Built

Senior Product Security Engineer

Built

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $120,000 - $185,000 per year

Job Level

Senior

Tech Stack

CloudDistributed SystemsMicroservices

About the role

  • Lead the design and implementation of secure architectures for Built’s applications, services, and AI/ML initiatives.
  • Embed security throughout the development lifecycle by partnering with engineering teams on threat modeling, secure coding best practices, and design reviews.
  • Conduct technical security reviews—including code assessments, dependency analysis, and architectural risk evaluations—to proactively identify and remediate vulnerabilities.
  • Champion secure and responsible AI usage across Built’s product ecosystem.
  • Drive security controls that address AI-specific risks such as prompt injection, data poisoning, insecure model integrations, and model-exploitation paths.
  • Guide engineering and product teams on safe deployment patterns, monitoring, and ongoing validation of AI systems.
  • Perform internal penetration testing of applications, networks, and features to uncover weaknesses before attackers do.
  • Support planning and execution of external third-party penetration tests, ensuring findings are triaged and addressed effectively.
  • Participate in application-security–focused incident response activities, including investigation, containment, and root-cause analysis.
  • Conduct ongoing security research and maintain awareness of emerging threats, especially those relevant to cloud-native systems and AI/ML technologies.
  • Mentor engineers and security team members, driving adoption of security-first principles and scalable secure-by-default patterns.
  • Influence cross-functional teams through technical leadership, helping define security standards, guardrails, tooling, and long-term security strategy.
  • Promote a culture of high trust, continuous learning, and technical excellence.

Requirements

  • 10 years of deep technical expertise in application security and secure software development practices.
  • Strong understanding of modern distributed systems, APIs, cloud-native architectures, and microservices.
  • Experience with AI/ML security concepts, including risks such as prompt injection, data poisoning, and insecure model integrations.
  • Hands-on experience with security tooling and automation (SAST/DAST, dependency scanning, IaC scanning, observability, runtime monitoring).
  • Ability to conduct technical security reviews, threat modeling, and architectural risk assessments.
  • Proven ability to mentor and influence engineering teams to adopt secure-by-default practices.
  • Strong analytical and problem-solving skills with the ability to balance security rigor and product velocity.
  • Excellent communication skills with the ability to articulate complex risks to both technical and non-technical stakeholders.
Benefits
  • Competitive benefits including: uncapped vacation, health, dental & vision insurance
  • 401k with match and expedited vesting
  • Robust compensation package, including equity in the form of stock options
  • Flexible working hours, paid family leave, ERGs & Mentorship opportunities
  • Learning grant program to support ongoing professional development

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
application securitysecure software developmentthreat modelingsecure coding best practicespenetration testingarchitectural risk assessmentsAI/ML securitydependency analysissecurity toolingcloud-native architectures
Soft skills
mentoringinfluencinganalytical skillsproblem-solvingcommunicationcollaborationleadershipcontinuous learningtechnical excellencetrust building