Source Job

Europe US Unlimited PTO

  • Triage, validate, and remediate security vulnerabilities across products, infrastructure, and internal systems.
  • Develop, maintain, and contribute to internal and open-source security tooling, writing production-grade code.
  • Improve secure development practices through code reviews, threat modeling, and security design reviews.

Go Python Kubernetes Cloud Security

20 jobs similar to Security Engineer

Jobs ranked by similarity.

UK Unlimited PTO 18w maternity 12w paternity

  • Embed security into CI/CD pipelines and product development as a technical leader.
  • Drive cross-team influence and own hard security challenges in a cloud-native environment.
  • Work in a remote-first culture focused on customer obsession and intentional action.

Chainguard provides hardened, secure, and production-ready builds of open source software to help organizations build faster and stay compliant. Backed by leading investors including Sequoia Capital and Kleiner Perkins, Chainguard serves Fortune 500 enterprises and global industry leaders.

Spain

  • Play a key role in protecting and strengthening large-scale cloud-native applications that power next-generation AI infrastructure.
  • Work at the intersection of software engineering and cybersecurity, ensuring security is embedded throughout the software development lifecycle.
  • Collaborate cross-functionally to identify and remediate vulnerabilities in complex distributed systems.

Our partner is a company building large-scale cloud-native applications that power next-generation AI infrastructure. They have a high-impact security engineering environment with a collaborative and innovative culture focused on trust, learning, and impact.

Europe

  • Join the security team to build world-class security into products, focusing on operations, monitoring, and incident response.
  • Proactively improve security across codebase, product, cloud, and customer deployments.
  • Work as a generalist covering all facets of security, from application testing to threat modeling.

Sourcegraph builds the world's most powerful code intelligence platform, helping developers and agents navigate complex codebases. They are a globally distributed team backed by a16z, Sequoia, and Redpoint, with a culture of high agency and direct communication.

US

  • Enable software engineering teams to continuously improve the security posture of products and SaaS environments through AppSec and DevSecOps expertise.
  • Serve as the go-to AppSec expert, mentoring engineers on secure design patterns and coding practices while collaborating on threat models and design reviews.
  • Lead automation of vulnerability management tooling across CI/CD pipelines, perform security code reviews, and contribute to compliance strategies.

Hypori is a high-growth cybersecurity SaaS company transforming how organizations think about secure mobility. Backed by $55M in funding from investors including UBS and AE Industrial Partners, the company is expanding into new commercial and regulated markets.

Canada

  • Design and ship scalable security solutions to bridge the gap between security and engineering teams.
  • Build cooperative partnerships with product and engineering teams to integrate robust security capabilities at scale.
  • Drive security risk reduction through technical leadership, security reviews, and mentorship across engineering teams.

Twilio is a communications platform that delivers innovative solutions to hundreds of thousands of businesses and empowers millions of developers worldwide to craft personalized customer experiences. The company has a remote-first work culture with a strong focus on connection, global inclusion, and diverse experiences, making a global impact each day.

United States

  • Design and implement authorization frameworks and just-in-time access controls for cloud resources.
  • Develop security automation scripts and tools in Python and Go to streamline operations and incident response.
  • Collaborate with engineering teams to integrate security controls into CI/CD pipelines and infrastructure.

Included Health is a healthcare company delivering integrated virtual care and navigation. It has a remote-first culture and offers comprehensive benefits.

Netherlands

  • Design, implement, and optimize security monitoring, incident response, and detection capabilities across modern cloud and infrastructure ecosystems.
  • Build and maintain SIEM and log management capabilities, ensuring centralized log collection, normalization, and retention policies.
  • Automate operational security processes such as alert enrichment, incident notifications, and response orchestration.

Jobgether is an AI-powered job matching platform that connects candidates with hiring companies. They operate as a partner company managing applications and next steps, fostering a collaborative, transparent, and innovation-driven culture with a focus on professional growth and well-being.

Europe

  • Champion and implement security best practices and automated tooling across Spotify's infrastructure and platforms.
  • Partner closely with teams to integrate security throughout the software development lifecycle from design to deployment.
  • Conduct threat modeling, security reviews, and risk assessments for both AI and non-AI systems.

Spotify is the world's most popular audio streaming subscription service, unlocking the potential of human creativity by giving artists the opportunity to live off their art. With over 700 million users, the company values curiosity, collaboration, and a willingness to both teach and learn from others.

Europe

  • Lead the security research function by defining methodologies and best practices for identifying cloud and application security threats.
  • Conduct advanced vulnerability research and collaborate with engineering teams to translate findings into product features.
  • Publish high-quality technical content and establish thought leadership in the cybersecurity community.

The company is a cybersecurity vendor that develops AI-powered security solutions. It is a fast-growing, remote-first organization with a collaborative culture emphasizing technical excellence and continuous learning.

US Canada Unlimited PTO

  • Own and improve the secure software development lifecycle, perform application security reviews, threat modeling, and deep code-level analysis for high-impact product, platform, and AI features.
  • Drive vulnerability management across internal reviews, bug bounty, pentests, and other research signals, ensuring findings are validated, prioritized, and tracked through remediation.
  • Configure and improve AppSec tooling and integrations, and use AI to automate and scale security processes while validating outputs with strong engineering judgment.

