CrawlJobs Logo

Senior Product Security Engineer

Spain; United Kingdom; France; Germany; Canada Employment contract 58000.00 - 77000.00 EUR / Year · Job Posted July 13, 2026
Apply Position
Job Link Share

Job Description

As a Senior Software Engineer - Operations, you'll bring a passion for crafting resilient systems that accelerate our review and operations team to provide a first-class experience for Add-on developers. You'll work closely with engineers, reviewers, developer relations, and Add-ons leadership to turn ideas into polished features, modernize the platform and its architecture, and see your work reach millions of people around the world.

Job Responsibility

  • Deliver major features and architectural improvements across the Add-ons stack, including automated moderation pipelines, Reviewer tools, and DevHub
  • Create robust observability systems and data-backed insights
  • Provide peer feedback, share knowledge and help others grow
  • Improve platform reliability through deployments, monitoring, and incident response
  • Help keep the platform safe and trustworthy, with attention to security and user trust
  • Step in to resolve issues impacting users and developers, from small bugs to larger incidents
  • Collaborate with designers, product managers, QA, and community contributors to deliver end-to-end improvements
  • Contribute in the open through pull requests, code reviews, and discussions
  • Work on: Full stack development: React/TypeScript frontends, Django backend, MySQL datastore
  • Platform reliability: deployments, monitoring, and incident response on Google Cloud
  • Feature development: submission flows, trust and safety signals, DevHub and Reviewer tools modernization
  • Ecosystem moderation: abuse report management, policy compliance, and ecosystem safety
  • Open collaboration: We work in the open, with contributions from Mozilla staff and community members

Requirements

  • Experience building modern web applications
  • Strong experience with Python/Django or similar backend frameworks
  • Understanding of web security principles and practices
  • Strong collaboration and communication skills in a distributed team environment
  • Adept at navigating ambiguity, exploring solutions, and shaping direction in new problem spaces
  • Commitment to our values: Welcoming differences, Being relationship-minded, Practicing responsible participation, Having grit

Nice to have

  • Experience in building automated security systems
  • Exposure to cloud infrastructure (Google Cloud or similar)
  • Contributions to open source projects
  • Experience with policy-compliant ecosystem moderation tools

What we offer

  • Generous performance-based bonus plans to all eligible employees
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Other benefits (life/AD&D, disability, EAP, etc. - varies by country)

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Product Security Engineer

8 matching positions

Senior Product Security Engineer

We are seeking a Senior Product Security Engineer with medical device experience...
Location
Location
United States
Salary
Salary:
127000.00 - 165000.00 USD / Year
themuse.com Logo
The Muse
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or related field
  • 6+ years of experience in information security, with direct focus on product security for medical devices
  • Strong understanding of security principles, methodologies, and tools within the PDLC and SDLC
  • Demonstrated experience conducting Cybersecurity Risk Assessments (CSRAs), vulnerability analysis, and working with modern threat detection tools (Veracode, Snyk, GitLab, or similar)
  • Familiarity with NIST Cybersecurity Framework, NIST SP 800-171, and deeper controls/frameworks such as NIST SP 800-53 (Security and Privacy Controls), NIST SP 800-92 (Log Management), and NIST SP 800-63 (Digital Identity Guidelines)
  • Hands-on experience with vulnerability identification and threat modeling within healthcare using methodologies such as STRIDE
  • Experience operating in a regulated environment (FDA, HIPAA, GDPR, international regulatory frameworks)
  • Experience with medical device hardware or Software as a Medical Device (SaMD)
  • Experience with medical device software development and regulatory processes
  • Excellent problem-solving, analytical, and communication skills, able to take a multi-siloed approach
Job Responsibility
Job Responsibility
  • FDA Cybersecurity Compliance: Ensure compliance with FDA cybersecurity guidance and regulations in collaboration with Cybersecurity, Regulatory, Quality, and Systems Development teams
  • Risk Assessments & CSRAs: Conduct comprehensive security risk assessments, including Cybersecurity Risk Assessments (CSRAs), to identify vulnerabilities and threats across device hardware, firmware, software, and cloud components
  • Threat Modeling: Develop and maintain device-specific cyber threat models, factoring in patient safety, data privacy, and operational continuity
  • SBOM Management: Demonstrate familiarity with Software Bill of Materials (SBOM) and effectively communicate technical details
  • Security Documentation: Create and maintain cybersecurity documentation for pre- and post-market activities, ensuring regulatory alignment
  • Data Flow Diagrams: Produce detailed data flow diagrams to support the threat modeling process
  • Security Design Reviews: Participate in design reviews of medical device architectures and implementations, providing actionable recommendations for system security requirements
  • Vulnerability Analysis & Management: Perform and support vulnerability analysis and coordinate the vulnerability management program, including scanning, patching, and remediation for medical devices
  • Threat Detection Tools: Leverage and maintain application and threat detection tools (Veracode, Snyk, GitLab, or equivalent) to identify security flaws early in the SDLC
  • Incident Response: Support investigation and remediation of device-related security incidents, minimizing impact and preventing recurrence
What we offer
What we offer
  • FSA
  • HSA
  • Health Insurance
  • Dental Insurance
  • Vision Insurance
  • Life Insurance
  • Short-Term Disability
  • Long-Term Disability
  • FSA With Employer Contribution
  • HSA With Employer Contribution
Read More
Arrow Right

