CrawlJobs Logo

Senior Product Security Engineer II

United States, Scottsdale, Arizona · Job Posted February 17, 2026
Apply Position
Job Link Share

Job Description

You will drive product security across our hardware portfolio—leading threat modeling, security architecture, and design reviews for new and existing products. You will define and operationalize security assessment strategies (architecture reviews, threat assessments, red/blue team engagements, penetration testing, and other assessments) and develop repeatable patterns and guidance for product and engineering teams. You will act as a trusted liaison between product, engineering, and security, enabling secure design choices early and ensuring security risks are understood and mitigated throughout the product development lifecycle.

Job Responsibility

  • Serve as the primary product-security resource for engineering and product teams, advising on architecture and risk
  • Run and facilitate threat modeling and design-review sessions for features and platforms
  • Conduct security assessments across hardware, firmware, cloud, and client components and drive remediation
  • Define and enforce secure design patterns and architectural controls across product lines
  • Prioritize security work from a product-risk perspective and shepherd solutions through to completion in partnership with stakeholders

Requirements

  • 8+ years professional experience
  • Strong hardware and systems engineering background with hands-on experience in security architecture and threat modeling
  • Proven ability to identify systemic product risks and propose pragmatic, scalable mitigations
  • Deep understanding of security design principles across cloud, device/firmware, and client components
  • Experience performing diverse security assessments (architecture reviews, threat models, penetration testing coordination, red/blue exercises)
  • Familiarity with secure design patterns for authentication, authorization, encryption, and data protection
  • Experience communicating technical risk and remediation plans effectively to engineers and product managers
  • Ability to work independently and comfortably in a fast-paced environment

Nice to have

  • Passionate about product security and engaged with the broader security community
  • Experience teaching secure design and threat-modeling practices to engineers and product teams
  • Experience with IoT device/firmware security and constraints-driven threat modeling
  • Experience with DevOps and secure engineering practices in Cloud/SaaS environments
  • Experience with mobile and embedded device security assessments
  • Experience operating and interpreting results from a range of security testing tools and driving prioritized remediation

What we offer

  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Employee Resource Groups (ERGs)
  • Snacks in our offices

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Product Security Engineer II

8 matching positions

Senior Application Security Engineer II

As a Senior Application Security Engineer, you will drive security initiatives t...
Location
Location
United States , Seattle
Salary
Salary:
148500.00 - 237600.00 USD / Year
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proficiency in programming languages like Python, Java, Go, or C#
  • Strong experience with modern development workflows, including CI/CD pipelines and Git-based version control
  • In-depth understanding of vulnerabilities and secure coding practices
  • Hands-on experience with security tools like Snyk, Semgrep, or similar
  • Ability to simplify and communicate technical security concepts to diverse audiences
  • Demonstrated success in partnering with developers to integrate security without disrupting velocity
  • Experience performing secure code reviews and interpreting SAST/DAST results
  • Familiarity with cloud platforms (AWS, Azure, GCP) and containerization (Docker, Kubernetes)
Job Responsibility
Job Responsibility
  • Integrate Security into Development
  • Build and maintain security automation tools to seamlessly embed security checks into CI/CD pipelines
  • Partner with engineering teams to design secure-by-default architectures and workflows
  • Enable Developer Success
  • Act as a trusted advisor and partner for development teams, providing actionable guidance to address security issues
  • Deliver training and mentorship on secure coding practices, empowering teams to proactively prevent vulnerabilities
  • Proactively Identify Risks
  • Deploy and operationalize static (SAST), dynamic (DAST), and dependency (SCA) scanning tools
  • Lead vulnerability management efforts, ensuring critical vulnerabilities are identified, prioritized, and remediated
  • Advocate for a “security debt” reduction mindset to maintain long-term product integrity
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Employee Resource Groups (ERGs)
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right

