Skip to content
StripeStripeNew York, NY

Secure Device Mobile Engineer

Secure Stripe endpoints and client platforms by building endpoint security software, operating backend services, and advising on iOS/macOS security best practices. Requires 4+ years securing Apple platforms and 4+ years coding in Go, Swift, or Objective-C.

Salary not listed
On-site4+ YOESecurity Engineering

About the role

Responsibilities

  • Contribute to the secure design and implementation of Stripe’s mobile expansion initiative
  • Act as the subject matter expert on iOS security by advising partner teams on iOS security best practices and secure-by-design architectures
  • Design, build and maintain Stripe’s endpoint security software, including developing telemetry and prevention capabilities via macOS system extensions that run on all Stripe macOS devices
  • Collaborate closely with partner teams to define and measure the secure configuration of Stripe’s client platforms (macOS, iOS/Android, ChromeOS)
  • Operate high RPS backend services providing critical controls and security configuration to Stripe endpoints
  • Drive down usage of unapproved, untrusted software while creating a surprisingly great user experience for onboarding new, approved software
  • Manage and improve device attestation flows to ensure Stripe’s device and user identities are kept secure
  • Identify opportunities on Stripe client platforms to improve our security posture and resiliency against malware and advanced persistent threats
  • Build and maintain a users-first data loss prevention program to protect against accidental and malicious data exfiltration

Requirements

  • 4+ years of relevant experience securing iOS and/or macOS platforms
  • 4+ years of software engineering experience writing Go, Swift or Objective-C
  • Deep expertise securing devices within the Apple ecosystem
  • Understanding of the current threat landscape and how to defend Apple devices against modern threats
  • High standards for code quality and a constructive attitude to help others raise the bar
  • An ability to think creatively and holistically about reducing risk in a complex environment
  • The ability to drive clear next steps when encountering ambiguous spaces without clear lines of ownership
  • Empathy, strong communication skills and a deep respect for the power of collaboration

Nice-to-Haves

  • Experience implementing endpoint detection and response software
  • Knowledge of macOS or iOS internals and how they can be used to build security controls and software
  • Exposure to data loss prevention strategies
  • Ability to develop backend networked applications capable of handling a high number of requests
  • General proficiency in securing client devices
  • Understanding of topics such as platform hardening, malware detection, and endpoint management through configuration as code
  • Understanding of networking protocols across various levels of the stack (TCP, DNS, SSH, TLS, HTTP)
  • Linux system administration knowledge
  • Additional experience securing alternative platforms including Windows and Android
  • Experience working with AWS cloud services

Skills

GoSwiftObjective-CIos SecurityMacos SecurityEndpoint SecurityData Loss PreventionAWSLinuxNetworking
Forus

Security Program Manager

ForusNew York, NY

Own end-to-end compliance programs (SOC 2, HIPAA, HITRUST), build customer trust function, implement automation, and partner with engineering on controls for a healthcare AI platform handling protected health information.

Salary not listed
On-site4+ YOESecurity Engineering
Anthropic

Safeguards Enforcement Analyst, Account Takeover & Credential Abuse

AnthropicSan Francisco, CA +2

Safeguards Enforcement Analyst focused on account takeover and credential abuse. Investigate compromise incidents, design remediation workflows, partner with engineering on detection, enforce AI usage policies, and develop scalable enforcement programs for platform safety.

245k – 285k/yr
HybridSecurity Engineering
Zocdoc

Application Security Engineer

ZocdocUnited States

Application Security Engineer partnering with engineering teams to embed security into the SDLC, triage SAST/SCA findings, provide remediation guidance on OWASP issues, maintain security docs/playbooks, support governance/audits, and integrate GenAI tools while building AI governance guardrails.

100k – 140k/yr
RemoteSecurity Engineering
Cloudflare

Detection & Mitigation Engineer

CloudflareUnited States

Security Detections Engineer identifying attacker TTPs, building real-time detections, and mitigating threats/abuse across Cloudflare's global platform using data analysis, SQL, scripting, and threat intelligence. Requires strong analytical and communication skills.

Salary not listed
HybridSecurity Engineering
Mintlify

Security & Compliance Operations Manager

MintlifySan Francisco, CA

Own and run Mintlify's end-to-end security and compliance programs (SOC 2, ISO 27001/42001, GDPR, Microsoft SSPA) as the first dedicated GRC Program Manager. Administer Drata, manage audits/vendors/evidence, handle customer-facing compliance, and coordinate with engineering.

120k – 180k/yr
On-site3+ YOESecurity Engineering