CrawlJobs Logo

Senior Product Security Engineer

United States, Austin 190000.00 - 215000.00 USD / Year · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

At Bumble, we’re redefining how security scales across global engineering organizations. We’re looking for a Senior Product Security Engineer to design and implement developer-focused security solutions that make secure development effortless and intuitive. In this role, you’ll help embed security into every stage of the software lifecycle — from design and code to deployment and culture. You’ll work closely with Product, Engineering, and Security leadership to build AI-powered tools, frameworks, and communities that empower developers to move fast while staying secure.

Job Responsibility

  • Design and implement scalable, developer-friendly security solutions that seamlessly integrate into CI/CD pipelines and IDE workflows
  • Collaborate with the Staff Security Engineer to build AI- and MCP-powered tooling that enhances developer productivity and security awareness
  • Lead secure coding workshops, hands-on labs, and threat modeling sessions across engineering teams
  • Build and grow Bumble’s Security Champions program to amplify security culture across global teams
  • Create internal toolkits, guidance, and learning experiences that help developers make secure decisions quickly and confidently
  • Partner cross-functionally with Engineering, Product, and Security to identify friction points and deliver practical, high-impact improvements to secure development workflows

Requirements

  • 5+ years of experience in Application or Product Security, with a focus on secure software development and engineering enablement
  • Deep understanding of SDLC security practices — including threat modeling, code review, and CI/CD pipeline security
  • Hands-on experience building, integrating, or maintaining security tools that improve developer productivity
  • Strong familiarity with modern cloud environments (AWS, GCP) and security controls for microservices and APIs
  • Proven ability to translate complex security principles into simple, developer-friendly workflows
  • Excellent collaboration skills, with the ability to partner effectively across Security, Engineering, and Product teams
  • Demonstrated success in balancing engineering velocity with scalable security best practices
  • Some coding experience and a strong build-vs-buy mindset, with the ability to make pragmatic tooling decisions

Nice to have

  • Experience with workflow automation platforms such as n8n, Make.com, or Zapier
  • Hands-on experience creating agentic AI systems that collaborate or work together as a team
  • Familiarity with Model Context Protocol (MCP) and how it can enhance developer and security workflows
  • Background in tool building and automation, especially for developer enablement or security use cases

What we offer

  • Maven Fertility: $10,000 lifetime benefit opportunity for reproductive journey support
  • Family & compassionate paid leave
  • 26 weeks parental leave for primary caregiver
  • 26 weeks paid leave for secondary caregiver after 1 year of employment
  • Unlimited paid time off
  • Company-wide week off
  • Focus Fridays

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Product Security Engineer

8 matching positions

Senior Product Security Engineer

At Baxter Healthcare Corporation, we invite a driven Senior Product Security Eng...
Location
Location
United States
Salary
Salary:
96000.00 - 132000.00 USD / Year
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent experience in Computer Science or a related field desired
  • 2+ years of secure software development life-cycle experience
  • Experience developing or analyzing secure coding practices with technologies such as ASP.Net (C#), SQL Server, HTML, C++
  • Experience in crafting secure networks, systems, and application architectures
  • Keen attention to detail, critical thinking, and analytical abilities
  • Proven interpersonal and communication (verbal, written, presentation) skills
  • Proven understanding of application security throughout the software life-cycle
  • Experience in addressing OWASP Top 10 vulnerabilities
  • Applicants must be authorized to work for any employer in the U.S.
Job Responsibility
Job Responsibility
  • Working together with the product development teams to establish cyber security requirements, plans, and policies
  • Establish governance around vulnerability management in products
  • Assist in responses to and recovery from a security breach in conjunction with other team members and business units
  • Use tools to scan for and test possible product vulnerabilities
  • investigate security breaches
  • Stay ahead of and advised about industry zero day discoveries and react to assess products
  • Build technical documentation around the security of a product including threat modeling, privacy assessments, whitepapers, etc.
  • Participate in project planning and prioritisation of security related deliverables and activities
What we offer
What we offer
  • Support for Parents
  • Continuing Education/ Professional Development
  • Employee Heath & Well-Being Benefits
  • Paid Time Off
  • 2 Days a Year to Volunteer
  • medical and dental coverage that start on day one
  • insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
  • Employee Stock Purchase Plan (ESPP), with the ability to purchase company stock at a discount
  • 401(k) Retirement Savings Plan (RSP), with options for employee contributions and company matching
  • Flexible Spending Accounts
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