Senior Product Security Engineer

At Baxter Healthcare Corporation, we invite a driven Senior Product Security Eng...
Location
Location
United States
Salary
Salary:
96000.00 - 132000.00 USD / Year
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent experience in Computer Science or a related field desired
  • 2+ years of secure software development life-cycle experience
  • Experience developing or analyzing secure coding practices with technologies such as ASP.Net (C#), SQL Server, HTML, C++
  • Experience in crafting secure networks, systems, and application architectures
  • Keen attention to detail, critical thinking, and analytical abilities
  • Proven interpersonal and communication (verbal, written, presentation) skills
  • Proven understanding of application security throughout the software life-cycle
  • Experience in addressing OWASP Top 10 vulnerabilities
  • Applicants must be authorized to work for any employer in the U.S.
Job Responsibility
Job Responsibility
  • Working together with the product development teams to establish cyber security requirements, plans, and policies
  • Establish governance around vulnerability management in products
  • Assist in responses to and recovery from a security breach in conjunction with other team members and business units
  • Use tools to scan for and test possible product vulnerabilities
  • investigate security breaches
  • Stay ahead of and advised about industry zero day discoveries and react to assess products
  • Build technical documentation around the security of a product including threat modeling, privacy assessments, whitepapers, etc.
  • Participate in project planning and prioritisation of security related deliverables and activities
What we offer
What we offer
  • Support for Parents
  • Continuing Education/ Professional Development
  • Employee Heath & Well-Being Benefits
  • Paid Time Off
  • 2 Days a Year to Volunteer
  • medical and dental coverage that start on day one
  • insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
  • Employee Stock Purchase Plan (ESPP), with the ability to purchase company stock at a discount
  • 401(k) Retirement Savings Plan (RSP), with options for employee contributions and company matching
  • Flexible Spending Accounts
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

This is where your work makes a difference. At Baxter, we believe every person—r...
Location
Location
United States
Salary
Salary:
96000.00 - 132000.00 USD / Year
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent experience in Computer Science or a related field desired
  • 2+ years of secure software development life-cycle experience
  • Experience developing or analyzing secure coding practices with technologies such as ASP.Net (C#), SQL Server, HTML, C++
  • Experience in crafting secure networks, systems, and application architectures
  • Keen attention to detail, critical thinking, and analytical abilities
  • Proven interpersonal and communication (verbal, written, presentation) skills
  • Proven understanding of application security throughout the software life-cycle
  • Experience in addressing OWASP Top 10 vulnerabilities
Job Responsibility
Job Responsibility
  • Working together with the product development teams to establish cyber security requirements, plans, and policies
  • Establish governance around vulnerability management in products
  • Assist in responses to and recovery from a security breach in conjunction with other team members and business units
  • Use tools to scan for and test possible product vulnerabilities
  • investigate security breaches
  • Stay ahead of and advised about industry zero day discoveries and react to assess products
  • Build technical documentation around the security of a product including threat modeling, privacy assessments, whitepapers, etc
  • Participate in project planning and prioritisation of security related deliverables and activities
What we offer
What we offer
  • medical and dental coverage
  • insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
  • Employee Stock Purchase Plan (ESPP)
  • 401(k) Retirement Savings Plan (RSP) with employee contributions and company matching
  • Flexible Spending Accounts
  • educational assistance programs
  • paid holidays
  • paid time off ranging from 20 to 35 days based on length of service
  • family and medical leaves of absence
  • paid parental leave
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

