Product Security Engineer Jobs

New

Staff Product Security Engineer

We’re looking for a Staff Product Security Engineer to lead the design and imple...

Location

United States

Salary:

184000.00 - 252000.00 USD / Year

AlphaSense

Expiration Date

Until further notice

Requirements

7+ years of experience in product, application, or cloud security engineering
Deep understanding of secure SDLC, threat modeling, and secure architecture design
Proven expertise with AWS cloud security concepts and best practices
Strong experience with container security, orchestration, and runtime protection
Proficiency in Python, Java, and/or JavaScript for security automation, code review, and tooling
Experience securing AI/ML pipelines, data workflows, or model-serving infrastructure
Familiarity with DevSecOps and continuous integration/deployment environments

Job Responsibility

Embed robust security practices throughout the software and AI development lifecycle (SDLC)
Lead secure design reviews, threat modeling, and risk assessments for AI-driven products, APIs, and backend services
Partner with engineering and product teams to ensure security, privacy, and compliance by design
Build and maintain security automation and governance frameworks that integrate seamlessly into development workflows
Architect and enforce security controls for AI/ML systems, including model training, data pipelines, and inference environments
Identify and mitigate AI-specific attack vectors such as data poisoning, model inversion, prompt injection, and model theft
Collaborate with governance and compliance teams to align with ethical AI principles and frameworks like NIST AI RMF and the EU AI Act
Implement model provenance, integrity, and auditability controls to ensure responsible and secure AI operations
Partner with DevOps and SRE teams to secure service meshes, container networking, and secrets management
Drive software supply chain security, including artifact integrity, dependency management, and vulnerability reduction

What we offer

Competitive compensation, benefits, and career growth opportunities
Opportunity to shape and drive product security strategy
Collaborative and security-minded engineering culture
Work on cutting-edge security challenges in a fast-growing company
Performance-based bonus, equity, and a generous benefits program

Fulltime

New

Security Engineer - Product & Production Infrastructure

Wiz is looking for a Security Engineer for Product & Production Infrastructure w...

Location

United Kingdom

Salary:

Not provided

Wiz

Expiration Date

Until further notice

Requirements

5+ years of experience in security engineering or security operations work in cloud environments
AWS platforms and services (we will also consider equivalent experience in Azure and GCP)
Kubernetes (AWS EKS) and container infrastructure
IAM and managing cloud identities at-scale
Secure development and application of IAC solutions (Terraform, Helm)
Cloud-native observability and management tools
Development experience in Go, Python and Rust

Job Responsibility

Lead threat modeling and security review exercises across Wiz’s production and CI/CD environments – identifying and mitigating risks in our products and the cloud services that support them
Drive vulnerability management and remediation efforts – prioritizing issues, implementing mitigations, and designing strategic preventative controls
Extend our detection and response capabilities – building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Build deep functional partnerships with Wiz’s engineering and operations teams – helping them deliver secure-by-design solutions

New

Security Engineer - Product & Production Infrastructure

Wiz is looking for a Security Engineer for Product & Production Infrastructure w...

Location

United States

Salary:

204000.00 - 281000.00 USD / Year

Wiz

Expiration Date

Until further notice

Requirements

7+ years of experience in security engineering or security operations work in cloud environments
Strong AWS cloud security experience (we will also consider equivalent experience in Azure and GCP)
Cloud native Kubernetes services (EKS/GKE/AKS) and strong container security principles
Deep understanding of securing IAM and cloud identities at scale
Proven ability to lead technical security reviews of products and architectures, conduct threat modeling exercises, and translate findings into actionable security controls
Practical understanding of web application security concepts (such as OWASP Top-10 and similar)
Hands-on experience with IAC and related tools (Terraform, CloudFormation, Helm, Pulumi)
Experience with automation and tooling development in one or more: Python, Go, Shell, HCL, Rego