This is where your work makes a difference. At Baxter, we believe every person—r...
Location
Location
United States
Salary
Salary:
96000.00 - 132000.00 USD / Year
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent experience in Computer Science or a related field desired
  • 2+ years of secure software development life-cycle experience
  • Experience developing or analyzing secure coding practices with technologies such as ASP.Net (C#), SQL Server, HTML, C++
  • Experience in crafting secure networks, systems, and application architectures
  • Keen attention to detail, critical thinking, and analytical abilities
  • Proven interpersonal and communication (verbal, written, presentation) skills
  • Proven understanding of application security throughout the software life-cycle
  • Experience in addressing OWASP Top 10 vulnerabilities
Job Responsibility
Job Responsibility
  • Working together with the product development teams to establish cyber security requirements, plans, and policies
  • Establish governance around vulnerability management in products
  • Assist in responses to and recovery from a security breach in conjunction with other team members and business units
  • Use tools to scan for and test possible product vulnerabilities
  • investigate security breaches
  • Stay ahead of and advised about industry zero day discoveries and react to assess products
  • Build technical documentation around the security of a product including threat modeling, privacy assessments, whitepapers, etc
  • Participate in project planning and prioritisation of security related deliverables and activities
What we offer
What we offer
  • medical and dental coverage
  • insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
  • Employee Stock Purchase Plan (ESPP)
  • 401(k) Retirement Savings Plan (RSP) with employee contributions and company matching
  • Flexible Spending Accounts
  • educational assistance programs
  • paid holidays
  • paid time off ranging from 20 to 35 days based on length of service
  • family and medical leaves of absence
  • paid parental leave
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

This is where new knowledge is discovered. Baxter's Research and Development tea...
Location
Location
United States
Salary
Salary:
96000.00 - 132000.00 USD / Year
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent experience in Computer Science or a related field desired
  • 2+ years of secure software development life-cycle experience
  • Experience developing or analyzing secure coding practices with technologies such as ASP.Net (C#), SQL Server, HTML, C++
  • Experience in crafting secure networks, systems, and application architectures
  • Certification in security such as CAP, CCSP, or equivalent preferred but not required
  • Keen attention to detail, critical thinking, and analytical abilities
  • Proven interpersonal and communication (verbal, written, presentation) skills
  • Proven understanding of application security throughout the software life-cycle
  • Experience in addressing OWASP Top 10 vulnerabilities
Job Responsibility
Job Responsibility
  • Working together with the product development teams to establish cyber security requirements, plans, and policies
  • Establish governance around vulnerability management in products
  • Assist in responses to and recovery from a security breach in conjunction with other team members and business units
  • Use tools to scan for and test possible product vulnerabilities
  • investigate security breaches
  • Stay ahead of and advised about industry zero day discoveries and react to assess products
  • Build technical documentation around the security of a product including threat modeling, privacy assessments, whitepapers, etc
  • Participate in project planning and prioritisation of security related deliverables and activities
What we offer
What we offer
  • Support for Parents
  • Continuing Education/ Professional Development
  • Employee Heath & Well-Being Benefits
  • Paid Time Off
  • 2 Days a Year to Volunteer
  • medical and dental coverage that start on day one
  • insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
  • Employee Stock Purchase Plan (ESPP), with the ability to purchase company stock at a discount
  • 401(k) Retirement Savings Plan (RSP), with options for employee contributions and company matching
  • Flexible Spending Accounts
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

This is where new knowledge is discovered. Baxter’s Research and Development tea...
Location
Location
United States
Salary
Salary:
96000.00 - 132000.00 USD / Year
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent experience in Computer Science or a related field desired
  • 2+ years of secure software development life-cycle experience
  • Experience developing or analyzing secure coding practices with technologies such as ASP.Net (C#), SQL Server, HTML, C++
  • Experience in crafting secure networks, systems, and application architectures
  • Certification in security such as CAP, CCSP, or equivalent preferred but not required
  • Keen attention to detail, critical thinking, and analytical abilities
  • Proven interpersonal and communication (verbal, written, presentation) skills
  • Proven understanding of application security throughout the software life-cycle
  • Experience in addressing OWASP Top 10 vulnerabilities
Job Responsibility
Job Responsibility
  • Working together with the product development teams to establish cyber security requirements, plans, and policies
  • Establish governance around vulnerability management in products
  • Assist in responses to and recovery from a security breach in conjunction with other team members and business units
  • Use tools to scan for and test possible product vulnerabilities
  • investigate security breaches
  • Stay ahead of and advised about industry zero day discoveries and react to assess products
  • Build technical documentation around the security of a product including threat modeling, privacy assessments, whitepapers, etc.
  • Participate in project planning and prioritisation of security related deliverables and activities
What we offer
What we offer
  • Support for Parents
  • Continuing Education/ Professional Development
  • Employee Heath & Well-Being Benefits
  • Paid Time Off
  • 2 Days a Year to Volunteer
  • medical and dental coverage that start on day one
  • insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
  • Employee Stock Purchase Plan (ESPP)
  • 401(k) Retirement Savings Plan (RSP)
  • Flexible Spending Accounts
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

