Staff Security Engineer

8+ years of progressive experience in product/application security or a related security-focused engineering field. Expert in secure software development practices, security-focused architecture, and infrastructure. Extensive hands-on experience with vulnerability management, secure code review, threat modeling, and industry-standard tools for application and product security. Hands-on experience with at least one scripting language (Python and/or Bash preferred). Demonstrated experience guiding teams and integrating security into agile product delivery. Excellent written and verbal communication skills.

Define and drive the strategic roadmap for proactive security vulnerability analysis in web and mobile applications. Establish the technical vision and program for integrating robust security controls at every stage of the SDLC. Architect, deploy, and manage defensive security tooling. Lead the maturation of the Product and Application Security Program. Lead collaborative and cross-functional threat modeling initiatives for core systems. Act as a force multiplier across the organization, actively mentoring engineers and driving the adoption of secure coding standards. Routinely test, audit, and assess the security posture of application and cloud infrastructure configurations. Engage with Cloud Security efforts by partnering with DevOps and Infrastructure teams. Develop and advocate for cost-effective, scalable, and complex solutions to address application and product security challenges.