Senior Product Security Engineer in United States at Jobgether

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior Product Security Engineer in United States.

This role sits at the intersection of product engineering and security, focusing on protecting modern, cloud-native applications in a fast-moving, AI-augmented development environment. You will help shape and scale product security practices across the entire software development lifecycle, ensuring secure-by-design systems as engineering velocity increases. Working closely with product and engineering teams, you will design scalable security architecture, drive threat modeling, and strengthen vulnerability management practices. A key part of your mission will be leveraging automation and AI to expand security coverage without slowing down development. You will also contribute directly to incident response, security education, and continuous improvement of DevSecOps practices. This is a high-impact role where your work directly influences product resilience, developer experience, and customer trust.

In this role, you will lead and evolve product security practices while enabling secure, scalable innovation across engineering teams.

• Partner with engineering and product teams to integrate security into the full software development lifecycle
• Design, implement, and evolve scalable security architecture and controls across cloud-native systems
• Perform threat modeling, security reviews, and risk assessments, including AI-related risks in code and features
• Drive vulnerability management, including triage, remediation coordination, and bug bounty/VDP handling
• Build and enhance automated security testing, monitoring, and response workflows using AI and orchestration tools
• Support incident response activities and lead post-incident analysis and improvements
• Promote secure development practices and educate engineers on AI-augmented secure coding principles

The ideal candidate brings deep product security expertise, strong technical foundations, and experience applying automation and AI in security contexts.

• 8+ years of experience in application or product security, ideally in cloud-native environments
• Strong knowledge of secure SDLC, OWASP Top 10, and modern application security principles
• Hands-on experience with AI and automation for security scaling (e.g., LLM-assisted analysis, automated triage)
• Experience securing cloud infrastructure (preferably AWS) and containerized systems (Docker, Kubernetes)
• Proficiency in modern programming languages such as Ruby, TypeScript, and/or Rust
• Familiarity with SAST, DAST, SCA tools and CI/CD security integration practices
• Experience in incident response and participation in on-call security rotations
• Strong analytical thinking, communication skills, and ability to translate security concepts for diverse audiences
• Nice-to-have: experience with AI/ML security risks, red-teaming LLMs, and agentic system security

• Competitive annual compensation: $218,000 – $235,000 USD + equity
• Remote-first flexibility within the United States
• Opportunity to work at the forefront of AI-augmented security engineering
• Exposure to modern cloud-native and high-scale distributed systems
• Strong focus on learning, autonomy, and professional growth
• Collaborative, engineering-driven culture with emphasis on innovation and impact
• Comprehensive benefits package (healthcare, retirement, and additional perks depending on eligibility).