about 23 hours ago
Base Salary
$184k - $242k/yr
Responsibilities
- Define the multi-year vision and strategy for Product Security engagement with engineering.
- Partner with leadership to ensure security is a key input in engineering strategy.
- Set direction for AI/LLM security architecture and governance models.
- Evolve threat modeling, penetration testing, and risk assessment methodologies.
- Manage the HackerOne bug bounty and vulnerability disclosure programs.
- Build automation and tooling for scalable security practices.
- Lead the Security Champions program across engineering teams.
- Mature the vulnerability and risk management program.
- Maintain a library of reusable security reference architectures.
- Mentor engineers and shape the technical culture.
- Adapt role to fill technical or organizational gaps as needed.
Requirements
- Extensive security engineering experience across multiple security practices.
- Demonstrated track record of delivering multi-year security strategies.
- Proven expertise in AI/LLM security architecture and governance.
- Experience leading threat modeling and risk assessment programs.
- Familiarity with bug bounty or vulnerability disclosure programs.
- Track record of maturing vulnerability and risk management programs.
- Experience building automation and tooling for security.
- Deep familiarity with cloud infrastructure and CI/CD pipelines.
- Strong coding skills in a modern programming language.
- Solid command of industry frameworks like NIST and OWASP.
- Experience mentoring senior engineers and shaping technical culture.
Benefits
- Array of health plans including mental health support and fitness benefits.
- Generous paid time off and sick leave.
- 401k with up to a 5% match.
- Commuter benefits and pet insurance.
- Annual bonus and long-term incentive opportunities.