Integrates security into product design, conducts threat modeling and risk assessments, manages secure development pipelines, and triages vulnerabilities. Requires 5+ years in app security, Kubernetes expertise, and strong collaboration with engineering teams.
180k – 225k/yr
Remote5+ YOESecurity Engineering
About the role
What You’ll Do
Collaborate with product and engineering teams to integrate security principles into the design and architecture of products.
Conduct threat modeling and risk assessments to identify vulnerabilities and potential attack vectors across the full product surface.
Manage the Secure Development pipeline including code security and 3rd party library supply chain security.
Stay current on emerging standards and guidance (e.g. OWASP Top 10 for LLMs, MCP security specifications) and translate these into actionable internal policy.
Triage Bug Bounty findings and responsibly disclosed vulnerabilities.
Participate in on-call rotation.
What You’ll Bring
Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).
5+ years in application or product security or a related role.
Proven partnership with engineering teams, bringing security expertise to the planning and development process.
Knowledge of encryption, authentication, and secure communication protocols.
Familiarity with tools like SAST, DAST, and penetration testing frameworks.
Deep understanding of application architecture and design principles, ability to effectively identify vulnerabilities across multiple programming languages.
Kubernetes security posture management and auditing, including workload hardening, RBAC design, and admission control.
Demonstrated experience with multi-tenant security architecture, including data plane isolation, control plane hardening, and cross-tenant data leakage prevention.
Excellent collaboration and communication skills.
Expertise in at least one programming language, familiarity with Python and Go.
Nice to Have
Distributed computing and related vulnerability experience.
Running a Security Champions program.
Open Source automation or automation projects.
Expertise in other areas of security.
Security conference talks or published research.
Compensation
Estimated pay range: $180,000 - $225,000, depending on qualifications and location.
Eligible to participate in Temporal's equity plan.
Senior GRC Engineer responsible for designing, building, and operating automation, integrations, and AI-assisted workflows across governance, risk, and compliance. Leads compliance initiatives including SOC 2, ISO 27001, HIPAA, and FedRAMP while partnering with cross-functional teams to improve security assurance and audit readiness.
180k – 200k/yr
On-site6+ YOESecurity Engineering
Senior Application Security Engineer
MonarchUnited States
Senior Application Security Engineer embedded with product and engineering teams at Monarch, a personal finance platform. Conduct AppSec reviews, SAST/DAST, vulnerability management, and AI security for LLM features on Django/Python stack. Requires 5+ years in security engineering with Python and web security expertise.
180k – 215k/yr
Remote5+ YOESecurity Engineering
Senior Security Engineer, GRC
TemporalUnited States
Senior GRC engineer owning customer security questionnaires, compliance automation, risk assessments, and policy management across SOC 2, ISO 27001, and HIPAA. Requires 8+ years experience, scripting skills, and strong customer-facing communication.
180k – 225k/yr
Remote8+ YOESecurity Engineering
Senior Security Engineer
Kaizen LabsNew York, NY
Own end-to-end security architecture, compliance (FedRAMP, CMMC), and secure supply chain practices for a federal-focused government platform on AWS. Lead technical readiness and drive secure-by-default engineering in an early-stage environment.
180k – 220k/yr
Hybrid5+ YOESecurity Engineering
Manager, Network Security
Lumin DigitalUnited States
Lead and build a new network security function at a fintech company, managing a team of engineers, setting technical direction for cloud-native network security architecture, and establishing automated, identity-aware security controls across cloud, SD-WAN, and ZTNA environments.