Lead threat modeling and security architecture reviews for distributed, event-driven systems.
Integrate security code reviews, SAST/DAST, Software Composition Analysis (SCA), and container scanning into CI/CD and AI/ML pipelines.
Evangelize secure coding and AI security through training, brown bag sessions, and workshops.
Zeta Global is an AI-Powered Marketing Cloud that helps marketers acquire, grow, and retain customers more efficiently. They unify identity, intelligence, and omnichannel activation into a single platform. Zeta Global is headquartered in New York City with offices around the world.
In collaboration, develop and maintain the Security Architecture roadmap that preserves a strong security posture and aligns with corporate objectives.
Lead the development and implementation of automation for established and new security processes to increase operational efficiency and reduce manual intervention.
Develop the architectural framework for the secure deployment of AI, designing foundational layers for Model Security, Data Privacy, and Autonomous Agent orchestration.
Bestow is a leading vertical technology platform serving some of the largest and most innovative life insurers. Their platform unifies the fragmented, legacy value chain, enabling carriers to launch products in weeks instead of years.
Lead security architecture and design reviews across applications, infrastructure, and integrations.
Conduct and coordinate penetration testing, threat modeling, and security reviews.
Design and implement security automation within CI/CD pipelines.
Assured modernizes insurance by providing software solutions to large insurers that help them win in a technology-driven world. Their products include self-service claim-filing software to backend fraud detection and are dynamic, collaborative, and rewarding.
Partner with engineering teams to conduct threat modeling.
Build and maintain automated scanning, penetration testing frameworks, and monitoring tools within our AWS CI/CD pipelines.
Champion a "security-first" mindset and host workshops that empower developers to write secure code.
Panopto is a customer-centric learning technology company and the leader in visual and audio-based learning. They empower organizations to share knowledge effortlessly. Panopto has been adopted by more than 1,600 companies and universities worldwide with over 11 million end users.
Lead, develop, and mentor a team of Product Security Architects.
Own and continuously evolve the Product Security Architecture strategy.
Oversee and mature the Product Security Risk Register.
GitLab is the intelligent orchestration platform for DevSecOps. They enable organizations to increase developer productivity, improve operational efficiency, reduce security and compliance risk, and accelerate digital transformation. They have more than 50 million registered users and they value high-performance culture is driven by values and continuous knowledge exchange.
Design, implement, and manage the integration of security tooling into CI/CD pipelines.
Develop and maintain automation scripts to streamline security processes and workflows.
Own the vulnerability management lifecycle: identification, triage, prioritization, and reporting.
MoonPay is a unified payments platform for digital currency, making it easy for anyone to buy, sell, swap, and pay in digital currencies. Trusted by over 30 million customers and over 500 ecosystem partners, MoonPay's secure, enterprise-grade platform is driving mainstream crypto adoption worldwide.
Own the strategy and execution for the Cloudflare ecosystem to secure the network edge.
Lead the design of security controls within Google Cloud Platform, specifically for Vertex AI, BigQuery, VPC Service Controls, IAM, and Security Command Center.
Embed security into CI/CD pipelines (Cloud Build, GitHub Actions) using Infrastructure as Code (Terraform).
Kareo and PatientPop joined forces to become Tebra, the digital backbone for practice well-being, helping independent practices bring modernized care to patients everywhere. Well over 100,000 providers trust them to elevate their patient experience and grow their practice.
Integrate security activities across all SDLC phases.
Partner closely with engineering teams to ensure secure development practices.
Review security controls for new features, services, and architectural changes.
Infiterra simplifies subscription service delivery, enabling IT distributors, Managed Service Providers (MSPs), and telcos to succeed in the subscription economy. They are recognized as a global leader in subscription commerce, combining innovation, performance excellence, and trusted expertise to help partners transform and grow.
Design security baselines that can be applied to clients.
Evaluate and select MSP Stack and automated vulnerability scanners.
Partner with Product or Sales teams to build new Security-as-a-Service offerings.
Red Cup IT, Inc. is a Managed Service Provider (MSP). They provide IT security, design, oversee, and scale security solutions across diverse client environments.
Serve as trusted advisor to team’s leadership and partner teams by clearly articulating business risks associated with security issues
Lead security operation functions – including vulnerability management, SAST, DAST, detection engineering, and incident response – in CI/CD and cloud-native production environments
Integrate security into our applications throughout the software development lifecycle
They are scaling intelligence to serve humanity by training and deploying frontier models for developers and enterprises, building AI systems to power magical experiences. Cohere is composed of researchers, engineers, and designers who are passionate about their craft, and believes that a diverse range of perspectives is a requirement for building great products.