Job Responsibility

Lead threat modeling and security reviews across Wiz's products and cloud infrastructure, identifying attack surfaces and developing scalable mitigation strategies
Build automation, policy-as-code, and security tooling that enables development teams to "shift left" and integrate end-to-end security into their workflows
Design and implement secure baselines for cloud resources and Kubernetes based infrastructure
Drive vulnerability management and remediation efforts – prioritizing issues, implementing mitigations, and designing strategic preventative controls in software supply chains from development through production
Extend our detection and response capabilities – building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Collaborate with our Wiz Federal team – extending our DevSecOps and Product Security practices to Wiz's FedRAMP environment and ensure it meets key security requirements
Build deep functional partnerships with Wiz's engineering and operations teams – helping them deliver secure-by-design solutions

What we offer

Medical, dental and vision insurance
Home Office Setup reimbursement
Flexible Spending Accounts
Monthly Connectivity reimbursement
Employee Assistance Program (EAP)
Short- and Long-term Disability Insurance
Life & Accident Insurance
401(k) Retirement Savings Plan (with employer match)
Flexible paid time off + 11 paid holidays
Paid leave programs, including parental, pregnancy health, medical and bereavement leave

Fulltime

New

Security Engineer - Product & Production Infrastructure

Wiz is looking for a Security Engineer for Product & Production Infrastructure w...

Location

Germany

Salary:

Not provided

Wiz

Expiration Date

Until further notice

Requirements

5+ years of experience in security engineering or security operations work in cloud environments
AWS platforms and services (we will also consider equivalent experience in Azure and GCP)
Kubernetes (AWS EKS) and container infrastructure
IAM and managing cloud identities at-scale
Secure development and application of IAC solutions (Terraform, Helm)
Cloud-native observability and management tools
Development experience in Go, Python and Rust

Job Responsibility

Lead threat modeling and security review exercises across Wiz’s production and CI/CD environments – identifying and mitigating risks in our products and the cloud services that support them
Drive vulnerability management and remediation efforts – prioritizing issues, implementing mitigations, and designing strategic preventative controls
Extend our detection and response capabilities – building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Build deep functional partnerships with Wiz’s engineering and operations teams – helping them deliver secure-by-design solutions

Senior Product Security Engineer

Join our Product Security team, where you'll partner with development and game t...

Location

United States , Las Vegas

Salary:

Not provided

Take-Two Interactive Software, Inc.

Expiration Date

Until further notice

Requirements

Bachelor's degree in Computer Science, Information Technology, or a similar field, or equivalent experience
At least 5 years of demonstrated experience in application security, ideally within the gaming or technology sectors
Validated expertise in pentesting, security architecture, risk management, and securing CI/CD pipelines
Extensive knowledge of common and complex security vulnerabilities, along with effective mitigation techniques
Ability to translate design documents into security-focused guidelines and requirements for product development
Adapt quickly to new technologies, languages, and solve challenges outside your expertise

Job Responsibility

Develop threat models for a variety of applications and games to prioritize scope and use cases for security testing
Execute hands-on penetration tests and red team exercises to identify vulnerabilities in applications, infrastructure, and services
Conduct manual and automated secure code reviews in languages such as C#, Java, Python, and JavaScript, providing clear, actionable guidance to developers on vulnerability remediation
Triage, validate, and manage vulnerability reports from our bug bounty program, working with external researchers and internal teams on resolution
Develop and implement security automation tools to improve the efficiency and effectiveness of security processes
Provide security architecture and design guidance to development teams, ensuring secure coding practices are followed
Partner with teams to define and execute security strategy, driving security priorities across the organization
Stay ahead of emerging security threats, seeking and advocating for new technologies to address complex risks

What we offer

Medical (HSA & FSA)
dental
vision
401(k) with company match
employee stock purchase plan
commuter benefits
in-house wellness program
broad learning & development opportunities
a charitable giving platform with company match
Fitness allowance

Fulltime

Senior Product Security Engineer

Ready to make an impact on the security of products from the ground up? Join our...

Location

United States , Austin

Salary:

Not provided

Take-Two Interactive Software, Inc.

