Lead AppSec program assessments to evaluate current state and help clients prioritize remediation efforts based on risk, resources, and organizational readiness.
Design pragmatic security workflows, processes, and tooling integrations that engineering teams will actually adopt.
Deliver polished client work including clear assessments, actionable roadmaps, and executive communications that drive decision-making.
Lead security architecture reviews for new and existing applications.
Develop, enforce, and continuously refine secure coding standards across engineering teams.
Continuously improve threat modeling frameworks across application components.
Lumin Digital is a trailblazer in digital banking solutions, driven by a unique approach to technology, service, and people. They empower credit unions and banks by creating cutting-edge digital experiences. At Lumin, their culture is built on trust in expertise and decisions, respect for diverse perspectives and talents, and boldness in pursuing new ideas.
Work closely with development teams, product managers, and third-party groups to ensure AutoFi’s products, services, cloud environments, internal systems, and vendor ecosystem are secure.
Contribute to secure design reviews, application security standards, vulnerability management, security monitoring, incident response, threat hunting, and third-party security assessments.
Define, implement, and maintain security practices, standards, and controls across AutoFi’s products, services, cloud environments, and internal systems.
AutoFi is the leading provider of digital commerce technology that powers the sales and finance experiences for the most innovative brands and dealers in automotive. Their dynamic selling platform empowers dealers to sell vehicles more efficiently and profitably, both online and in the showroom. They are funded for years of future growth and backed by investors.
Smartsheet helps people and teams achieve their goals with seamless work management and scalable solutions. They empower teams to automate tasks, uncover insights, and scale smarter, fostering a culture of innovation and impact with a focus on challenge and purpose.
Conduct security architecture reviews across mobile, backend, data pipelines, and third-party integrations.
Build security-as-code patterns and pre-approved libraries that make the secure path the default path.
Drive SLA-based remediation workflows with clear severity definitions, ownership, and escalation paths.
Life360's mission is to keep people close to the ones they love. They have a remote-first team of over 500 employees and continue to innovate and deliver for their customers across more than 180 countries.
Partner with Security Engineering, Risk, Product, and Infrastructure teams to bake security and compliance into the process.
Dive deep into the security stack to identify execution blockers and actively architect the technical solutions to implement them.
Define the technical milestones for high-stakes initiatives like Zero Trust and IAM overhauls, translating a broad vision into a precise execution roadmap.
Human Interest aims to provide all workers access to retirement benefits. They are a high-growth fintech company that is financially backed by investors such as BlackRock, TPG, and SoftBank.
Lead, coach, and grow the Security Engineering team.
Design and implement security controls across Cloud environments.
Partner with engineering teams to embed security into the SDLC.
Horizon3.ai is a cybersecurity company dedicated to enabling organizations to proactively find, fix, and verify exploitable attack vectors. They are a fast-growing company with a culture of respect, collaboration, ownership, and results.
Build, operationalize, and scale the security engineering practices that protect our benefits platform.
Partner with teams building web and mobile applications, backend services, system integrations and data platforms.
Set direction and mature security capabilities; introduce strong standards and ship incremental improvements.
Benepass is making benefits easy by tailoring them to the unique needs of the workforce with an easy-to-use and highly customizable fintech platform. They are backed by leading investors and have raised approximately $75 million in equity capital, fostering an inclusive environment for its employees.
Lead security strategy across infrastructure, cloud systems, and enterprise applications.
Drive SOC 2, ISO 27001, and ISO 42001 readiness/certifications.
Own vulnerability management, threat monitoring, and incident response workflows.
SaaS Talent is a recruiting company, and a hiring, business development and growth partner with 20+ years of experience in SaaS and Hi-Tech that helps you scale and transform your business. They've worked with 100+ companies and helped them achieve their goals.
Performs web, mobile application, and internal penetration tests.
Researches new attack vectors and stays current with cybersecurity news and trends.
Creates detailed reports that clearly communicate vulnerabilities and mitigation.
Insider One provides a platform that unifies marketing and customer engagement teams. With over 1,500 team members across 30+ offices, they focus on AI-driven solutions and customer data integration across various channels.
Design, develop, and implement cloud security architecture solutions in Microsoft Azure.
Build and maintain security automation using Infrastructure as Code (IaC) tools.
Collaborate with development teams to embed security into CI/CD pipelines.
Hanger, Inc. is the world's premier provider of orthotic and prosthetic (O&P) services and products, offering advanced O&P solutions. With 160 years of excellence, Hanger employs many to help people achieve new levels of mobility and freedom.