Embed security into CI/CD pipelines and own secure controls.
Lead the process of vulnerability and patch management, automating discovery.
Strengthen cloud and Kubernetes environments through secure configurations.
Alpaca is a US-headquartered self-clearing broker-dealer and brokerage infrastructure provider for stocks, ETFs, options, crypto, fixed income, and more. They are a dynamic team of 230+ globally distributed members committed to opening financial services to everyone.
Drive adoption of a Secure Software Development Lifecycle (SSDLC) across engineering teams.
Implement and integrate application security tooling into CI/CD pipelines, improving vulnerability detection and remediation.
Establish consistent threat modelling and secure design practices across new features and products.
Neko Health's mission is to deliver proactive healthcare for all, empowering members to take control of their health via technology and compassionate care. They have nearly 100 full-time engineers working across Berlin, Chamonix, Hamburg, Lisbon, Marseille, Vilnius, and Stockholm and they support a flexible workplace that prioritizes work-life balance.
Work closely with engineering teams, PMs and external parties to ensure product security.
Support the Bug Bounty program, triaging, prioritizing and fixing issues.
Collaborate with infra security to level up our security posture.
RevenueCat helps developers build and scale in-app subscriptions by providing a monetization platform for mobile. They are a remote-first company of 120+ employees across 25 countries, and they value customer obsession and balance.
Accountable for designing and engineering strategic security solutions.
Developing Zero Trust Architecture design requirements through sound design methodology.
Reviewing current system security measures and recommending and implementing enhancements.
BitMEX is a leading global exchange for crypto derivatives, offering a professional-grade trading platform. Since 2014, BitMEX has maintained an impeccable security record, offering over 100 derivatives contracts and 16 pairs for spot trading.
Expand the application security landscape at Coupa
Lead and execute Security Architecture Reviews, Threat Modeling, and Design Reviews
Be a champion of Coupa’s Secure Software Development Lifecycle ( SSDLC ) methodologies
Coupa empowers businesses with a community-generated AI and spend management platform. They have a global network of 10M+ buyers and suppliers and value collaboration, teamwork, transparency, openness, and a shared commitment to excellence.
Implement and maintain enterprise security tooling and approved configuration baselines across endpoints, browsers, SaaS platforms, and identity systems.
Partner with Corporate Security Engineering leadership and Vulnerability Management to ensure configuration controls and remediation efforts are aligned, measurable, and enforceable.
Continuously improve security configurations by reducing drift, expanding automation, and strengthening documentation and evidence collection to support audit readiness.
Onebrief provides collaboration and AI-powered workflow software specifically for military staffs, enhancing their speed, intelligence, and efficiency. It's a remote-first company with a team of veterans and technologists, valued at $2.15B, backed by top-tier investors.
Actively partner on the Cloud Security strategy and implementation.
Evolve and expand our current Cloud Security posture across multiple platforms.
Recommend and validate Security controls and improvements across our infrastructure stack
Circle is a global financial technology firm building the foundation for a more open financial system through digital assets, payment applications, and blockchain infrastructure. They value their employees and foster a culture of collaboration and excellence, with a flexible work enviornment.
Be the person who can answer and solve any security problem the company or their clients encounter; not advise, but solve.
Build security systems, not just strategies; write production-quality code and develop monitoring, guardrails, and enforcement systems for AI agents.
Act as a security founder inside the company by identifying gaps in the security market, prototyping new products and tools, and turning internal capabilities into external offerings.
Human Agency scales rapidly and has a growing pipeline of opportunities that demand exceptional talent across disciplines. They are a company of doers, where leaders roll up their sleeves, teams work flat, and everyone contributes to what ships.
Partner with AEs and AMs to secure the technical win on Vanta’s most complex, strategic deals.
Lead Discovery and Architecture Workshops to deep-dive into prospect tech stacks and identify technical blockers.
Own and execute the Solution Validation (Managed Pilot) process to prove technical feasibility and eliminate risk.
Vanta's mission is to help businesses earn and prove trust through continuous security monitoring and verification. They empower companies to practice better security and prove it with ease with a kind and talented team, including individuals with and without prior security experience.
Perform security reviews of our current and future product and service portfolio.
Be the security subject matter expert for product architects and engineers for threat modeling.
Find new and novel ways to identify and resolve security vulnerabilities in our products.
Palantir builds software for data-driven decisions and operations, empowering partners to develop lifesaving drugs, forecast supply chain disruptions, and locate missing children. They value excellence and encourage employees to work from their offices to foster connectivity and innovation.