Product Security Engineer

A leading technology-driven Financial Services organization is seeking a skilled and motivated Product Security Engineer to help ensure the security and resilience of its platforms. This role spans four key areas: Application Security, Cloud Security, DevSecOps, and Threat & Vulnerability Management.

Responsibilities:

Application Security: Conduct secure code reviews, design assessments, and security testing to identify and remediate vulnerabilities.
Cloud Security: Evaluate cloud architectures (primarily AWS), assess configurations, and implement controls to defend against evolving threats.
DevSecOps: Embed security into the software development lifecycle; automate controls within CI/CD pipelines.
Threat & Vulnerability Management: Lead threat modeling, manage vulnerability scans, and coordinate remediation efforts across production workloads.

You will work closely with software engineering, DevOps, and infrastructure teams to build secure products and environments.

Qualifications:

5+ years in cybersecurity and secure software development
Strong programming/scripting skills (e.g., Java, Python, Go, JavaScript)
Expertise in secure coding, threat modeling, and code analysis
Experience with cloud security (especially AWS) and Kubernetes
Proficiency in vulnerability management tools and secure SDLC practices
Familiarity with SAST, SCA, and DAST tools

Preferred Experience:

Background as a developer on high-performing teams
DevSecOps and automated security in CI/CD pipelines
Regulated industry experience (preferably Finance/Crypto)
Knowledge of IaC (Terraform, CloudFormation), secrets management, SPIFFE/SPIRE, Zanzibar/SpiceDB
Experience in distributed system debugging
Prior consultancy experience or published security research (e.g., CVEs)

This role is ideal for professionals who are passionate about security, eager to learn, and thrive in dynamic, cross-functional environments.

For full transparency, only US Citizens & Green Card Holders Only are able to be considered for this vacancy.