Information System Security Engineer - Senior

In support of a challenging, critical, and rewarding program that provides integ...
Location
Location
United States , San Antonio
Salary
Salary:
160000.00 - 175000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
Job Responsibility
Job Responsibility
  • Experience creating custom dashboards, writing queries, building, and generating reports, and setting up alerts and notifications using all the Cyber tools (Splunk, Tenable, Trellix)
  • Demonstrated proficiency with recognizing and onboarding new data sources into the cyber tools and analyzing the data for anomalies and trends
  • Primarily responsible for maintaining the test and operational environments to include all cybersecurity tool sets and collaborating with systems and network engineers
  • Use knowledge, skills, and ability to conduct research for designing, integrating, and implementing security controls into current and future products/systems thus ensuring these systems can be accredited based on compliance with the Joint Special Access Program Implementation Guide (JSIG)
  • Recommend the components to implement system security requirements using intimate knowledge of security design best practices for information systems throughout the system development life cycle to support the generation of security engineering products
  • Assist with the design, deployment, and administration of a multi-site, distributed Splunk environment including Multi-site Clustering, Search Head Clustering, Universal Forwarders, Deployer, and Deployment Server
  • Configure, operate, and maintain Trellix and its components (ePolicy Orchestrator, Trellix Agent, Data Loss Prevention, Host Intrusion Prevention System, Policy Auditor, Asset Baseline Monitor, and Virus Scan Enterprise) on Windows and Linux creating exceptions to allow essential processes to continue uninterrupted
  • Administration/operation of information security compliance tools/platforms with a special concentration in managing Tenable Security Center and NESSUS
  • Provide Tier 1, 2, and 3 maintenance support for deployed cyber security technologies
  • Assist with periodic and regular security assessments
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Senior Engineer II, Internal Platform

At Strava, the Foundation engineering team safeguards the infrastructure support...
Location
Location
United States , San Francisco
Salary
Salary:
198000.00 - 235000.00 USD / Year
strava.com Logo
Strava
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven software engineering expertise
  • comfortable working across multiple languages (Go, Python, Ruby, Scala, JavaScript) or able to learn quickly
  • Experience designing, building, or maintaining internal tooling, shared libraries, or platform services
  • Experience with cloud platforms (preferably AWS), Terraform, service meshes (e.g., Istio), and infrastructure-as-code
  • Ownership mindset, with the ability to drive initiatives end-to-end, mentor others, and influence cross-functional teams
  • Developer efficiency, internal tooling, build systems, CI/CD pipelines, or automation experience
  • Deployment automation, cloud services, and platform operations knowledge
  • Experience leading adoption of internal tools and driving cross-team enablement
  • Comfort working at the frontier of infrastructure and software development, exploring new tools, techniques, and approaches
Job Responsibility
Job Responsibility
  • Design, build, and modernize an internal admin portal that enables Strava developers, sales, and support teams
  • Develop and maintain shared platform services, frameworks, and infrastructure to support multiple languages and runtimes (Go, Python, JavaScript, Scala)
  • Move common actions to the cloud, reducing friction from developer machines
  • Improve internal systems, including license management, feature flags, and admin workflows
  • Break down monolithic tools into smaller, manageable, and maintainable components
  • Explore AI-driven tools to enhance productivity, security, and internal workflows
  • Ensure internal tools follow best practices for security, privacy, observability, and compliance
  • Drive adoption, standardization, and enablement, mentoring engineers and fostering cross-team collaboration
  • Evaluate, integrate, or build developer infrastructure tooling, including CI/CD pipelines, deployment automation, monitoring, alerting, and dashboards for internal teams
What we offer
What we offer
  • Offers Equity
  • Fulltime
Read More
Arrow Right

Senior Product Manager II, VR Device Management

As Senior Product Manager II, VR Device Management, you will define and drive th...
Location
Location
United States , Seattle
Salary
Salary:
141000.00 - 225600.00 USD / Year
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in computer science, game design, engineering or related field of study
  • 8+ years of Product Management experience, including platform or enterprise-scale system ownership
  • Strong understanding of device lifecycle management, including provisioning, configuration, updates, and telemetry
  • Ability to translate complex operational workflows into clear and intuitive software experiences
  • Data-driven mindset with skill in setting KPIs, tracking adoption, and making informed prioritization decisions
  • Strong collaboration skills and a record of partnering effectively across engineering, design, and business teams
  • Comfort working in fast-paced environments with a high degree of autonomy and accountability
Job Responsibility
Job Responsibility
  • Lead the Fleet Management Tools for Agencies initiative, delivering measurable improvements in how agencies deploy, organize, and manage VR devices at scale
  • Define and launch the Device and Fleet Management UI within the VR Web App, creating a centralized interface to oversee headsets and tablets that scales with agency growth and integrates into Axon's broader ecosystem
  • Develop a customer-facing Content Management System (CMS) that allows agencies to manage which training modules are installed or removed across their fleets, simplifying operations and aligning content with mission goals
  • Design an Agency Device Settings System that preserves preferences across users, devices, and sessions, balancing agency-level policies with user-level flexibility through cascading, real-time settings
  • Establish key metrics and baselines for fleet performance, adoption, and reliability to track progress and guide prioritization
  • Partner with engineering, UX, and data science to turn complex operational needs into simple, intuitive user experiences
  • Collaborate across Axon hardware and software teams to ensure VR device management aligns with the company's identity, deployment, and security frameworks
  • Engage directly with customers and field stakeholders to validate designs, identify emerging pain points, and ensure solutions meet real-world operational needs
  • Support future CMS development by preparing the foundation for third-party content uploads, workflow automation, and integration with additional VR applications
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

