Skip to content
DoppelDoppelUnited States

Product Security Engineer

Product Security Engineer embedding into engineering workflows to conduct architecture reviews, threat modeling, and penetration testing coordination while serving as GCP security SME. Requires 5-7 years experience and strong GCP and Python skills.

175k – 200k
Remote5+ YOESecurity Engineering

About the role

What You Will Do

  • Partner with product and engineering teams to support security architecture reviews for product features and the GCP environment; facilitate threat modeling and document risks, existing controls, and actionable recommendations.
  • Coordinate and support penetration testing engagements by assisting with vendor selection and scoping, establishing rules of engagement, coordinating testing activities, validating findings, supporting severity assessment, and tracking remediation and retesting in collaboration with engineering teams.
  • Serve as a GCP security subject matter expert for project teams, advising on secure patterns across networking (VPC, private access, perimeter controls), data protection (KMS, secrets), compute runtimes (GKE, Cloud Run, GCE), CI/CD (Cloud Build, Artifact Registry), and logging and monitoring.
  • Support the implementation and ongoing improvement of least-privilege IAM in GCP by advising on role design (custom vs. predefined), service account lifecycle management, workload identity, IAM Conditions, organization and folder policy constraints, and periodic access reviews.
  • Assist with triage and routing of product security findings to appropriate engineering owners; help tune detection rules to reduce noise, support severity and SLA definition, and track remediation progress, including documenting justified exceptions.
  • Contribute to security guardrails through policy and infrastructure-as-code (e.g., org policies, constraints, reusable Terraform modules, admission or policy controllers) and support integration of pre-merge security checks into CI/CD workflows.
  • Develop and maintain practical documentation and runbooks (e.g., design review checklists, IAM standards, exception processes) and deliver targeted enablement sessions for engineers and product managers.
  • Provide visibility into progress and risk through metrics and regular status updates to security leadership; proactively surface blockers and suggest options and tradeoffs.
  • Coach and mentor engineers and code owners on secure-by-default coding practices and architectural patterns.

What We Are Looking For

  • 5–7 years of experience in product security, cloud security engineering, or a related field.
  • Strong knowledge of Google Cloud Platform (GCP) services and security best practices, including IAM, networking, data protection, and workload runtimes.
  • Hands-on experience with penetration testing coordination, threat modeling, and risk assessment.
  • Demonstrated proficiency in Python and cloud-native programming or scripting languages to design and maintain security automation, policy enforcement, and continuous compliance controls using Infrastructure as Code.
  • Familiarity with designing and enforcing least-privilege IAM and conducting access reviews.
  • Ability to communicate security risks and recommendations clearly to engineering and leadership audiences.

Skills

GCPIAMPythonTerraformGKECloud RunVpcKmsCloud BuildArtifact Registry
LangChain

Security Compliance Analyst, Privacy

LangChainSan Francisco, CA +1

Build and scale LangChain's privacy compliance program across SOC 2, ISO 27001, GDPR, CCPA, and HIPAA. Partner with engineering and legal to embed controls, manage audits, and support enterprise sales.

175k – 220k
On-site5+ YOESecurity Engineering
Poetic

Security Engineer

PoeticSan Francisco, CA +1

Owns end-to-end security posture including product security, infrastructure hardening, internal tooling, corporate security, and compliance programs like SOC 2 and PCI. Requires 4+ years experience with engineering background and hands-on builder mindset in fast-paced environments.

175k – 225k
On-site4+ YOESecurity Engineering
Liftoff

Security Engineer, Detection & Response

LiftoffUnited States

Security Engineer focused on operating the SIEM, building AI-augmented detection tooling, triaging alerts, and leading incident response for a high-scale mobile adtech platform.

172k – 240k
Remote5+ YOESecurity Engineering
Crusoe

Endpoint Security Engineer

CrusoeSan Francisco, CA +2

Security Engineer responsible for endpoint security architecture, MDM administration (Jamf, Intune), compliance enforcement, and automation across macOS, Windows, iOS, and Android devices. Requires 3-6 years MDM experience, OSQuery/CrowdStrike expertise, and a security-first mindset.

170k – 205k
On-site3+ YOESecurity Engineering
Suno

Software Engineer, Trust & Safety

SunoSan Francisco, CA

Suno is seeking a Software Engineer, Trust & Safety to protect its platform and users from abuse, fraud, and harmful content. This role involves building data pipelines, anomaly detection systems, and internal tools to ensure user safety and platform integrity.

170k – 240k
On-site3+ YOESecurity Engineering