CrawlJobs Logo

Product Security Developer

Canada · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

MaintainX is the world's leading Asset and Work Intelligence platform for industrial and frontline environments. We are a modern IoT-enabled cloud-based tool for reliability, safety, and operations on physical equipment and facilities. MaintainX powers operational excellence for 13,000+ businesses including Duracell, Univar Solutions Inc., Titan America, McDonald's, Brenntag, Cintas, Xylem, and Shell. We recently completed a $150 million Series D round, bringing our total funding to $254 million and valuing the company at $2.5 billion. MaintainX’s mission is to be the go-to work execution platform for manufacturers across Maintenance, Operations, and Safety. Our Security Team plays a critical role in enabling this mission by ensuring the integrity, confidentiality, and availability of our systems, data, and products. We are looking for a Product Security Developer to join our growing Security Team. This role is a hands-on engineering position focused on designing, building, and integrating security solutions across the MaintainX stack. You will collaborate with multiple product and infrastructure teams to embed security into everything we build and operate. As part of the Security Team, you’ll report to the Security Lead and work on initiatives that improve the overall security posture of MaintainX, from secure coding practices and internal tooling to automation and vulnerability management.

Job Responsibility

  • Design and implement security-focused features across our stack (TypeScript, React, Node.js, GraphQL, AWS) in collaboration with product, platform, and DevOps teams
  • Develop internal security tooling to automate vulnerability detection, dependency management, and compliance validation
  • Perform secure code reviews and contribute to improving developer security awareness through tooling and education
  • Integrate security scanning and observability tools into CI/CD pipelines to ensure continuous protection and visibility
  • Contribute to incident response and threat modeling efforts, helping to identify risks and propose mitigations at the application and infrastructure layers
  • Collaborate with engineering and infrastructure teams to implement secure-by-design patterns and strengthen authentication, authorization, and data protection mechanisms
  • Continuously evaluate and enhance the security architecture for MaintainX’s cloud environment
  • Contribute to security documentation, playbooks, and standards that align with our compliance frameworks (SOC 2, ISO 27001, etc.)

Requirements

  • 3+ years of professional software development experience with TypeScript, Node.js, and web technologies
  • Experience developing or integrating security solutions (e.g., SAST/DAST, vulnerability management, authentication systems, secrets management, identity services)
  • Strong understanding of web application security principles (OWASP Top 10, secure session handling, input validation, XSS/CSRF prevention)
  • Familiarity with cloud security concepts (IAM, network segmentation, encryption, logging)
  • Ability to write maintainable, testable, and secure code
  • Strong communication skills and ability to partner with product, engineering, and compliance teams
  • Demonstrated experience working in fast-paced, modern cloud environments

Nice to have

  • Experience with React Native and/or GraphQL security considerations
  • Knowledge of AWS security services (IAM, KMS, GuardDuty, WAF, etc.)
  • Familiarity with DevSecOps pipelines and CI/CD automation (GitHub Actions, CircleCI)
  • Prior experience contributing to or leading security automation or hardening initiatives
  • Certifications such as OSCP, CSSLP, or AWS Security Specialty are a plus

What we offer

  • Competitive salary and meaningful equity opportunities
  • Healthcare, dental, and vision coverage
  • 401(k) / RRSP enrollment program
  • Take what you need PTO
  • A Work Culture where: You’ll work alongside folks across the globe that reflect the MaintainX values, Smart Humble Optimist
  • We believe in meritocracy, where ideas and effort are publicly celebrated

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Product Security Developer

8 matching positions

Senior Application Security / Product Security Engineer

We are seeking an experienced Application Security / Product Security Engineer t...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
Galaxy Office Automation Pvt. Ltd.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of Application Security and Product Security principles
  • Experience with secure SDLC practices
  • Hands-on experience performing security testing for Web applications, APIs, Mobile apps, Thick client applications
  • Knowledge of cloud platforms (AWS / Azure / GCP) and cloud security architecture
  • Experience performing security design reviews and threat modeling
  • Familiarity with OWASP Top 10, API Security Top 10, and common vulnerability classes
  • Experience using security tools such as SAST, DAST, SCA
  • API testing tools
  • Good working knowledge of Excel for tracking vulnerabilities, metrics, and reporting
  • Strong task management and stakeholder coordination skills
Job Responsibility
Job Responsibility
  • Integrate security practices into the Software Development Lifecycle (SDLC)
  • Perform application security design reviews for new and existing products
  • Conduct manual and automated security testing of Web applications, REST / GraphQL APIs, Mobile applications (Android / iOS), Thick client / desktop applications
  • Identify vulnerabilities such as OWASP Top 10, authentication issues, authorization flaws, and API security risks
  • Review cloud architecture and deployments (AWS, Azure, GCP) for security best practices
  • Work with development teams to prioritize and remediate vulnerabilities
  • Perform threat modeling and security architecture assessments
  • Track vulnerabilities, remediation status, and risk metrics using Excel or vulnerability management tools
  • Support secure coding practices and developer security awareness
  • Manage multiple security assessments and coordinate tasks across teams
  • Fulltime
Read More
Arrow Right