This is where new knowledge is discovered. Baxter's Research and Development tea...
Location
Location
United States
Salary
Salary:
96000.00 - 132000.00 USD / Year
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent experience in Computer Science or a related field desired
  • 2+ years of secure software development life-cycle experience
  • Experience developing or analyzing secure coding practices with technologies such as ASP.Net (C#), SQL Server, HTML, C++
  • Experience in crafting secure networks, systems, and application architectures
  • Certification in security such as CAP, CCSP, or equivalent preferred but not required
  • Keen attention to detail, critical thinking, and analytical abilities
  • Proven interpersonal and communication (verbal, written, presentation) skills
  • Proven understanding of application security throughout the software life-cycle
  • Experience in addressing OWASP Top 10 vulnerabilities
Job Responsibility
Job Responsibility
  • Working together with the product development teams to establish cyber security requirements, plans, and policies
  • Establish governance around vulnerability management in products
  • Assist in responses to and recovery from a security breach in conjunction with other team members and business units
  • Use tools to scan for and test possible product vulnerabilities
  • investigate security breaches
  • Stay ahead of and advised about industry zero day discoveries and react to assess products
  • Build technical documentation around the security of a product including threat modeling, privacy assessments, whitepapers, etc
  • Participate in project planning and prioritisation of security related deliverables and activities
What we offer
What we offer
  • Support for Parents
  • Continuing Education/ Professional Development
  • Employee Heath & Well-Being Benefits
  • Paid Time Off
  • 2 Days a Year to Volunteer
  • medical and dental coverage that start on day one
  • insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
  • Employee Stock Purchase Plan (ESPP), with the ability to purchase company stock at a discount
  • 401(k) Retirement Savings Plan (RSP), with options for employee contributions and company matching
  • Flexible Spending Accounts
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

This is where new knowledge is discovered. Baxter’s Research and Development tea...
Location
Location
United States
Salary
Salary:
96000.00 - 132000.00 USD / Year
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent experience in Computer Science or a related field desired
  • 2+ years of secure software development life-cycle experience
  • Experience developing or analyzing secure coding practices with technologies such as ASP.Net (C#), SQL Server, HTML, C++
  • Experience in crafting secure networks, systems, and application architectures
  • Certification in security such as CAP, CCSP, or equivalent preferred but not required
  • Keen attention to detail, critical thinking, and analytical abilities
  • Proven interpersonal and communication (verbal, written, presentation) skills
  • Proven understanding of application security throughout the software life-cycle
  • Experience in addressing OWASP Top 10 vulnerabilities
Job Responsibility
Job Responsibility
  • Working together with the product development teams to establish cyber security requirements, plans, and policies
  • Establish governance around vulnerability management in products
  • Assist in responses to and recovery from a security breach in conjunction with other team members and business units
  • Use tools to scan for and test possible product vulnerabilities
  • investigate security breaches
  • Stay ahead of and advised about industry zero day discoveries and react to assess products
  • Build technical documentation around the security of a product including threat modeling, privacy assessments, whitepapers, etc.
  • Participate in project planning and prioritisation of security related deliverables and activities
What we offer
What we offer
  • Support for Parents
  • Continuing Education/ Professional Development
  • Employee Heath & Well-Being Benefits
  • Paid Time Off
  • 2 Days a Year to Volunteer
  • medical and dental coverage that start on day one
  • insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
  • Employee Stock Purchase Plan (ESPP)
  • 401(k) Retirement Savings Plan (RSP)
  • Flexible Spending Accounts
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

LMArena is seeking a Senior Product Security Engineer to lead the strategy, desi...
Location
Location
United States , Bay Area
Salary
Salary:
Not provided
arena.ai Logo
Arena Intelligence, Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in software engineering or security engineering, including staff-level scope in securing large-scale, user-facing platforms
  • Proven track record designing and implementing systems to detect, mitigate, and prevent adversarial behavior (bots, Sybil attacks, automated abuse)
  • Strong experience with threat modeling, secure architecture design, and risk assessment
  • Hands-on experience building security features into production systems at scale (millions of DAU / billions of requests)
  • Proficiency in backend development (Node.js, TypeScript, Python, or Go) and willingness to work across the stack when needed
  • Strong knowledge of distributed systems security, identity, and authentication mechanisms
  • Excellent communication skills, able to build alignment across engineering, product, and leadership teams
Job Responsibility
Job Responsibility
  • Own the product security vision for LMArena, ensuring security and trust are core to every stage of our product lifecycle
  • Design and implement platform-wide security features, including Sybil resistance, bot detection, reputation systems, and anti-abuse primitives
  • Lead threat modeling and security architecture reviews for new and existing product features
  • Collaborate with infrastructure and product engineering to design secure APIs, data flows, and identity systems that scale
  • Improve developer velocity by creating secure-by-default frameworks and tooling for internal teams
  • Partner with incident response to quickly assess, contain, and remediate security events, and lead deep postmortems to improve defenses
  • Stay ahead of the curve by monitoring emerging attack techniques and applying cutting-edge security research to our platform
  • Mentor engineers across the company on secure coding practices, architecture trade-offs, and operational security
What we offer
What we offer
  • Comprehensive health and wellness benefits, including medical, dental, vision, and additional support programs
  • The opportunity to work on cutting-edge AI with a small, mission-driven team
  • A culture that values transparency, trust, and community impact
  • Competitive compensation and equity aligned to the markets where our team members are based
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

