Lead, coach, and grow a team of highly effective engineers, fostering a culture of continuous learning and high performance.
Own the end-to-end vulnerability lifecycle, ensuring the organization meets strict remediation SLAs and prioritizes risks based on actual business impact.
Partner with DevOps and Engineering teams to integrate security earlier in the SDLC, ensuring vulnerabilities are identified and remediated during the design and build phases.
Lead, coach, develop, and support the GSSC AppSec team while effectively delegating workload
Refine and mature team processes to enhance operational excellence and program scalability
Engage directly with customers to understand key security concerns and communicate how ServiceNow mitigates their risks
ServiceNow is a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Their intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work.
Lead secure design reviews, threat modeling, and security-focused code reviews across the product and platform.
Build and run Fieldguide’s vulnerability management program: scanning, triage, SLA-driven remediation tracking, and engineering coordination.
Partner with Compliance to ensure technical controls satisfy framework requirements (SOC 2, ISO 27001, ISO 42001, FedRAMP).
Fieldguide is establishing a new state of trust for global commerce and capital markets through automating and streamlining the work of assurance and audit practitioners. They are based in San Francisco, CA, and built as a remote-first company that enables you to do your best work from anywhere.
Own and drive remediation of security vulnerability tickets across environments
Analyze vulnerability trends to identify process gaps and recommend improvements
Track remediation progress and provide weekly status updates to management
ItD is a consulting and software development company blending diversity, innovation, and integrity with real business results. They are a woman- and minority-led firm that rejects strong hierarchies, empowering them to deliver great results with Fortune 500 companies and high-performance teams.
Drive and enable proactive identification, analysis, and remediation of security vulnerabilities.
Respond to manage pen testing and bug bounty programs.
Work in partnership with Software Architecture, Risk/Compliance, the SRE team, and other partners, to integrate security capabilities into the SDLC.
Subsplash builds The Ultimate Engagement Platform™ for churches, Christian ministries, non-profits, and businesses around the world. They are a family-owned and operated company of 290+ mission-driven people.
Support vulnerability management services, including vulnerability scanning and assessments.
Operate and configure agency tools for vulnerability testing and identification.
Develop and disseminate reports on vulnerability status to stakeholders.
Tyto Athene is a trusted leader in IT services, delivering mission-focused digital transformation. They have over 50 years of experience and foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role.
Serve as trusted advisor to team’s leadership and partner teams by clearly articulating business risks associated with security issues
Lead security operation functions – including vulnerability management, SAST, DAST, detection engineering, and incident response – in CI/CD and cloud-native production environments
Integrate security into our applications throughout the software development lifecycle
They are scaling intelligence to serve humanity by training and deploying frontier models for developers and enterprises, building AI systems to power magical experiences. Cohere is composed of researchers, engineers, and designers who are passionate about their craft, and believes that a diverse range of perspectives is a requirement for building great products.
Lead Application Security testing projects and drive remediation of identified vulnerabilities.
Design and run adversarial testing campaigns across the full Buildkite environment.
Build automation for both AppSec and adversarial testing workflows.
Buildkite's mission is to unblock every developer on the planet with their CI/CD platform. They are a remote-first company since 2013 with a small team, high standards, and real ownership distributed across 60+ cities, built around async communication and genuine autonomy.
Define and execute the reliability engineering roadmap.
Establish SLO/SLI/error budget frameworks for system stability.
Drive continuous improvement through DORA metrics and analysis.
Jobgether leverages AI for HR solutions. They focus on connecting talent with opportunities, using AI-driven matching to ensure fair and objective application reviews.
Support ServiceNow’s Sales Teams in Pre- and Post-Sales efforts.
Respond to prospect and customer questions related to security.
ServiceNow is a global market leader bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Their intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work.
Analyze security vulnerabilities and drive remediations.
Integrate security at every stage of the SDLC.
Deploy and manage security tooling.
Modern Health is a mental health benefits platform for employers, offering access to various resources for emotional, professional, social, financial, and physical well-being. They are the fastest entirely female-founded company in the U.S. to reach Unicorn status, with a unique culture centered around high empathy and accountability.
Own the strategy and maturity roadmap for corporate security engineering.
Lead and develop the Vulnerability Management Specialist and System Security Engineers.