Application Security / Product Security Engineer

We are looking for an Application Security / Product Security Engineer to suppor...
Location
Location
European Union
Salary
Salary:
Not provided
itransition.com Logo
Itransition
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2–5 years of experience in Application Security, Product Security, DevSecOps, Security Operations, or related cybersecurity roles
  • General understanding of Secure SDLC and application security principles
  • Experience working with security tools or processes related to vulnerability management, CI/CD security, or dependency/security scanning
  • Familiarity with Jira or similar ticketing/tracking systems
  • Understanding of common application security risks and vulnerabilities
  • Ability to document processes and communicate effectively with technical teams
  • English skills sufficient for technical communication and participation in project discussions
Job Responsibility
Job Responsibility
  • Support Software Composition Analysis (SCA) processes and open-source license compliance activities
  • Help implement and maintain secret detection practices, including pre-commit hooks and CI/CD secret scanning
  • Participate in vulnerability management activities: vulnerability scanning, triage and prioritization, Jira ticket tracking, remediation follow-up and SLA monitoring
  • Collaborate with engineering teams to improve Secure SDLC and CI/CD security practices
  • Support security tooling integrations within CI/CD pipelines (e.g., GitHub Actions)
  • Maintain security-related documentation and assist with audit/compliance activities
  • Contribute to asset inventory and security governance processes
  • Work with development and infrastructure teams to improve overall security posture
What we offer
What we offer
  • Projects for such clients as PayPal, Wargaming, Xerox, Philips, Adidas and Toyota
  • Competitive compensation that depends on your qualification and skills
  • Career development system with clear skill qualifications
  • Flexible working hours aligned to your schedule
  • Options to work remotely
  • Corporate medical insurance covering services of private and public medical centers
  • English courses online
  • Corporate parties and events for employees and their children
  • Internal conferences, workshops and meetups for learning and experience sharing
  • Gym membership compensation
  • Fulltime
Read More
Arrow Right
New

Security Engineer, Product Security

Location
Location
Germany , Berlin
Salary
Salary:
Not provided
staffbase.com Logo
Staffbase
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Practical knowledge of security topics (e.g. penetration testing, secure software development, vulnerability management, SAST, DAST)
  • Programming knowledge, preferably one of the following: TypeScript, JavaScript, Kotlin, Java, Go, or Python
  • Practical knowledge of Unix basics and Kubernetes infrastructure, preferably managed via Terraform and Kustomize
  • Strong communication skills in English (German is a plus)
Job Responsibility
Job Responsibility
  • Take ownership of tasks that improve our security automation and strengthen our product security pipelines
  • Proactively explore the use of AI for vulnerability detection and remediation
  • Continuously learn and share knowledge about how vulnerabilities apply in our specific product context
  • Support the team by enhancing our services with software engineering solutions
  • Collaborate closely with stakeholders across the product department and gain broad exposure to how a growing SaaS company operates
  • Maintain our outbound e-mail security by regularly reviewing the related metrics
  • Maintain our Web Application Firewall ruleset
  • Maintain our central HTML sanitization service written in Typescript
What we offer
What we offer
  • Competitive Compensation - we offer attractive salary packages including LTIP (unit-based Long Term Incentive Plan)
  • Flexibility - we offer flexible working time models and the option of hybrid work, and support this with a yearly flex work allowance of €1560
  • Recharge - with 31 vacation days annually (incl. one floating holiday), plus pro rata fully paid Fridays off during August
  • Support - we’re offering a company pension scheme
  • Volunteers Day - you’ll get one day off per year for supporting a social project
Read More
Arrow Right

