Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
YipitData

Senior Product Security Engineer

YipitData

Join YipitData as a Sr. Product Security Engineer, managing vulnerability lifecycle and security initiatives.

Posted 5/14/2026full-timeRemote • California, Florida, New York, Texas • 🇺🇸 United StatesSenior💰 $215,000 - $230,000 per yearWebsite

Tech Stack

Tools & technologies
Cloud

About the role

Key responsibilities & impact
  • Own the end-to-end vulnerability lifecycle: intake, triage, assignment, remediation coordination, verification, and closure across all finding sources.
  • Enforce severity-based SLAs, escalation paths, and ownership expectations. Track remediation timelines and follow up with engineering teams to ensure findings are resolved within policy requirements.
  • Aggregate findings centrally from all scanning tools and sources into a unified tracking system.
  • Manage exception and risk acceptance workflows. Process exception requests, document compensating controls, and ensure approvals are captured with appropriate evidence.
  • Produce vulnerability posture reports and dashboards.
  • Coordinate with engineering teams on remediation prioritization, providing context on severity, exploitability, and business impact to support informed decision-making.
  • Drive reduction of aging findings through proactive follow-up, workflow automation, and escalation when remediation stalls.
  • Assist the DevSecOps Lead with implementation of baseline security controls.
  • Help integrate controls into repositories, CI/CD pipelines, registries, and deployment workflows.
  • Validate that controls are functioning as intended, producing actionable findings, and are difficult to bypass.

Requirements

What you’ll need
  • 3–6 years of experience in security operations, vulnerability management, application security, DevSecOps, or a related security engineering role.
  • Hands-on experience with vulnerability management workflows — intake, triage, assignment, remediation tracking, and reporting.
  • Working knowledge of common scanning tools and finding types, including dependency scanning (SCA), secrets scanning, IaC scanning, container scanning, and/or SAST/DAST.
  • Familiarity with Git-based workflows, CI/CD systems, and cloud-native development environments.
  • Experience producing security metrics, dashboards, and reports for technical and leadership audiences.
  • Strong organizational and follow-through skills — ability to track many findings across multiple teams and drive them to resolution.
  • Clear written and verbal communication skills with the ability to coordinate across engineering, security, and business teams.

Benefits

Comp & perks
  • flexible work hours
  • flexible vacation
  • generous 401K match
  • parental leave
  • team events
  • wellness budget
  • learning reimbursement

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
vulnerability managementsecurity operationsapplication securityDevSecOpsvulnerability lifecycleremediation trackingdependency scanningsecrets scanningIaC scanningSAST/DAST
Soft Skills
organizational skillsfollow-through skillscommunication skillscoordination skills