Staff Security Engineer, Product Security

Attentive

full-time

Posted on: 9/10/2025

Origin: • 🇺🇸 United States

✨ AI Apply

💰 $170,000 - $250,000 per year

Lead

AWSCloudGoGradleJavaKubernetesMicroservicesPython

About the role

Architecture Design & Code Reviews: Perform secure design reviews, testing and code reviews of new systems and product features.
Automation & Tooling: Design, develop, implement and maintain tools to secure our code and underlying systems from development to delivery.
Engineering Support: Provide hands-on support to engineers to deploy security solutions, integrate security processes, harden services and remediate vulnerabilities.
Threat Modeling: Lead the development of comprehensive threat models for new and existing products and infrastructure.
Vulnerability Management: Establish and manage a vulnerability management lifecycle for our applications.
Security Guidance: Establish secure coding practices and provide continuous security guidance to developers across engineering.
Documentation: Responsible for developing and maintaining security documentation and reports derived from penetration testing activities and product security tools.

7+ years of experience in Security with a focus in application/product security
Proven knowledge and experience in building and automating processes, such as static code analysis using Semgrep
In-depth knowledge of common application & network protocols, cryptography, authentication & authorization protocols
Bonus: Java vulnerabilities or Gradle dependency management, and/or experience in Kubernetes/container security
Demonstrated impact in prior roles as a senior individual contributor or team leader
Strong experience coding and reviewing code with Java, Python, Golang
Bonus: experience working in AWS and deploying infrastructure as code
Skilled at communicating complex technical ideas, risks and threats to non-technical audiences