Staff Security Engineer, Product Security

At Mozilla, we believe the internet is a global public resource—open and accessi...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of relevant hands-on experience in product and application security
  • 5+ years of experience and proficiency in secure coding practices, application security testing (SAST, DAST), threat modeling, and vulnerability assessment
  • Experience in one or more languages like Python, Go, Java, or JavaScript, required for automation and code review
  • Familiarity with security tools like Burp Suite, Nessus, and tools for CI/CD automation
  • Strong communication, collaboration, and problem-solving skills, with the ability to influence and guide cross-functional teams
Job Responsibility
Job Responsibility
  • Safeguard millions of users by embedding security into Firefox, Mozilla VPN, and other mission-critical products
  • Ensure software products are secure by embedding security into the full Software Development Life Cycle (SDLC)
  • Anticipate, prioritize and mitigate risks through proactive threat modeling, security assessments, security testing, and automation
  • Perform security code reviews
  • Lead penetration testing on web, mobile, and embedded applications, then guide remediation efforts
  • Develop and maintain automated security tests within CI/CD pipelines to catch vulnerabilities early
  • Partner with engineers to integrate security throughout the software development lifecycle—not as an afterthought, but as a core design principle. Provide security guidance, develop secure solutions, and facilitate secure releases
  • Help define and enforce security policies and provide security guidance to development teams
  • Help shape Mozilla's security culture through collaboration, guidance, and education
What we offer
What we offer
  • Generous performance-based bonus plans to all eligible employees - we share in our success as one team
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting (regardless of whether you contribute)
  • Quarterly all-company wellness days where everyone takes a pause together
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Staff Security Engineer, Product Security

At Mozilla, we believe the internet is a global public resource—open and accessi...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of relevant hands-on experience in product and application security
  • 5+ years of experience and proficiency in secure coding practices, application security testing (SAST, DAST), threat modeling, and vulnerability assessment
  • Experience in one or more languages like Python, Go, Java, or JavaScript, required for automation and code review
  • Familiarity with security tools like Burp Suite, Nessus, and tools for CI/CD automation
  • Strong communication, collaboration, and problem-solving skills, with the ability to influence and guide cross-functional teams
Job Responsibility
Job Responsibility
  • Safeguard millions of users by embedding security into Firefox, Mozilla VPN, and other mission-critical products
  • Ensure software products are secure by embedding security into the full Software Development Life Cycle (SDLC)
  • Anticipate, prioritize and mitigate risks through proactive threat modeling, security assessments, security testing, and automation
  • Perform security code reviews
  • Lead penetration testing on web, mobile, and embedded applications, then guide remediation efforts
  • Develop and maintain automated security tests within CI/CD pipelines to catch vulnerabilities early
  • Partner with engineers to integrate security throughout the software development lifecycle—not as an afterthought, but as a core design principle. Provide security guidance, develop secure solutions, and facilitate secure releases
  • Help define and enforce security policies and provide security guidance to development teams
  • Help shape Mozilla's security culture through collaboration, guidance, and education
What we offer
What we offer
  • Generous performance-based bonus plans to all eligible employees - we share in our success as one team
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting (regardless of whether you contribute)
  • Quarterly all-company wellness days where everyone takes a pause together
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Manager, Product Management - Product Manager, Enterprise Developer Platforms

Manager, Product Management - Product Manager, Enterprise Developer Platforms. P...
Location
Location
United States , McLean, Virginia; Plano, Texas; Richmond, Virginia
Salary
Salary:
149800.00 - 188100.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience working in Product Management
  • Currently has, or is in the process of obtaining one of the following with an expectation that the required degree will be obtained on or before the scheduled start date: A Bachelor's Degree in a quantitative field (Statistics, Economics, Operations Research, Analytics, Mathematics, Computer Science, Computer Engineering, Software Engineering, Mechanical Engineering, Information Systems or a related quantitative field)
  • A Master's Degree in a quantitative field (Statistics, Economics, Operations Research, Analytics, Mathematics, Computer Science, Computer Engineering, Software Engineering, Mechanical Engineering, Information Systems or a related quantitative field) or an MBA with a quantitative concentration
  • At this time, Capital One will not sponsor a new applicant for employment authorization for this position
Job Responsibility
Job Responsibility
  • Own and execute the technical roadmap for Hygieia, managing a complex architecture of microservices, batch collectors, and real-time APIs
  • Drive the initiative to complete the migration to a new tech stack
  • Act as the primary bridge between raw pipeline data and automated governance
  • Ensure data collection remains the source of truth for every software release, focusing specifically on data collections for the CI/CD pipeline
  • Maintain a robust security posture by regularly meeting with Risk and CIC Associates
  • Coordinate with external teams still within Capital One to keep the posture strong
  • Work directly with the dedicated engineering team responsible for data collections
  • Focus on building user acceptance, understanding the user journey, and defining how the platform affects the end-user experience
  • Leverage expertise in Platform Product Management, JIRA, APIs, and modernization efforts to drive the platform's strategic vision and execution
What we offer
What we offer
  • Eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • Comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Ai Product Developer