SmartRecruiters is looking for a Senior Information Security Engineer to join th...
Location
Location
Poland
Salary
Salary:
Not provided
smartrecruiters.com Logo
SmartRecruiters
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in information security, governance, risk, and/or compliance roles with a technical orientation
  • Demonstrated compliance or auditing experience with at least one major framework
  • Solid understanding of controls auditing principles and evidence management
  • Knowledge of risk management methodologies and experience conducting or supporting risk assessments
  • Ability to manage and deliver on multiple complex projects simultaneously, with minimal supervision
  • The ability to investigate, question, and interpret internal and external IT security and compliance issues at both a governance and technical level
  • A strong understanding of technology, cloud-based products, and SaaS environments
  • Experience working across business units and geographical boundaries to engage engineering, business, and operational teams
  • Experience with ISO 27001
  • Excellent written and verbal communication skills in English
Job Responsibility
Job Responsibility
  • Identify manual, repetitive GRC processes and design automation blueprints to streamline them, including evidence collection, control monitoring, access reviews, policy enforcement checks, and compliance reporting
  • Build and maintain automated workflows using compliance platforms, scripting, or integration tools to reduce manual effort and improve audit-readiness
  • Develop reusable templates, playbooks, and standardised blueprints for recurring GRC activities (e.g., vendor assessments, internal audits, risk reviews) to ensure consistency and scalability
  • Collaborate with engineering and IT teams to integrate security and compliance checks into existing toolchains and CI/CD pipelines where applicable
  • Continuously evaluate and improve GRC tooling, data flows, and reporting to drive operational efficiency across the team
  • Manage stakeholder expectations and partner with internal teams to ensure effective management of IT risks and compliance obligations
  • Maintain regional and local stakeholder relationships, meeting schedules, minutes, and reports
  • Support the maintenance of the SOC 2 Type II framework, including evidence collection, control testing coordination, and audit support
  • Effectively manage ISO 27001 and ISO 22301 audit lifecycles and coordinate with stakeholders on ISMS and BCMS improvements
  • Support the maintenance and continuous improvement of the ISO 42001 (AI Management System) framework in alignment with the EU AI Act
Read More
Arrow Right

Senior Software Engineer II

Location
Location
India , Chennai
Salary
Salary:
Not provided
rxglobal.com Logo
RX Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Typically 7+ years of professional software engineering experience
  • Strong experience building and delivering complex, globally available distributed multi-tenant systems
  • Expertise in .NET/C# and at least one or more other modern backend stack (Java, python or Node.js), capable front-end skills (JavaScript, React.Js, Flutter, etc) plus strong SQL/data skills
  • Solid understanding of system design, Domain Driven Design, APIs, and event-driven architectures
  • Experience with cloud platforms (preferably AWS) and modern DevSecOps practices
  • Strong testing discipline and focus on quality and operational excellence
  • Ability to solve complex problems and make well-balanced technical trade-offs
  • Confident communicator who can work effectively across cross-functional and global agile product delivery teams
  • Exposure to AI Prompting and Agentic workflows
Job Responsibility
Job Responsibility
  • Design and build scalable, secure, and high-performing systems that minimise long-term maintenance
  • Own end-to-end delivery of complex components across services
  • Translate business needs into pragmatic, incremental technical solutions
  • Drive engineering quality through strong coding practices, testing strategies, and design standards
  • Take responsibility for service reliability, monitoring, and incident management
  • Collaborate with Product and stakeholders to align solutions with customer and business outcomes
  • Identify risks early and improve delivery predictability and efficiency
  • Mentor engineers and contribute to a high-performing, collaborative team culture
What we offer
What we offer
  • Comprehensive Health Insurance
  • Enhanced Health Insurance Options
  • Group Life Insurance
  • Group Accident Insurance
  • Flexible Working Arrangement
  • Employee Assistance Program
  • Medical Screening
  • Modern Family Benefits
  • Long-Service Awards
  • New Baby Gift
  • Fulltime
Read More
Arrow Right

