Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Supabase

Product Security Engineer

Supabase

Product Security Engineer at Supabase focusing on integrating security in developer workflows. Collaborating with teams to enhance product security without hindering development speed.

Posted 5/27/2026full-timeRemote • 🌎 Anywhere in the WorldMid-LevelSeniorWebsite

Tech Stack

Tools & technologies
CloudKubernetesPostgres

About the role

Key responsibilities & impact
  • Identify and close gaps across application security, secure design review, and vulnerability management.
  • Conduct threat modeling, secure design reviews, and code reviews to identify practical remediation paths.
  • Partner closely with engineering teams to provide product-focused security expertise and shape a modern security program.
  • Mature how we think about security in a developer-first environment, balancing pragmatism with strong technical judgment.
  • Distinguish between theoretical risk and material business risk to prioritize security efforts effectively.
  • Improve security posture through scalable mechanisms like tooling, automation, secure defaults, and developer-friendly guardrails.
  • Support security incident response by helping triage, investigate, and coordinate remediation for product and platform security issues.
  • Participate in security on-call rotations, helping respond to urgent security events with clear judgment and calm execution.
  • Help manage and mature our bug bounty and vulnerability disclosure processes, including triage, validation, prioritization, and coordination with engineering teams.

Requirements

What you’ll need
  • Have strong experience in product security, application security, or security engineering.
  • Are comfortable working with cloud-native, developer tools, SaaS, platform, or infrastructure products.
  • Communicate clearly across both technical and non-technical audiences, especially in a written, asynchronous environment.
  • Are energized by solving real-world problems for developers and navigating ambiguity while moving quickly.
  • Possess a deep understanding of application security fundamentals, including auth, session management, APIs, and secrets handling.
  • Have experience with vulnerability triage, bug bounty programs, responsible disclosure, or security incident response.
  • Are comfortable participating in potential security on-call rotation and can balance urgency, risk, and practical remediation.
  • Have experience with or interest in Postgres, Kubernetes, or building security guardrails that enable rather than enforce.

Benefits

Comp & perks
  • Fully Remote
  • ESOP
  • Tech Allowance
  • Health Benefits
  • Annual Off-Sites
  • Flexible Work
  • Professional Development

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
application securitysecure design reviewvulnerability managementthreat modelingcode reviewsvulnerability triagebug bounty programssecurity incident responseauthsession management
Soft Skills
communicationproblem-solvingnavigating ambiguitytechnical judgmentcalm execution