We are seeking a Senior Product Security Engineer with medical device experience...
Location
Location
United States
Salary
Salary:
127000.00 - 165000.00 USD / Year
themuse.com Logo
The Muse
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or related field
  • 6+ years of experience in information security, with direct focus on product security for medical devices
  • Strong understanding of security principles, methodologies, and tools within the PDLC and SDLC
  • Demonstrated experience conducting Cybersecurity Risk Assessments (CSRAs), vulnerability analysis, and working with modern threat detection tools (Veracode, Snyk, GitLab, or similar)
  • Familiarity with NIST Cybersecurity Framework, NIST SP 800-171, and deeper controls/frameworks such as NIST SP 800-53 (Security and Privacy Controls), NIST SP 800-92 (Log Management), and NIST SP 800-63 (Digital Identity Guidelines)
  • Hands-on experience with vulnerability identification and threat modeling within healthcare using methodologies such as STRIDE
  • Experience operating in a regulated environment (FDA, HIPAA, GDPR, international regulatory frameworks)
  • Experience with medical device hardware or Software as a Medical Device (SaMD)
  • Experience with medical device software development and regulatory processes
  • Excellent problem-solving, analytical, and communication skills, able to take a multi-siloed approach
Job Responsibility
Job Responsibility
  • FDA Cybersecurity Compliance: Ensure compliance with FDA cybersecurity guidance and regulations in collaboration with Cybersecurity, Regulatory, Quality, and Systems Development teams
  • Risk Assessments & CSRAs: Conduct comprehensive security risk assessments, including Cybersecurity Risk Assessments (CSRAs), to identify vulnerabilities and threats across device hardware, firmware, software, and cloud components
  • Threat Modeling: Develop and maintain device-specific cyber threat models, factoring in patient safety, data privacy, and operational continuity
  • SBOM Management: Demonstrate familiarity with Software Bill of Materials (SBOM) and effectively communicate technical details
  • Security Documentation: Create and maintain cybersecurity documentation for pre- and post-market activities, ensuring regulatory alignment
  • Data Flow Diagrams: Produce detailed data flow diagrams to support the threat modeling process
  • Security Design Reviews: Participate in design reviews of medical device architectures and implementations, providing actionable recommendations for system security requirements
  • Vulnerability Analysis & Management: Perform and support vulnerability analysis and coordinate the vulnerability management program, including scanning, patching, and remediation for medical devices
  • Threat Detection Tools: Leverage and maintain application and threat detection tools (Veracode, Snyk, GitLab, or equivalent) to identify security flaws early in the SDLC
  • Incident Response: Support investigation and remediation of device-related security incidents, minimizing impact and preventing recurrence
What we offer
What we offer
  • FSA
  • HSA
  • Health Insurance
  • Dental Insurance
  • Vision Insurance
  • Life Insurance
  • Short-Term Disability
  • Long-Term Disability
  • FSA With Employer Contribution
  • HSA With Employer Contribution
Read More
Arrow Right