At Bumble, we’re redefining how security scales across global engineering organi...
Location
Location
United States , Austin
Salary
Salary:
190000.00 - 215000.00 USD / Year
bumble.com Logo
Bumble Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Application or Product Security, with a focus on secure software development and engineering enablement
  • Deep understanding of SDLC security practices — including threat modeling, code review, and CI/CD pipeline security
  • Hands-on experience building, integrating, or maintaining security tools that improve developer productivity
  • Strong familiarity with modern cloud environments (AWS, GCP) and security controls for microservices and APIs
  • Proven ability to translate complex security principles into simple, developer-friendly workflows
  • Excellent collaboration skills, with the ability to partner effectively across Security, Engineering, and Product teams
  • Demonstrated success in balancing engineering velocity with scalable security best practices
  • Some coding experience and a strong build-vs-buy mindset, with the ability to make pragmatic tooling decisions
Job Responsibility
Job Responsibility
  • Design and implement scalable, developer-friendly security solutions that seamlessly integrate into CI/CD pipelines and IDE workflows
  • Collaborate with the Staff Security Engineer to build AI- and MCP-powered tooling that enhances developer productivity and security awareness
  • Lead secure coding workshops, hands-on labs, and threat modeling sessions across engineering teams
  • Build and grow Bumble’s Security Champions program to amplify security culture across global teams
  • Create internal toolkits, guidance, and learning experiences that help developers make secure decisions quickly and confidently
  • Partner cross-functionally with Engineering, Product, and Security to identify friction points and deliver practical, high-impact improvements to secure development workflows
What we offer
What we offer
  • Maven Fertility: $10,000 lifetime benefit opportunity for reproductive journey support
  • Family & compassionate paid leave
  • 26 weeks parental leave for primary caregiver
  • 26 weeks paid leave for secondary caregiver after 1 year of employment
  • Unlimited paid time off
  • Company-wide week off
  • Focus Fridays
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

We are looking for a Senior Product Security Engineer to join our security team ...
Location
Location
United States
Salary
Salary:
196000.00 - 294000.00 USD / Year
vercel.com Logo
Vercel
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in a Product Security or Product Security role (or related field)
  • Strong familiarity with JavaScript/TypeScript and Node.js runtime security
  • Experience with modern web frameworks (ideally Next.js or React and Node-based frameworks)
  • Demonstrated ability to perform threat modeling and architectural risk analysis for complex product
  • Hands-on experience with product security tooling such as static product security testing (SAST), dynamic testing (DAST), dependency vulnerability scanners, and CI/CD pipeline security integration
  • Knowledge of open-source security best practices
  • Exposure to running or participating in a bug bounty program or vulnerability disclosure process
  • Solid understanding of cloud architecture and serverless environments from a security perspective
  • Proven ability to drive security initiatives and influence engineering teams to adopt best practices
Job Responsibility
Job Responsibility
  • Partner with engineering and product teams to perform threat modeling for new and existing features
  • Conduct secure code reviews and security assessments on products and services built with Next.js, Node.js, and our serverless backend
  • Oversee Vercel’s open-source security efforts
  • Evaluate, select, and integrate security tools into our Software Development Life Cycle
  • Own and expand Vercel’s bug bounty program
  • Lead and contribute to security projects that span multiple teams and disciplines
  • Work closely with customer success and product marketing on security-related initiatives that impact our users
What we offer
What we offer
  • Competitive compensation package, including equity
  • Inclusive Healthcare Package
  • Learn and Grow - we provide mentorship and send you to events that help you build your network and skills
  • Flexible Time Off
  • We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed
  • Fulltime
Read More
Arrow Right