Expiration Date

Until further notice

Requirements

Bachelor's degree in Computer Science, Information Technology, or a similar field, or equivalent experience
At least 5 years of demonstrated experience in application security, ideally within the gaming or technology sectors
Validated expertise in pentesting, security architecture, risk management, and securing CI/CD pipelines to ensure seamless and secure software delivery
Extensive knowledge of common and complex security vulnerabilities, along with effective mitigation techniques
Ability to translate design documents into security-focused guidelines and requirements for product development
Adapt quickly to new technologies, languages, and solve challenges outside your expertise
Travel: No routine travel required
occasional travel as needed.

Job Responsibility

Develop threat models for a variety of applications and games to prioritize scope and use cases for security testing
Execute hands-on penetration tests and red team exercises to identify vulnerabilities in applications, infrastructure, and services
Conduct manual and automated secure code reviews in languages such as C#, Java, Python, and JavaScript, providing clear, actionable guidance to developers on vulnerability remediation
Triage, validate, and manage vulnerability reports from our bug bounty program, working with external researchers and internal teams on resolution
Develop and implement security automation tools to improve the efficiency and effectiveness of security processes
Provide security architecture and design guidance to development teams, ensuring secure coding practices are followed
Partner with teams to define and execute security strategy, driving security priorities across the organization
Stay ahead of emerging security threats, seeking and advocating for new technologies to address complex risks.

What we offer

Medical (HSA & FSA), dental, vision, 401(k) with company match, employee stock purchase plan, commuter benefits, in-house wellness program, broad learning & development opportunities, a charitable giving platform with company match
Fitness allowance, employee discount programs, discounted games & events and stocked pantries.

Fulltime

Staff Product Security Engineer

As a Staff Product Security Engineer, you will play a crucial role in safeguardi...

Location

France , Paris

Salary:

Not provided

Dashlane

Expiration Date

Until further notice

Requirements

Strong understanding of application security best practices, including experience with threat modeling and risk assessments
Demonstrated experience building or improving an SDLC program
Familiarity with CI/CD pipelines and their security implications
Familiarity with cloud infrastructure (e.g., AWS, Azure, Kubernetes), and Infrastructure-as-Code (e.g., Terraform)
Interest in enabling secure use of AI tools to drive efficiency, creativity, and impact internally
Communication & Collaboration: You engage and listen empathetically to others, adjusting your communication style to fit the audience and message. You are experienced in communicating with technical and non-technical audiences
Mentoring: You enjoy using your knowledge and experience to support and uplevel those around you
Motivated Learner: You learn new technologies and processes quickly, and understand where to look for knowledge when you need it
Adaptability: You are a jack or jane of all trades - you’re comfortable digging into non-technical parts of the business to provide security support and guidance

Job Responsibility

Drive the continuous improvement of Dashlane’s security program across the product and company
Conduct architecture design reviews, threat modeling, and technical security assessments of Dashlane’s product (application and infrastructure) to identify security risks and provide mitigation guidance
Ensure security best practices are integrated throughout the software development lifecycle (SDLC)
Build upon and scale Vulnerability Management to ensure the team can track, analyze, and manage vulnerabilities and their remediation
Perform risk assessments of Dashlane’s internal systems, environments, assets, and data, and implement security best practices accordingly
Evaluate and implement security tooling and/or build customized tooling in-house where necessary
Participate in Compliance and Incident Response
Innovate and propose new forward-looking security features that protect Dashlane and our users

What we offer

Equal Parental leave - regardless of gender, up to 20 weeks fully paid leave to take care of their new baby, within the first year of birth or adoption
Health insurance covered by Dashlane
Mentorship program - select your mentor from our internal pool and continue your learning path!
Commute allowance
Meal Vouchers (Swile)
Mental health services through Spring Health for you and family members
4 extra days off (one per quarter) to acknowledge the importance of your wellbeing
Spot in daycare
Time off saving account
Donation matching program - give back to the community and support actions that lead to positive social impact under the historically marginalized communities. Every donation will be matched by Dashlane

Fulltime