Staff Engineer
Staff-level IC building fraud detection, risk decisioning, and investigation tooling for a nonprofit fundraising platform. Requires 8+ years experience in adversarial domains and strong backend fundamentals.
Staff Product Security Engineer
Hands-on staff security engineer building guardrails, tooling, and automations to secure Rippling's web applications. Requires 10+ years in product security, fluency in Python/React/DRF, and experience embedding security into SDLC and CI/CD.
189k – 315kSeattle, WASan Francisco, CANew York, NYSecurity EngineeringHybrid10+ YOE
About the role
What You'll Do
- Build guardrails and controls to eliminate full classes of vulnerabilities within the Rippling application
- Build security tooling and automations to help scale the Product Security team’s practices
- Threat-model application designs and solutions and provide security assessments
- Audit source code and perform code review for critical application changes
- Mentor software engineering teams in security best practices
- Provide hands-on remediation guidance to development teams
- Review & establish software development practices that make security an essential part of the development process
- Develop / Integrate security into the Software Development Life Cycle
Qualifications
- 10+ years of experience in a product security role
- Experience leading architectural changes or complex cross team efforts to mitigate security vulnerabilities
- Deep understanding of securing web applications
- Fluency in Python, React, and Django Rest Framework
- Experience with manual source code review, and embedding security to code in production environments
- Experience with deploying application security tools in the CI/CD pipeline
- Experience with securing software development lifecycle including building programs that eliminate full classes of vulnerabilities
Bonus Points
- Good understanding of SSO, including OAUTH, SAML
- Experience with speaking at meetups or conferences
- Experience running a bug bounty program
Skills
PythonReactDjango Rest FrameworkCI/CDSource Code ReviewThreat ModelingApplication SecuritySSOOAuthSAMLBug Bounty
Similar roles
Security Engineering jobsSenior/Staff Network Security Engineer
As a Senior/Staff Network Security Engineer, you will design, implement, and operate security controls across Zoox's enterprise, OT networks, and cloud infrastructure. This role involves securing hybrid/multi-cloud architectures, managing firewall platforms, and driving automation with IaC.
Staff Threat Intelligence Analyst
Lead threat intelligence research and reporting to identify emerging adversary tradecraft, produce customer and marketing reports, and guide product roadmap for a cybersecurity company.
Staff Software Engineer, Anti-Abuse & Security
Staff engineer building AI-powered anti-abuse detection systems, LLM guardrails, and automated responses to phishing, cryptomining, and platform exploitation. Requires 8+ years in security engineering with Python/TypeScript and ML/LLM experience.