# Staff Software Engineer, Product Security

**Company:** [Harvey](https://hotfix.jobs/companies/harvey)
**Location:** San Francisco, CA
**Role:** Security Engineering
**Salary:** $238k – $312k/yr
**Experience:** 8+ years
**Skills:** Application Security, Offensive Security, Vulnerability Remediation, Authentication, Access Control, Cloud Security, AWS, GCP, Azure, Ai/Ml Security, Penetration Testing, Incident Response, Secure Coding, Code Review, Design Review
**Posted:** 2025-04-24

> Leads security integration into AI platform, owns critical code reviews for authentication and access control, architects secure tools, and mentors engineers on security practices. Requires 8+ years in product/application security with proven vulnerability remediation track record.

## Job Description

## What You’ll Do
- Establish and evolve security posture across the engineering organization, setting standards that scale with the company
- Partner with Product Engineering, Infrastructure, and Platform teams to incorporate secure design principles at every stage of development
- Own and review security-critical code across key parts of the product, including authentication and access control
- Architect secure-by-default libraries and tools that make the secure path the easiest choice for developers
- Drive mitigation strategies during security-related incident responses, coordinating cross-functional efforts
- Mentor engineers and raise the security bar across teams through code reviews, design reviews, and technical guidance

## What You Have
- 8+ years of experience in product security, application security, offensive security, and/or security-focused software engineering
- Long track record of identifying and remediating software vulnerabilities, demonstrated through CVEs, bug bounty awards, published research, or prior work experience
- Demonstrated ability to lead cross-functional security initiatives and influence engineering teams without direct authority
- Experience mentoring engineers and raising the quality bar of software engineering teams on security practices
- Strong programming skills with demonstrated experience writing high-quality, production software
- Excellent communication and collaboration skills, particularly when translating security risks into business terms for non-security stakeholders
- Track record of leading complex cross-functional projects and delivering measurable security improvements

## Nice to Have
- Experience building security programs or practices at hyper-growth startups
- Background with cloud environments (Azure, GCP, AWS) and cloud-native security patterns
- Experience with AI/ML systems and emerging security considerations for LLM-based applications

## Compensation Range
$238,000 - $312,000 USD

## Similar roles

- [Staff Application Security Engineer](https://hotfix.jobs/jobs/27742bb6-0d5b-47b1-b69f-37728eafa29e) - Brex - San Francisco, CA - $240k – $300k/yr
- [Member of Technical Staff, Trust & Safety Engineer](https://hotfix.jobs/jobs/c15de147-f5ea-4ae9-b8b6-f607998489ac) - Runway - Remote - $240k – $290k/yr
- [Staff Software Engineer, Identity & Access Management](https://hotfix.jobs/jobs/83dfb71e-a7d4-405a-bd21-8f7cac79fc18) - Snowflake - Bellevue, WA - $236k – $339k/yr
- [Staff Application Security Engineer](https://hotfix.jobs/jobs/9cc2acb0-f592-40b0-ac68-acdd6085e624) - Datadog - Boston, MA - $234k – $300k/yr
- [Senior Staff Software Engineer - IAM](https://hotfix.jobs/jobs/e3334efa-42e2-47b3-8e84-efb3d3ddc655) - Databricks - Mountain View, CA - $232k – $313k/yr

**Apply:** https://hotfix.jobs/jobs/4f4ba226-ff93-456e-87b7-e3f0161e87f1
**Canonical:** https://hotfix.jobs/jobs/4f4ba226-ff93-456e-87b7-e3f0161e87f1