Apollo.io is the leading go-to-market solution for revenue teams, trusted by over 500,000 companies and millions of users globally. Founded in 2015, the company is one of the fastest growing companies in SaaS, raising approximately $250 million to date and valued at $1.6 billion.

UK

  • Design and deliver secure, scalable software solutions using Go within a cloud-native architecture.
  • Build platform capabilities for API security, cryptographic controls, AI governance, and supply chain security.
  • Collaborate with engineering, platform, and security teams to enhance production system security and resilience.

Jobgether is a platform that uses AI-powered matching to connect candidates with roles. They partner with companies to manage applications and next steps, fostering an inclusive and diverse working environment.

North America Unlimited PTO

  • Collaborate with multiple teams to build and enhance complex software and security tooling.
  • Help improve availability, performance, scalability, and security of security tools.
  • Focus on DevSecOps tooling and strategy to automate and enhance security posture.

UltraViolet Cyber is a leading platform-enabled unified security operations company providing comprehensive security solutions. Founded by security practitioners with decades of experience, the company serves Fortune 500, Federal Government, and Commercial clients and has global offices across the U.S. and in India.

US Unlimited PTO

  • Engineer security infrastructure across AWS and Kubernetes including telemetry pipelines, cryptographic lifecycle, and compliance automation.
  • Build and maintain agentic AI workflows using tools like Claude Code and MCP integrations to automate security engineering tasks.
  • Embed security controls into deployment pipelines and develop threat models that inform architecture decisions.

Lumin Digital creates cutting-edge digital banking solutions for credit unions and banks as a 100% cloud-native company. Their culture is built on trust, respect, and boldness in a fully remote environment.

Canada Unlimited PTO

  • Partner with engineering teams to design, build, and operate secure-by-default cloud infrastructure across AWS and Google Cloud.
  • Build reusable Terraform modules and policy-as-code guardrails to make secure implementation easier for engineering teams.
  • Operate CSPM/CNAPP tooling and drive remediation of cloud vulnerabilities and misconfigurations.

Fullscript is a health technology company that provides a platform for practitioners to access clinical insights, lab interpretations, and high-quality supplements, serving over 125,000 practitioners and 10 million patients. The company has a remote-first culture, emphasizes work-life balance, and values inclusivity and continuous learning.

UK Global

  • Lead and own the ongoing operation and maintenance of Samsara’s vulnerability management program.
  • Collaborate with engineering teams to track and support the remediation of identified vulnerabilities.
  • Champion Samsara’s cultural principles in daily work.

Samsara is the pioneer of the Connected Operations Cloud, enabling organizations to harness IoT data for actionable insights. As a recently public company with a global team, they foster a culture of rapid career development and encourage employees to architect their own careers.

US

  • Lead integration of security across the SDLC, embedding automated testing into CI/CD pipelines.
  • Secure cloud-native AWS architectures and enforce least privilege access and runtime protections.
  • Perform threat modeling, automate compliance, and innovate with AI security standards.

TrueML is a mission-driven financial software company that uses machine learning to improve customer experiences for distressed borrowers. The team includes data scientists, financial services experts, and customer experience fanatics building inclusive financial technology.

United States

  • Perform penetration testing and design reviews to identify vulnerabilities and insecure designs.
  • Maintain and build internal tools to automate security efforts, including SAST and DAST testing.
  • Identify vulnerabilities, demonstrate business impact, and articulate risk to drive prioritization.

Brex is the intelligent finance platform that enables companies to spend smarter and move faster in over 200 markets. With tens of thousands of customers including DoorDash, Coinbase, and Zoom, Brex fosters a diverse and inclusive team culture where collaboration with some of the brightest minds in the industry is key.

US Unlimited PTO

  • Configure, deploy, and maintain security tools across cloud-native environments.
  • Integrate security tooling into existing software development and deployment workflows.
  • Partner with engineering teams to implement security best practices throughout the software development lifecycle.

Sphinx builds modern, scalable software to solve complex national security problems in Space. Founded by engineers and technologists with deep experience across commercial and defense technology, they emphasize collaboration, transparency, and individual responsibility in a growing team.

US

  • Support the day-to-day security posture of systems across cloud and on-prem environments, including vulnerability management and remediation tracking.
  • Partner with infrastructure, platform, and engineering teams on secure configuration, access control, logging, and incident readiness.
  • Support compliance activities related to GovRAMP, FedRAMP, PCI DSS, and internal reviews using AWS security tooling.

Grant Street Group is a growing company that provides SaaS products for electronic payments, auctions, and tax collection. The company fosters a culture of teamwork, professional excellence, and individual responsibility in a technology-rich remote environment.

US Unlimited PTO 16w maternity 16w paternity

  • Champion a security-first mindset within Engineering to set the security posture of platform infrastructure.
  • Design and build automation that makes compliance evidence continuous and translates HITRUST controls into tests.
  • Embed security into the platform by default through guardrails, policy-as-code, and well-documented patterns.

Redox accelerates healthcare transformation with useful data via its interoperability platform. The fully remote US-based team operates with radical transparency and ownership.