus.
  • Software development experience in core offsec languages such as golang or python.
  • Track record in vulnerability research, exploit development, and CVE assignments.

  • Provide technical execution on challenging offensive security projects for our customers.
  • Identify nuanced vulnerabilities in advanced systems.
  • Develop custom methodologies, payloads, exploits, and tools to ensure project success.
  • Develop documentation for novel mitigation strategies to emerging or undocumented security risks identified in client environments.
  • Develop comprehensive reports and presentations for our customers.
  • Serve as a mentor to other engineers in their technical and professional development.
  • Collaborate with the security community to develop novel attack techniques, tactics, and procedures (TTPs) through community engagement.

PythonSoftware Development

Posted 5 days ago
Apply
Apply
πŸ”₯ Senior Security Engineer, Infrastructure Security
Posted 7 days ago

πŸ“ US

🧭 Full-Time

πŸ’Έ 116000.0 - 182000.0 USD per year

πŸ” Technology

🏒 Company: MozillaπŸ‘₯ 5001-10000πŸ’° $300,000 Angel about 20 years agoπŸ«‚ Last layoff 2 months agoInternetOpen SourceWeb BrowsersSoftwareBrowser Extensions

  • 3+ years of relevant hands-on experience in a cybersecurity domain designing, publishing and building security practices.
  • 3+ years of experience translating technical and administrative security controls into actionable platform configurations.
  • Strong infrastructure security knowledge from high-level architectural concepts to implementation.
  • Experience securing large-scale deployments in major cloud stacks (AWS, GCP, or Azure).
  • Proficiency in using Terraform and GitHub Actions.
  • Experience with CNAPP / CSPM / CWPP solutions and Web Application Firewalls.
  • Experience in vulnerability management and with DevOps or SRE teams.
  • Development skills primarily in Python and Go.

  • Protect the services our products depend on from security risks and attacks.
  • Design, implement, and maintain tooling, systems, and processes for securing our cloud infrastructure.
  • Design, review, and improve the security controls of the organization.
  • Write, maintain, and expand security automation and monitoring tools.
  • Work with developers and operations to keep infrastructure safe.
  • Collaborate with cross-functional teams to enhance security practices.
  • Support other cybersecurity functions to improve security posture.

AWSPythonCybersecurityGCPAzureGoCI/CDDevOpsTerraform

Posted 7 days ago
Apply
Apply
πŸ”₯ Senior Security Engineer, Threat Detection [Remote-US]
Posted 8 days ago

πŸ“ U.S.

🧭 Full-Time

πŸ’Έ 200000.0 - 275000.0 USD per year

πŸ” InsurTech

🏒 Company: QuanataπŸ‘₯ 101-250Software EngineeringInformation TechnologySoftware

  • Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent relevant experience).
  • 6 - 8 years of experience in cybersecurity, including 3 or more years in threat hunting, detection, and intelligence roles.
  • Strong expertise with SIEM platforms and SOAR tools.
  • Advanced understanding of application architectures and hands-on experience securing cloud environments.
  • Proficiency in building detection rules and managing automation workflows.
  • Deep knowledge of frameworks like MITRE ATT&CK and Lockheed Martin Cyber Kill Chain.
  • Excellent communication skills with the ability to engage technical and non-technical stakeholders.
  • One or more relevant certifications.

  • Develop, implement, and maintain proactive threat detection capabilities within the SIEM, correlating logs from multiple sources to identify and neutralize threats.
  • Build and manage SOAR playbooks, runbooks, and automation workflows to scale security operations and streamline incident response.
  • Collaborate with product development teams to understand application architectures, data flows, and infrastructure platforms to design effective detection rules.
  • Conduct regular threat hunts and use threat intelligence to identify and mitigate vulnerabilities and risks.
  • Lead efforts to correlate internal and external threat intelligence.
  • Create scalable frameworks to enable team contributions and ensure program sustainability.
  • Engage with product development teams for security insights on new features.
  • Report findings and metrics to stakeholders with actionable recommendations.

PythonCloud ComputingCybersecurity

Posted 8 days ago
Apply
Apply
πŸ”₯ Product Security Engineer
Posted 10 days ago

πŸ“ United States, Brazil, Tel Aviv

πŸ” Cybersecurity

🏒 Company: AxoniusπŸ‘₯ 600-600πŸ’° $200,000,000 Series E 11 months agoAsset ManagementCloud SecurityInformation TechnologyCyber SecurityNetwork Security

  • 2-3 years of experience in application security focused on web applications and APIs.
  • Hands-on experience as a software engineer with proficiency in Python, JavaScript, or similar.
  • Strong knowledge of application security principles, including OWASP Top Ten.
  • Familiarity with security tools such as SAST, DAST, and SCA integrated into CI/CD pipelines.
  • Experience with vulnerability management practices.
  • Experience with cloud environments (AWS, GCP) and modern DevOps tools (Terraform, Docker, Kubernetes).
  • Excellent English and Hebrew communication skills.
  • Strong sense of ownership and ability to work independently or collaboratively.

  • Implement and maintain security tools (e.g., SAST, DAST, SCA) as part of the SDLC.
  • Conduct vulnerability management activities including monitoring and coordinating remediation with development teams.
  • Stay updated with the latest application security threats and improve Axonius' security practices.
  • Develop and maintain security automation scripts.
  • Assist in coordinating external penetration testing engagements.
  • Collaborate with R&D teams and external partners to strengthen product security.
  • Support initiatives like bug bounty programs and internal testing.