Senior Product Security Engineer

LMArena is seeking a Senior Product Security Engineer to lead the strategy, desi...
Location
Location
United States , Bay Area
Salary
Salary:
Not provided
arena.ai Logo
Arena Intelligence, Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in software engineering or security engineering, including staff-level scope in securing large-scale, user-facing platforms
  • Proven track record designing and implementing systems to detect, mitigate, and prevent adversarial behavior (bots, Sybil attacks, automated abuse)
  • Strong experience with threat modeling, secure architecture design, and risk assessment
  • Hands-on experience building security features into production systems at scale (millions of DAU / billions of requests)
  • Proficiency in backend development (Node.js, TypeScript, Python, or Go) and willingness to work across the stack when needed
  • Strong knowledge of distributed systems security, identity, and authentication mechanisms
  • Excellent communication skills, able to build alignment across engineering, product, and leadership teams
Job Responsibility
Job Responsibility
  • Own the product security vision for LMArena, ensuring security and trust are core to every stage of our product lifecycle
  • Design and implement platform-wide security features, including Sybil resistance, bot detection, reputation systems, and anti-abuse primitives
  • Lead threat modeling and security architecture reviews for new and existing product features
  • Collaborate with infrastructure and product engineering to design secure APIs, data flows, and identity systems that scale
  • Improve developer velocity by creating secure-by-default frameworks and tooling for internal teams
  • Partner with incident response to quickly assess, contain, and remediate security events, and lead deep postmortems to improve defenses
  • Stay ahead of the curve by monitoring emerging attack techniques and applying cutting-edge security research to our platform
  • Mentor engineers across the company on secure coding practices, architecture trade-offs, and operational security
What we offer
What we offer
  • Comprehensive health and wellness benefits, including medical, dental, vision, and additional support programs
  • The opportunity to work on cutting-edge AI with a small, mission-driven team
  • A culture that values transparency, trust, and community impact
  • Competitive compensation and equity aligned to the markets where our team members are based
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

We are looking for a Senior Product Security Engineer to join our security team ...
Location
Location
United States
Salary
Salary:
196000.00 - 294000.00 USD / Year
vercel.com Logo
Vercel
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in a Product Security or Product Security role (or related field)
  • Strong familiarity with JavaScript/TypeScript and Node.js runtime security
  • Experience with modern web frameworks (ideally Next.js or React and Node-based frameworks)
  • Demonstrated ability to perform threat modeling and architectural risk analysis for complex product
  • Hands-on experience with product security tooling such as static product security testing (SAST), dynamic testing (DAST), dependency vulnerability scanners, and CI/CD pipeline security integration
  • Knowledge of open-source security best practices
  • Exposure to running or participating in a bug bounty program or vulnerability disclosure process
  • Solid understanding of cloud architecture and serverless environments from a security perspective
  • Proven ability to drive security initiatives and influence engineering teams to adopt best practices
Job Responsibility
Job Responsibility
  • Partner with engineering and product teams to perform threat modeling for new and existing features
  • Conduct secure code reviews and security assessments on products and services built with Next.js, Node.js, and our serverless backend
  • Oversee Vercel’s open-source security efforts
  • Evaluate, select, and integrate security tools into our Software Development Life Cycle
  • Own and expand Vercel’s bug bounty program
  • Lead and contribute to security projects that span multiple teams and disciplines
  • Work closely with customer success and product marketing on security-related initiatives that impact our users
What we offer
What we offer
  • Competitive compensation package, including equity
  • Inclusive Healthcare Package
  • Learn and Grow - we provide mentorship and send you to events that help you build your network and skills
  • Flexible Time Off
  • We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

Cloud Software Group is one of the world’s largest cloud solution providers, ser...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
cloud.com Logo
Cloud Software Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, Engineering, or equivalent experience
  • 5+ years of experience in offensive security, penetration testing, or red teaming
  • Solid understanding of basic networking, web technologies, and computer systems
  • Familiarity with at least one scripting or programming language (e.g., Python, JavaScript, Bash, PowerShell)
  • Demonstrated interest in cybersecurity (capture the flag participation, open-source contributions, hacking challenges, security coursework, etc.)
  • Strong problem-solving and communication skills
  • Eagerness to learn and adapt in a fast-paced security environment
Job Responsibility
Job Responsibility
  • Simulate real-world attacker tactics, techniques, and procedures (TTPs) to assess and improve the security posture of applications, APIs, and infrastructure
  • Identify, exploit, and document vulnerabilities in products and supporting systems using both manual techniques and automated tools
  • Develop and execute custom attack scenarios, including phishing, social engineering, and lateral movement campaigns, to test organizational defenses
  • Prepare comprehensive assessment reports, including reproduction steps and actionable remediation guidance for engineering teams
  • Stay current with the latest security threats, adversary methodologies (e.g., MITRE ATT&CK framework), and offensive security tooling
  • Assist in simulating adversary attacks to identify vulnerabilities and logic flaws in web and product features
  • Help develop automation scripts, tools, and documentation to support security testing activities
  • Continuously learn and apply the latest security testing techniques, tools, and industry best practices
Read More
Arrow Right