# Staff Software Engineer, Product Security

**Company:** [Harvey](https://hotfix.jobs/companies/harvey)
**Location:** San Francisco, CA
**Role:** Security Engineering
**Salary:** $238K-$312K
**Experience:** 8+ years
**Skills:** Application Security, Offensive Security, Vulnerability Remediation, Authentication, Access Control, Cloud Security, AWS, GCP, Azure, Ai/Ml Security, Penetration Testing, Incident Response, Secure Coding, Code Review, Design Review
**Posted:** 2025-04-24

> Leads security integration into AI platform, owns critical code reviews for authentication and access control, architects secure tools, and mentors engineers on security practices. Requires 8+ years in product/application security with proven vulnerability remediation track record.

## Job Description

## What You’ll Do
- Establish and evolve security posture across the engineering organization, setting standards that scale with the company
- Partner with Product Engineering, Infrastructure, and Platform teams to incorporate secure design principles at every stage of development
- Own and review security-critical code across key parts of the product, including authentication and access control
- Architect secure-by-default libraries and tools that make the secure path the easiest choice for developers
- Drive mitigation strategies during security-related incident responses, coordinating cross-functional efforts
- Mentor engineers and raise the security bar across teams through code reviews, design reviews, and technical guidance

## What You Have
- 8+ years of experience in product security, application security, offensive security, and/or security-focused software engineering
- Long track record of identifying and remediating software vulnerabilities, demonstrated through CVEs, bug bounty awards, published research, or prior work experience
- Demonstrated ability to lead cross-functional security initiatives and influence engineering teams without direct authority
- Experience mentoring engineers and raising the quality bar of software engineering teams on security practices
- Strong programming skills with demonstrated experience writing high-quality, production software
- Excellent communication and collaboration skills, particularly when translating security risks into business terms for non-security stakeholders
- Track record of leading complex cross-functional projects and delivering measurable security improvements

## Nice to Have
- Experience building security programs or practices at hyper-growth startups
- Background with cloud environments (Azure, GCP, AWS) and cloud-native security patterns
- Experience with AI/ML systems and emerging security considerations for LLM-based applications

## Compensation Range
$238,000 - $312,000 USD

## Similar roles

- [Staff Security Engineer](https://hotfix.jobs/jobs/staff-security-engineer-at-garner-health-2ab05d1e-6d3d-41fd-9cd0-2db9aa7f3a06) - Garner Health - Remote - $239K-$275K
- [Staff Application Security Engineer](https://hotfix.jobs/jobs/staff-application-security-engineer-at-brex-27742bb6-0d5b-47b1-b69f-37728eafa29e) - Brex - San Francisco, CA - $240K-$300K
- [Member of Technical Staff, Trust & Safety Engineer](https://hotfix.jobs/jobs/member-of-technical-staff-trust-safety-engineer-at-runway-c15de147-f5ea-4ae9-b8b6-f607998489ac) - Runway - Remote - $240K-$290K
- [Staff Software Engineer, Identity & Access Management](https://hotfix.jobs/jobs/staff-software-engineer-identity-access-management-at-snowflake-83dfb71e-a7d4-405a-bd21-8f7cac79fc18) - Snowflake - Bellevue, WA - $236K-$339K
- [Staff, Security Engineer (App & Product Sec)](https://hotfix.jobs/jobs/staff-security-engineer-app-product-sec-at-sprinter-health-77900b76-da29-4ef7-a3a9-373e530e0235) - Sprinter Health - San Francisco, CA - $235K-$300K

**Apply:** https://hotfix.jobs/jobs/staff-software-engineer-product-security-at-harvey-4f4ba226-ff93-456e-87b7-e3f0161e87f1
**Canonical:** https://hotfix.jobs/jobs/staff-software-engineer-product-security-at-harvey-4f4ba226-ff93-456e-87b7-e3f0161e87f1