As our next AI Product Developer, you will contribute to solving meaningful chal...
Location
Location
Denmark , København
Salary
Salary:
Not provided
life-science-talent-solutions.dk Logo
Life Science Talent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong Python skills and solid software engineering fundamentals
  • Hands-on experience with at least one major cloud (AWS, Azure, or GCP)
  • Strong software architecture and backend engineering experience, including production APIs and service design
  • A track record of building robust, secure, scalable applications and integrating AI/LLM engines into them cleanly
  • Comfort with containerisation (Docker, Kubernetes), CI/CD, infrastructure-as-code, and cloud-native deployment
  • Experience designing for security, multi-tenancy, and auditability
  • Working knowledge of databases and data engineering, including vector databases and vector search technologies
  • Awareness of LLMOps practices for taking AI-based systems into production and operating them successfully
  • Full-stack experience (e.g. TypeScript/React) is a plus but not required
  • Strong communication skills in English
Job Responsibility
Job Responsibility
  • Design, build, and ship AI-powered tools that help life science teams create, review, and manage critical documents and data
  • Build features such as grounded retrieval, summarisation, document comparison, question answering, and content classification with traceability back to source
  • Design and implement scalable APIs, services, integrations, and deployment platforms
  • Ensure solutions are secure, auditable, and scalable in regulated cloud environments (AWS, Azure, GCP)
  • Collaborate closely with clinical, regulatory, quality, and commercial experts to understand their workflows and implement products that solve real business problems
What we offer
What we offer
  • Support for health and wellbeing, covering physical, mental, and social needs
  • Flexible ways of working, built on trust, autonomy, and balance
  • Ongoing learning and professional development throughout your career
  • A modern work setup, with the tools and equipment needed to do great work
  • Recognition of performance and impact, linked to contribution and results
  • The opportunity to work on challenges that make a meaningful difference for patients and healthcare systems worldwide
  • Fulltime
Read More
Arrow Right
New

Product Security Engineer

Secure NEO end-to-end. You will analyze the system services, operating systems, ...
Location
Location
United States , San Carlos
Salary
Salary:
137861.00 - 250000.00 USD / Year
1x.tech Logo
1X Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in product security, offensive security, or a closely related engineering role
  • Strong experience with Linux operating system internals and security mechanisms (namespaces, syscall filtering, Linux systems hardening, least-privilege service design)
  • Proficiency in software development and code auditing, with shipping experience in C, C++, Rust, Go or Python
  • Penetration testing experience against real production systems
  • Security expertise in one or more of: Offensive security against Linux-based devices vulnerability research, exploit development, and end-to-end attack chains against embedded or production systems
  • Secure boot, verified boot, and Trusted Execution Environments (e.g., OP-TEE, fTPM)
  • Cryptography, PKI design, key lifecycle management, and HSM-backed roots of trust
  • Cloud security (AWS, GCP, or Azure), infrastructure-as-code, Kubernetes, and CI/CD pipeline security
  • Secure firmware update systems for embedded devices over-the-air delivery, rollback protection, signature verification, and recovery from failed updates
  • Bachelor’s degree in Computer Science, Information Security, Engineering, or related technical field or equivalent experience
Job Responsibility
Job Responsibility
  • Audit code and systems across NEO’s stack from bootloader and Linux userspace to cloud services and CI/CD pipelines to identify and drive remediation of security vulnerabilities
  • Lead security initiatives end-to-end, serving as the technical point of contact and partnering with Robotics, AI, Infrastructure, and Manufacturing teams to design secure-by-default systems
  • Conduct penetration tests, threat models, and risk assessments against NEO and its supporting infrastructure, prioritizing the issues that matter most
  • Design and contribute production code for security-critical components such as secure boot chains, code-signing pipelines, attestation flows, and hardened system services
  • Help define the security architecture for how humanoid robots are provisioned, deployed, updated, and operated at scale
What we offer
What we offer
  • Comprehensive medical, dental, and vision coverage
  • Generous paid time off, company holidays, and parental leave
  • 401(k) plan with company match (100% on the first 3% of contributions, 50% on the next 2%)
  • Flexible Spending Accounts (FSA) and Health Savings Accounts (HSA) options
  • Commuter benefits (transit and parking)
  • Short-term and long-term disability, and life insurance
  • Employee Assistance Program (EAP) for mental health, financial, and personal support
  • Onsite snacks and catered lunches
  • Equity
  • Fulltime
Read More
Arrow Right