Skip to content
CrusoeCrusoeSan Francisco, CA

Staff Corporate Security Engineer

Designs and implements Zero Trust, SASE, and identity-based security architectures to protect corporate networks, SaaS platforms, and AI systems. Requires 8+ years experience in SaaS security, IAM, DLP, and device trust.

210k – 255k/yr
On-site8+ YOESecurity Engineering

About the role

Responsibilities

  • Lead design and implementation of Zero Trust Network Access (ZTNA) and Secure Access Service Edge (SASE) architectures, replacing legacy VPNs.
  • Architect preventative SaaS security for Google Workspace, Slack, Okta, including CASB controls.
  • Implement Binary Authorization and device trust with hardware-backed identity (TPM, Secure Enclave).
  • Design and tune Data Loss Prevention (DLP) across endpoints and SaaS.
  • Strengthen email security with MFA and session controls.
  • Architect AI-native security frameworks for agent-based systems (e.g., MCP).
  • Scale identity and access management (SSO, SAML, OAuth, SCIM, JIT access).
  • Define and execute “Crown Jewels” security methodology for high-risk vulnerabilities.

Requirements

  • 8+ years designing Zero Trust, SASE, identity-based security architectures.
  • Strong expertise in SaaS security (CASB, DLP, Google Workspace, Okta, Slack).
  • Experience with device trust, endpoint security, hardware-backed identity.
  • Strong IAM knowledge (SSO, SAML 2.0, OAuth, SCIM).
  • Email security, phishing mitigation, session controls.
  • Application vulnerabilities (IDOR, privilege escalation).
  • AI security challenges, agent-based governance.

Nice-to-Haves

  • CASB and enterprise DLP at scale.
  • Model Context Protocol (MCP) or AI orchestration.
  • “Secure by Default” in high-growth orgs.
  • Cloud-native or AI infrastructure background.

Compensation

  • $210,000 - $255,000 base + bonus + RSUs

Skills

Zero TrustSaseZtnaCasbDlpOktaGoogle WorkspaceSlackSSOSAMLOAuthSCIMTpmSecure EnclaveMFA
NinjaTrader

Staff Security Engineer, Application Security

NinjaTraderChicago, IL

Staff Security Engineer owning application, API, and supply chain security domains. Hands-on role integrating security into engineering workflows via threat modeling, tooling (SAST/SCA/DAST), automation, and risk-based vulnerability management in cloud-native environments.

210k – 260k/yr
Hybrid7+ YOESecurity Engineering
Upside

Staff AppSec Engineer

UpsideWashington, DC

Staff AppSec Engineer owning end-to-end vulnerability identification and remediation. Partner with engineering teams on secure development practices, threat modeling, and AWS security architecture while leveraging AI tools.

210k – 230k/yr
Hybrid6+ YOESecurity Engineering
Upside

Staff Application Security Engineer

UpsideWashington, DC

Staff-level AppSec engineer building secure coding practices and vulnerability management for a commerce platform. Requires 6+ years in application security with deep AWS and Python experience.

210k – 230k/yr
Remote6+ YOESecurity Engineering
Zoox

Senior/Staff Software Systems Engineer

ZooxFoster City, CA

Design and implement formal methods, tools, and processes to verify safety-critical software for autonomous vehicles. Requires 7+ years experience, advanced degree, and strong background in formal verification, Python, and C++.

208k – 300k/yr
Hybrid7+ YOESecurity Engineering
Rula

Staff Software Engineer - Trust & Safety

RulaLos Angeles, CA

Staff-level engineer to found and lead a new Trust & Safety engineering team, architecting systems to detect fraud, billing anomalies, and credential abuse for a mental healthcare platform.

207k – 243k/yr
Remote8+ YOESecurity Engineering