Lead and grow the Application & Product Security squad.
Own the strategic direction of product, application, and AI security.
Drive vulnerability management end-to-end with urgency.
Monarch is a personal finance platform designed to make finances feel simple again. They are a team of do-ers led by experienced entrepreneurs passionate about helping members reach their financial goals, hyper focused on building a product people love.
Design and implement comprehensive security architectures for network, application, data protection, and identity management.
Identify and assess security risks, developing mitigation strategies to reduce organizational risk.
Leverage automation across the technology stack to ensure best practices in Identity and Access Management.
HealthEdge provides software solutions for the healthcare industry. The company fosters a positive, fun, and collaborative work environment with an emphasis on mentoring and building influence.
Own the end-to-end vulnerability lifecycle: intake, triage, assignment, remediation coordination, verification, and closure across all finding sources.
Enforce severity-based SLAs, escalation paths, and ownership expectations; track remediation timelines and follow up with engineering teams.
Assist the DevSecOps Lead with implementation of baseline security controls and help integrate controls into repositories, CI/CD pipelines, registries, and deployment workflows.
YipitData is the leading market research and analytics firm for the disruptive economy. They analyze billions of alternative data points to uncover actionable insights across sectors, with offices globally and recognized by Inc. as a Best Workplace for three consecutive years, emphasizing transparency, ownership, and continuous mastery.
Lead strategic, complex platform and security-focused opportunities.
Deliver relevant technical product presentations and executive briefings.
Identify and analyze key systems and integration points within the solution landscape.
Workday is a Fortune 500 company and a leading AI platform for managing people, money, and agents, shaping the future of work. Their culture is rooted in integrity, empathy, and shared enthusiasm, tackling big challenges with bold ideas and genuine care.
Lead and mentor a high-performing team of security engineers, setting technical direction and standards for excellence.
Define and execute the security roadmap for infrastructure, remote access, endpoints, and M&A.
Design and implement security controls across cloud, production, and corporate environments.
Anduril Industries is a defense technology company transforming U.S. and allied military capabilities with advanced technology, powered by Lattice OS. They bring the expertise and business model of innovative companies to the defense industry, focusing on autonomy, AI, and networking.
Partner with engineering teams to design, build, and operate secure-by-default cloud infrastructure across AWS and Google Cloud.
Build reusable Terraform modules and policy-as-code guardrails to make secure implementation easier for engineering teams.
Operate CSPM/CNAPP tooling and drive remediation of cloud vulnerabilities and misconfigurations.
Fullscript is a health technology company that provides a platform for practitioners to access clinical insights, lab interpretations, and high-quality supplements, serving over 125,000 practitioners and 10 million patients. The company has a remote-first culture, emphasizes work-life balance, and values inclusivity and continuous learning.
You will own small-to-medium engineering projects end-to-end, configure and operate security controls, and partner with senior engineers on larger initiatives.
You will develop deepening expertise in at least one control domain such as identity, endpoint, vulnerability management, or cloud security.
You will produce clean operational documentation, participate in change reviews, and mentor associate engineers on day-to-day execution.
Aprio is a Top 20 CPA and advisory firm that provides proven expertise and strategic foresight for fast-growing industries. The firm has over 40 U.S. office locations and more than 3,200 team members globally, with a top-rated culture focused on growth and innovation.
Build detections and security signal pipelines in Datadog.
Serve as the subject matter expert on AWS Cloud and on-prem infrastructure security.
Act as the technical lead during security incidents, including investigation and remediation.
Voltus is the leading platform connecting distributed energy resources to electricity markets, delivering less expensive, more reliable, and more sustainable electricity. Our company appears to be a remote-first company, and values diversity and inclusion.
Own and manage bug bounty intake processes, including triaging reports, validating vulnerabilities, and reproducing proof of concepts.
Collaborate with developers and product teams to design and implement effective remediation strategies for identified security issues.
Contribute directly to codebases by reviewing and submitting pull requests to fix security vulnerabilities.
Jobgether is a company using AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. They have a collaborative, feedback-driven culture that encourages innovation and ownership.
Provide security automation and application development expertise.
Assist in detection and alerting through various security tools.
Evaluate new technologies and processes that enhance security capabilities.
Ivanti manages, automates, and protects data and technology to empower continuous innovation. Their AI-powered platform brings IT and Security teams together around a single, trusted system of record enabling smarter decisions. They serve 34,000 customers across 149 countries.