Senior Product Security Engineer

Security Partner Engagement:

• Conduct security architecture reviews across mobile, backend, data pipelines and third-party integrations.
• Translate threat models and security requirements into pragmatic guidance engineers can act on.
• Build trusted relationships with product and platform engineering teams.

Tooling & Secure Defaults:

• Further operationalize and tune ASPM tooling (Cycode) to unify SAST, SCA, secret scanning, and container security into actionable signal, not noise.
• Build security-as-code patterns and pre-approved libraries that make the secure path the default path.
• Automate vulnerability triage, deduplication, and routing so the team spends time on judgment, not toil.

Vulnerability Management:

• Drive SLA-based remediation workflows with clear severity definitions, ownership, and escalation paths.
• Build metrics that translate security posture into language engineering leadership and executives can use.

AI & Emerging Platform Security:

• Partner on design reviews for AI-powered features: model access controls, data boundary enforcement, and retrieval system authorization.
• Contribute to securing agent workflows, MCP integrations, and shared AI tooling as adoption scales across engineering.
• Work with Privacy, Legal, and Data Platform on controls for sensitive data: real-time location, family relationships, and data involving minors.