Strengthen configuration enforcement, reduce security drift, and improve automation across endpoints.
Onebrief provides collaboration and AI-powered workflow software designed specifically for military staffs. The company has raised $320m+ from top-tier investors, including Battery Ventures, General Catalyst, Sapphire Ventures, Insight Partners, and Human Capital, and today, Onebrief is valued at $2.15B.
Lead Precision Defense engineering teams, turning NodeZero’s offensive insights into autonomous defenses.
Build and evolve deception capabilities like honeypots and honeytokens for high-fidelity defense.
Codify emerging threats into tests and alerts, guiding fast mitigation for customers.
Horizon3.ai is a fast-growing, remote cybersecurity company dedicated to enabling organizations to proactively find, fix and verify exploitable attack vectors before criminals exploit them. They are a fusion of former U.S. Special Operations cyber operators, startup engineers & operators, and formerly frustrated cybersecurity practitioners.
Ensure high availability, fault tolerance, and scalability of cloud services.
Optimize performance and cost efficiency across AWS environments.
Implement security best practices and SOC 2 compliance monitoring.
BlastPoint is a B2B data analytics startup located in Pittsburgh. They empower companies to engage with customers more effectively by discovering the humans in their data and understanding customer journeys; they are a tight-knit, forward-thinking team.
Drive vulnerability management activities with cross-functional teams.
Execute application security testing and lead cyber risk management efforts.
Oversee remediation of findings from security assessments and testing.
The American Institutes for Research (AIR) is a nonpartisan, not-for-profit organization. They conduct behavioral and social science research and deliver technical assistance to address pressing challenges. They employ data-driven solutions, expanding opportunities and improving lives.
Own detection, response, and cloud security at PostHog.
Take the reins of our security operations, build out our detection pipelines, and ensure that when something goes bump in the night, we have the observability to know exactly what happened.
Shape the security team, culture and tooling for a high-growth, open-source company.
PostHog is shipping every product that companies need to run their business from their first day, to the day they IPO, and beyond. They are the operating system for folks who build software. They've raised more than $100m from some of the world's top investors and are set up for a long, ambitious journey.
Lead and grow a high-performing security engineering team.
Own cloud security architecture for AWS.
Embed security into the SDLC: threat modeling, secure coding guidance, code scanning, dependency controls, build-time checks, and release gates.
Keyrock is a leading change-maker in the digital asset space, known for partnerships and innovation. They have over 180 team members around the world from 42 nationalities, with backgrounds ranging from DeFi natives to PhDs, with hubs in London, Brussels, Singapore and Paris.
Manage and influence both physical and cyber security risk.
Support the development and execution of the information security strategy.
Oversee day-to-day security operations including monitoring and incident response.
Jobgether uses an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Their system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company.
Collaborate with specialist teams to develop and execute the company's technology, security, and AI strategy.
Oversee all IT operations including Helpdesk/Service Desk, Systems Operations, Infrastructure/Network Operations, and End-user Computing/Device Management.
Lead incident, problem, and change management processes, ensuring timely resolution of issues and minimal business disruption.
GuidePoint Security provides cybersecurity expertise, solutions, and services to help organizations make decisions and minimize risk. They have over 1,200 employees and have established strategic partnerships with security vendors, serving as a trusted advisor to more than 6,200 customers.
Help drive reliability, automation and performance within our cloud-based infrastructure.
Become embedded within an Engineering team helping them navigate production excellence and advocate for best practices.
Debug production issues across services and levels of the stack as well as practice incident response and blameless postmortems.
Flywire is a global payments enablement and software company that was founded over a decade ago. They have over 1,200 global FlyMates, representing more than 40 nationalities, in 12 offices worldwide, and are looking for people to join the next stage of their journey as they continue to grow.
Serve as trusted advisor as part of the security division’s leadership team, actively shaping the program direction.
Build and mature incident response runbooks, procedures, and capabilities.
Foster a defense first mindset through actionable incident retrospective mitigations to close defense gaps, making GitLab a hard target for attackers.
GitLab is the intelligent orchestration platform for DevSecOps. They enable organizations to increase developer productivity, improve operational efficiency, reduce security and compliance risk, and accelerate digital transformation. GitLab values a high-performance culture driven by values and continuous knowledge exchange.