Skip to content
HarveyHarveySan Francisco, CA

Staff Software Engineer, Product Security

Leads security integration into AI platform, owns critical code reviews for authentication and access control, architects secure tools, and mentors engineers on security practices. Requires 8+ years in product/application security with proven vulnerability remediation track record.

238k – 312k/yr
Hybrid8+ YOESecurity Engineering

About the role

What You’ll Do

  • Establish and evolve security posture across the engineering organization, setting standards that scale with the company
  • Partner with Product Engineering, Infrastructure, and Platform teams to incorporate secure design principles at every stage of development
  • Own and review security-critical code across key parts of the product, including authentication and access control
  • Architect secure-by-default libraries and tools that make the secure path the easiest choice for developers
  • Drive mitigation strategies during security-related incident responses, coordinating cross-functional efforts
  • Mentor engineers and raise the security bar across teams through code reviews, design reviews, and technical guidance

What You Have

  • 8+ years of experience in product security, application security, offensive security, and/or security-focused software engineering
  • Long track record of identifying and remediating software vulnerabilities, demonstrated through CVEs, bug bounty awards, published research, or prior work experience
  • Demonstrated ability to lead cross-functional security initiatives and influence engineering teams without direct authority
  • Experience mentoring engineers and raising the quality bar of software engineering teams on security practices
  • Strong programming skills with demonstrated experience writing high-quality, production software
  • Excellent communication and collaboration skills, particularly when translating security risks into business terms for non-security stakeholders
  • Track record of leading complex cross-functional projects and delivering measurable security improvements

Nice to Have

  • Experience building security programs or practices at hyper-growth startups
  • Background with cloud environments (Azure, GCP, AWS) and cloud-native security patterns
  • Experience with AI/ML systems and emerging security considerations for LLM-based applications

Compensation Range

$238,000 - $312,000 USD

Skills

Application SecurityOffensive SecurityVulnerability RemediationAuthenticationAccess ControlCloud SecurityAWSGCPAzureAi/Ml SecurityPenetration TestingIncident ResponseSecure CodingCode ReviewDesign Review
Brex

Staff Application Security Engineer

BrexSan Francisco, CA

Lead technical vision and architecture for Brex's Application Security team. Drive AI/ML security strategy, offensive testing, and secure product lifecycle across engineering orgs. Requires 8+ years in appsec with AI security expertise.

240k – 300k/yr
Hybrid8+ YOESecurity Engineering
Runway

Member of Technical Staff, Trust & Safety Engineer

RunwayUnited States

Trust & Safety Engineer building red teaming systems, content moderation infrastructure, and safety tooling for generative AI models. Requires 3+ years software engineering experience with Python/TypeScript and comfort across the stack from model evals to AWS/GCP infrastructure.

240k – 290k/yr
Remote3+ YOESecurity Engineering
Snowflake

Staff Software Engineer, Identity & Access Management

SnowflakeBellevue, WA

Designs and implements identity and access management systems for Snowflake's Data Cloud, focusing on AI security, authentication protocols, and scalable authorization. Requires 10+ years experience with large-scale distributed systems and strong skills in Java/C#/C++.

236k – 339k/yr
On-site10+ YOESecurity Engineering
Datadog

Staff Application Security Engineer

DatadogBoston, MA +1

Leads application security strategy, defines secure frameworks and standards, builds scalable tooling, conducts threat modeling, and mentors engineers. Requires software engineering experience with code review in Go/Python/Rust and deep knowledge of web vulnerabilities, API security, and OWASP practices.

234k – 300k/yr
HybridSecurity Engineering
Databricks

Senior Staff Software Engineer - IAM

DatabricksMountain View, CA

Leads IAM and security engineering to enhance platform trust, plugs infrastructure gaps, and builds large-scale distributed systems. Requires 9+ years in data security, 15+ years in distributed systems, MS/PhD, and expertise in IAM, Kubernetes security, cryptography.

232k – 313k/yr
On-site9+ YOESecurity Engineering