Product Security Engineer

You will  lead the design and execution of both  technical security controls and foundational security programs. This is a highly visible, cross-functional role that requires deep technical fluency and strong ownership. You will review critical systems and source code, build internal security tooling,  design and enforce access and secrets management controls, and work closely with engineering and operations teams to strengthen our security posture as the company scales. Responsibilities: Partner with engineering to drive secure-by-design architecture and conduct in-depth reviews of application source code and systems Lead threat modeling and vulnerability analysis efforts, identifying systemic risks and influencing long-term mitigations Embed with product teams to champion secure coding and deployment practices, and shape platform-wide guardrails that reduce developer burden Design and own foundational security infrastructure, including secrets management, automated certificate/key rotation, and secure service bootstrapping Build and scale automated security scanning pipelines (SAST, DAST, SBOM, OSS license scanning) integrated into CI/CD workflows Drive third-party risk management, including deep-dive assessments of external hardware, software, and cloud service vendors Preferred Qualifications: Strong software engineering background with 5+ years of hands-on development experience