Senior Infrastructure Engineer II

We’re looking for an Infrastructure Engineer with GCP, Azure, or AWS expertise t...
Location
Location
India
Salary
Salary:
Not provided
getdbt.com Logo
dbt Labs
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience with the clouds, tools, and languages in our stack, especially: AWS\Azure\GCP, Terraform, Kubernetes, Python, and Bash
  • Solid experience with declarative Infrastructure as Code - ideally with Terraform or a willingness to learn while leveraging your CloudFormation or ARM\Bicep background
  • Love to automate tasks
  • Worked asynchronously as part of a fully-remote, distributed team - and have excellent communication and writing skills
Job Responsibility
Job Responsibility
  • Design, operate, and support infrastructure systems with parity across tenancy models (single vs multi) and public clouds (AWS, Azure, and GCP) - and work with engineering teams to get their services consistently deployed to those environments
  • Bring cloud infrastructure expertise to the team, helping us strengthen and scale our infrastructure as we expand dbt Cloud’s multi-cloud capabilities
  • Help create a great developer experience while working with our close partners in Architecture, Release Engineering, Product Engineering and Security
  • Leverage tools and languages such as Terraform, Kubernetes, Python, Bash, Helm, ArgoCD, Go, and DataDog
  • Design and build automation to eliminate manual toil and streamline infrastructure operations at scale
  • Identify and implement infrastructure optimizations that reduce cloud spend without sacrificing reliability
  • Participate in a balanced on-call rotation in an environment that values continuous improvement, and help to upgrade our tooling and reduce toil
What we offer
What we offer
  • RSUs or comparable benefits may be offered depending on the legal or country limitations
Read More
Arrow Right

Senior Software Engineer II

We’re not just building better tech. We’re rewriting how data moves and what the...
Location
Location
United States , New York
Salary
Salary:
197400.00 - 232000.00 USD / Year
confluent.io Logo
Confluent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of industry experience designing, building, scaling, and operating backend systems in production
  • Deep proficiency in at least one major backend programming language (e.g., Java, Go, C/C++, or Python) and strong fundamentals in data structures, algorithms, and system design
  • Hands-on experience with distributed systems, such as event-driven architectures, high-throughput services, or large-scale data pipelines
  • Strong experience running production services in a public cloud (AWS, GCP, or Azure), including containerized workloads (e.g., Docker, Kubernetes)
  • Expertise in cloud-native technology, including networking & security, and experience being part of an on-call rotation
  • Proven experience in leading and mentoring technical teams
  • A track record of technical leadership: driving projects, influencing architecture, and coordinating work across multiple engineers or teams
  • Strong communication and collaboration skills, with the ability to align stakeholders, explain complex ideas clearly, and drive decisions
  • BS, MS, or PhD in computer science, engineering, or a related field, or equivalent practical experience
Job Responsibility
Job Responsibility
  • Develop and architect the cloud-native Stream Governance platform - a multi-tenant, highly available, and scalable service for Kafka and real-time data
  • Own and lead the end-to-end design and implementation of complex backend services within a cloud-native, microservices-based environment
  • Drive projects from requirements and design through implementation, rollout, and ongoing operation in production
  • Make architecture and technical decisions that thoughtfully balance reliability, scalability, performance, and operability
  • Solve complicated technical projects with high quality, provide specialized technical guidance to the team, and mentor/support other engineers through code reviews and design reviews
  • Evaluate and enhance the efficiency of our platform's technology stack, ensuring we keep pace with industry trends and adopt state-of-the-art solutions
  • Take responsibility for developing, managing, and maintaining a mission-critical service with a 99.99 SLA running across 100+ AWS, GCP, and Azure regions
  • Partner across engineering and with other key stakeholders to create and execute the overall roadmap for delivering a top-notch Data Streaming Platform
  • Contribute to a culture of continuous improvement, inclusive collaboration, and high technical standards
What we offer
What we offer
  • Remote-First Work
  • Robust Insurance Benefits
  • Flexible Time Away
  • The Best Teammates
  • Experience Ambassadors
  • Open and Honest Culture
  • Well-Being and Growth
  • Offers Equity
  • Fulltime
Read More
Arrow Right