Product Security Lead
northwoodspaceabout 5 hours ago
Torrance, CA, USASenior / Staff+
Base Salary
$156k - $232k/yr
Responsibilities
- Own application security across the full software development lifecycle.
- Conduct security architecture reviews and threat modeling for new product features.
- Establish and maintain secure coding standards and developer security training programs.
- Serve as the primary security liaison for product engineering teams.
- Deploy and manage SAST and DAST tooling integrated into development workflows.
- Own the end-to-end vulnerability management program.
- Conduct and coordinate penetration testing against products and infrastructure.
- Integrate automated security validation into CI/CD pipelines.
- Own secrets management infrastructure and enforce secure artifact management.
- Design and implement cryptographic controls for data and satellite communications.
- Hire and develop product security engineers.
- Collaborate with cross-functional teams to maintain security posture.
- Build security documentation and reporting standards for compliance.
Requirements
- 5+ years in product security or a related security engineering discipline.
- Deep expertise in SAST and DAST tooling and vulnerability remediation.
- Hands-on experience with penetration testing engagements.
- Strong applied cryptography knowledge and secure protocol design.
- Experience owning vulnerability management programs.
- Proficiency with secrets management platforms like HashiCorp Vault.
- Experience securing CI/CD pipelines and GitOps workflows.
- Proficiency in one or more programming languages (Python, Go, Rust).
- Familiarity with government compliance frameworks (NIST 800-171, CMMC).
- Ability to obtain and maintain a TS/SCI clearance.
- U.S. citizenship or lawful permanent resident status required.