Cloud Security Engineer
Secures multi-cloud infrastructure (AWS, Azure, GCP, OCI) with emphasis on Kubernetes hardening, IAM enforcement, CSPM using Wiz, and IaC security. Requires 5+ years experience, deep AWS and Kubernetes security expertise.
Product Security Engineer
Embeds security into product design and development lifecycle by analyzing architectures, conducting threat modeling and assessments, maturing vulnerability management, and guiding developers on secure practices. Requires 5+ years in product/application security with expertise in cloud, containers, and automation tools.
125k – 160kSunnyvale, CASecurity EngineeringOnsite5+ YOE
About the role
Responsibilities
- Analyze applications and system architectures from inception to release, identify vulnerabilities, integrate security controls, conduct architecture reviews and threat modeling.
- Conduct regular security assessments and utilize AI-assisted testing on products and systems to identify and mitigate vulnerabilities.
- Assist in maturing vulnerability management program and drive risk-contextualized resolutions, collaborating with development teams.
- Provide continuous guidance and education to developers on secure coding practices, emerging threats, and security best practices.
- Collaborate with incident response teams on security incidents impacting product operations and create remediation suggestions.
- Work with software engineers to mature automated SAST and DAST tooling to secure development frameworks and CI/CD pipelines.
Requirements
- 5+ years of experience as a Security Engineer, Application Security Engineer, or Product Security Engineer in a highly complex, rapidly scaling software organization.
- Proficiency in modern programming languages (Python, TypeScript, etc.), security tools (Burp Suite, OWASP ZAP), modern security protocols and encryption methods.
- Implemented AI to identify, validate, and scale security programs.
- Deep knowledge of container security (Kubernetes), compute constraints, securing ephemeral workloads across AWS, GCP, Azure, and on-premises environments.
- Hands-on experience deploying, tuning, and automating SAST, DAST, and CI/CD pipeline security tools.
- Experience configuring and driving remediation through cloud security platforms.
- Proven experience securing large-scale platform migrations and managing security lifecycles of legacy systems and modern microservices.
Nice to Haves
- Experience in autonomous vehicle, automotive, aerospace, or defense sectors.
- Familiarity with physics-based simulation environments, deterministic computing constraints, or HPC clusters.
- Contributions to open-source security tools, published vulnerability research, or CVEs.
Compensation
- Base salary: $125,000 - $160,000 USD annually.
- Includes equity, comprehensive health/dental/vision/life/disability insurance, 401k with employer match, learning/wellness stipends, paid time off.
Skills
PythonTypeScriptKubernetesAWSGCPAzureBurp SuiteOwasp ZapSASTDASTCI/CDSast ToolingDast Tooling
Similar roles
Security Engineering jobsSecurity Engineer, Research & Engineering
Designs and builds security tools and frameworks in Rust, C++, Python for AI/ML, compilers, and low-level systems. Contributes to open-source, performs code reviews, and communicates findings via blogs and presentations.
Corporate Security Lead
Builds and leads corporate IT security operations including helpdesk, endpoint management, SIEM deployment, and team hiring for a space communications company. Requires 5+ years in IT/security/DevSecOps, hands-on tools like Okta and AWS, and compliance knowledge.
Threat Analyst
Analyzes software supply chain threats using AI scanners, conducts malware analysis and threat hunting, builds automation tools, and integrates research into products to protect open source ecosystems. Requires 3+ years in security operations and master's degree.
Security Software Engineer II, Security Operations
Builds and improves security tooling, automations, and workflows for Security Operations at Pinterest. Partners with engineering teams on cloud security, access management, and infrastructure using AWS, Terraform, and AI-assisted development. Requires cloud/security engineering experience and bachelor's degree.