22 days ago
San Francisco, CA, USA or New York, NY, USASenior
Base Salary
$130k - $500k/yr
Responsibilities
- Embed security review workflows in the software development lifecycle.
- Integrate SAST/DAST pipelines into CI/CD processes.
- Manage vulnerability processes prioritizing real exploitability.
- Establish secure coding standards for engineering teams.
- Develop threat models for new features and architecture changes.
- Operate and triage the bug bounty program.
Requirements
- Proven experience finding and fixing vulnerabilities in production applications.
- Deep understanding of web application security, including OWASP Top 10.
- Strong proficiency in at least one programming language: Python, TypeScript, or Go.
- Experience building or tuning SAST/DAST tooling.
- Familiarity with modern web frameworks, APIs, and authentication patterns.
- 5+ years of professional experience in application security or related fields.
Benefits
- Equity ownership in a high-growth, profitable company.
- Relocation support to San Francisco, NYC, or London as needed.
- Housing support near the San Francisco office.
- Daily meal stipend.
- Premium fitness membership at Equinox.
- Comprehensive health insurance.