# Product Security Engineer
**Company:** [Idme](https://hotfix.jobs/companies/idme)
**Location:** Mountain View, CA, McLean, VA
**Salary:** $168K-$200K
**Experience:** 5+ years
**Skills:** Python, Java, GCP, GKE, Terraform, Kubernetes, Docker, IAM, Secret Manager, Cloud Armor, Vpc Service Controls, Private Service Connect
**Posted:** 2026-01-27
> Implements security solutions and automation for cloud, containers, and applications on GCP. Troubleshoots production issues, executes vulnerability remediation, and builds security infrastructure using Python/Java and Terraform. Requires 5+ years security/engineering experience.
## Job Description
## What You'll Do

- Implement complex security solutions, including Cloud and SaaS security, and service account protections, and Application Security.
- Build production-ready security automation using Python or Java to scale security operations and reduce manual toil
- Execute security projects from requirements through deployment with minimal guidance, delivering high-quality results on time
- Troubleshoot complex security issues in production environments, conducting deep technical analysis and implementing fixes quickly
- Implement GKE security controls
- Build and maintain cloud security infrastructure using Terraform
- Configure GCP security services such as VPC Service Controls, Private Service Connect, Cloud Armor policies, IAM roles, and Secret Manager
- Execute API security assessments by conducting security reviews, identifying vulnerabilities, and implementing remediation
- Execute vulnerability remediation workflows for application, container, Cloud, and SaaS vulnerabilities within defined SLAs
- Build security dashboards and reporting to track vulnerability MTTR, security control effectiveness, and false positive rates

## Basic Qualifications

- 5+ years in security and/or software engineering, with focus on implementation and execution
- 5+ years of hands-on programming in Python or Java with demonstrated ability to build production-quality security tooling and automation
- 3+ years of hands-on GCP experience including GKE, Cloud Run, IAM, Secret Manager, and security services
- Container / mesh networks (GKE, Docker, Kubernetes security, image scanning, Binary Authorization, SBOM)
- Infrastructure-as-code proficiency (Terraform preferred) for deploying and maintaining security infrastructure
- Troubleshooting expertise with ability to debug complex issues in production cloud environments

## Preferred Qualifications

- GCP Professional Cloud Architect or Professional Cloud Security Engineer certification
- OSCP or comparable hands-on offensive-security certifications (e.g., OSEP, GXPN, PNPT) demonstrating strong adversarial reasoning and exploit-focused problem-solving capability.
- Experience with offensive-security methodologies (e.g., understanding attack chains, exploitation fundamentals, or red-team tooling) applied to defensive engineering contexts
- Interest in applied security research—such as vulnerability discovery, protocol analysis, or emerging-threat investigation

## Compensation

Mountain View, CA Pay Range $168,472—$200,000 USD
**Apply:** https://hotfix.jobs/jobs/product-security-engineer-at-idme-0fd3ebce-c09c-4a0e-99a0-5a1ec76267b5
**Canonical:** https://hotfix.jobs/jobs/product-security-engineer-at-idme-0fd3ebce-c09c-4a0e-99a0-5a1ec76267b5