AWSDockerPythonGCPJavascriptKubernetesCI/CDTerraform

Posted 10 days ago
Apply
Apply
πŸ”₯ Application Security Engineer
Posted 11 days ago

πŸ“ United States

πŸ’Έ 110400.0 - 138000.0 USD per year

πŸ” SaaS (Software as a Service)

🏒 Company: G-P

  • Education: BS (or higher) in Computer Science or related field, or equivalent work experience.
  • Experience: 3+ years in application security.
  • Excellent communication skills and business acumen.
  • Proficiency in coding/scripting languages (e.g., Python, Go).
  • Web application penetration testing experience.
  • AWS security and engineering knowledge.
  • Experience with developing or testing web application technologies.
  • Nice to have: security certifications, experience with Linux, Docker, Terraform.

  • Support the implementation of G-P’s established application security program.
  • Assess the company's web technologies using enterprise-grade tools.
  • Coordinate remediation efforts with engineering teams.
  • Participate in threat modeling exercises with engineering team members.
  • Triage SCA/SAST/DAST/CSPM findings.
  • Support vulnerability management efforts for networks and infrastructure.
  • Perform security assessments, reviews, and internal penetration tests.
  • Develop scripts and tools to automate repetitive security tasks.

AWSDockerPythonGoREST APITerraformScripting

Posted 11 days ago
Apply
Apply
πŸ”₯ Staff Security Engineer
Posted 28 days ago

πŸ“ USA

πŸ” Cybersecurity

🏒 Company: TinesπŸ‘₯ 101-250πŸ’° $50,000,000 Series B 9 months agoInformation ServicesIndustrial AutomationSecurityData IntegrationCyber SecurityEnterprise SoftwareSoftware

  • 12+ years experience in a security role on a high demand security team.
  • Excellent written and verbal English skills.
  • Deep familiarity with cloud security fundamentals, including deploying and managing services with infrastructure as code using tools like Terraform, Packer, Cloudformation, Ansible, SaltStack, Chef.
  • Familiarity with securing container technologies like Docker or Kubernetes.
  • Experience automating security tasks with SOAR tools and/or languages like Python or Go.
  • Knowledge of command-line usage, log analysis, common attack vectors, and OS hardening for Linux and macOS.
  • Experience participating in an on-call rotation in a fast-paced environment.
  • Excellent analytical and time management skills.

  • Drive security projects that facilitate the business function and protect customers, brand, and employees.
  • Stay informed of security trends and incidents, implementing controls based on lessons learned.
  • Perform security reviews of infrastructure and product features.
  • Scale detection and response capabilities across environment and systems.
  • Review bug bounty and external security reports, recommending mitigating controls.
  • Assist with security questionnaires for prospective customers.
  • Support vendor security reviews.
  • Track vulnerability remediation across environments.
  • Assist with security training for employees.
  • Act as an escalation point for automated detection reviews.
  • Hunt for threats proactively.
  • Perform on-call duties as incident commander during security incidents.
  • Ensure security controls are deployed and tested across cloud environments.
  • Mentor and support junior engineers.
  • Automate processes where possible.

DockerPythonCloud ComputingCybersecurityKubernetesLinuxTerraformAnsible

Posted 28 days ago
Apply
Apply
πŸ”₯ Staff Product Security Engineer
Posted about 1 month ago

πŸ“ USA

πŸ’Έ 150000.0 - 265000.0 USD per year

πŸ” Product security

🏒 Company: NavanπŸ‘₯ 1001-5000πŸ’° $400,000,000 Debt Financing about 2 years agoπŸ«‚ Last layoff about 1 year agoFinancial ServicesPaymentsSoftwareBusiness Travel

  • Proven experience in threat modeling and architecture reviews.
  • Experience delivering critical org-wide product security initiatives.
  • Application, cloud, and mobile penetration testing experience.
  • 8-10 years of experience in Technical Product Security and SSDLC tooling.
  • Ability to provide pragmatic security advice for web and mobile applications.
  • Experience in Agile development and cloud environments such as AWS.
  • Familiarity with application security testing tools and Continuous Integration processes.
  • Knowledge of security protocols, threats, and secure SaaS architecture.

  • Act as the tech lead for high-priority product security initiatives.
  • Ensure timely delivery of impactful initiatives.
  • Advise strategy and roadmap for the Product Security Program.
  • Drive key initiatives like Supply Chain Security, Authentication, and Authorization improvements.
  • Review product designs for security defects and conduct threat modeling.
  • Work with engineers to recommend ideal security designs.
  • Develop security tools and processes for development teams.
  • Provide training and guidance to development teams during the SSDLC.
  • Bring visibility to product vulnerabilities for prioritization and remediation.

AWSDockerGitHibernateCSSJavascriptJenkinsKubernetesJava SpringAngularTerraform

Posted about 1 month ago
Apply
Apply
πŸ”₯ Staff Security Engineer
Posted about 1 month ago

πŸ“ U.S.

🧭 Full-Time

πŸ” Restaurant industry

  • Experience in Blue or Purple Team roles.
  • Passion for identifying risks and analyzing data.
  • Collaborative approach to developing effective strategic mitigation measures.

  • Identify risks and transform them into opportunities for improvement.
  • Design and implement robust security measures ensuring resilience.
  • Protect sensitive data of clients and their customers.
  • Support innovation and solve complex problems.

AWSDockerPythonCybersecurityData AnalysisRisk Management

Posted about 1 month ago
Apply