Bridge Security and Development, empowering engineering teams to deliver secure code.
Integrate security into the Software Development Life Cycle (SDLC) for AI-driven applications.
Conduct penetration tests and monitor application resilience.
EcoVadis is the leading provider of business sustainability ratings. Their solutions are backed by an international team of experts and powerful technology that analyzes data and builds sustainability scorecards, giving companies actionable insights into their environmental, social, and ethical risks.
Implementing and maintaining Application Security Testing tools to identify code and dependency vulnerabilities during the software development lifecycle.
Implementing and maintaining Application Security Posture Management tools to centralize findings from multiple solutions and integrate into software development processes.
Acting as the first line of support for users helping resolve false positives, providing guidance on finding remediation, and evaluating security exception requests.
AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. They strive to have a remarkable impact on people's lives across several key therapeutic areas including immunology, oncology and neuroscience.
Own and evolve Prolific's application security strategy, from hands-on testing to scaling secure development practices.
Act as the go-to application security expert, partnering with engineering leadership to balance risk and velocity while building tooling and processes.
Mentor an AppSec engineer, lead security reviews, manage vulnerabilities, and ensure the platform stays ahead of modern threats.
Prolific is building the human data infrastructure that provides high-quality, ethically sourced human behavioral data for AI development. The company is mission-driven, at the forefront of AI innovation, and fosters a remote, impactful culture.
Build AI agents that handle vulnerability triage, automated security reviews of PRs, and initial incident forensics at scale.
Build systems that automatically detect and remediate security gaps across AWS, GCP, and Azure -- configuration drift, IAM misconfigurations, vulnerable dependencies, exposed secrets.
Lead threat modeling, security reviews, and risk assessments across web applications, APIs, and services.
Atlan is building the missing context layer for data and AI, helping enterprises close the AI value chasm. They connect to every part of the modern data and AI stack to unify this context into a single, shared layer that both humans and AI agents can rely on.
Lead application security reviews, threat modeling, and secure code review.
Develop automated testing and mature the Secure SDLC while owning vulnerability management.
Inspire a security culture by educating engineers and coordinating secure code training.
TRM Labs provides blockchain analytics and AI solutions to help law enforcement, financial institutions, and crypto businesses detect and investigate crypto-related fraud and financial crime. It is a Series C company with $220M in funding, operating as a distributed-first team with hubs globally, fostering a high-velocity, high-ownership culture.
Partner with engineering teams to identify and fix vulnerabilities through hands-on testing, code review, and threat modeling.
Build, implement, and tune security tooling and automation (SAST, SCA, DAST) within the CI/CD pipeline to embed secure development practices.
Perform security testing, including penetration tests using tools like Burp Suite, and stay ahead of emerging threats to continuously strengthen the platform's security posture.
Prolific builds the human data infrastructure, connecting researchers and companies with a global participant pool to collect high-quality, ethically sourced human behavioral data for AI development. The company operates in a mission-driven, collaborative culture focused on impactful work in the AI innovation space.
Own and lead Limble’s application security program, partnering with the Head of Information Security and key stakeholders to define strategy and roadmap.
Perform hands-on security work including threat modeling and secure design reviews, using engagements as opportunities to educate and influence engineering decisions.
Partner with engineering teams to triage, prioritize, and remediate vulnerabilities across the platform.
Limble empowers the unsung heroes who support the world by revolutionizing how businesses manage their maintenance operations. They provide a comprehensive suite of software solutions to optimize asset performance and drive operational excellence; their CMMS platform features streamline operations and enhance productivity.
Own and enforce DevSecOps practices across CI/CD pipelines.
Drive vulnerability identification, triage, and remediation across infrastructure and applications.
Act as the primary security SME for the engineering organization.
Teramind is pioneering a predictive, AI-driven approach to safeguarding organizations' people, data, and operations. As a global leader in user behavior analytics, insider risk management, and workforce intelligence, we empower businesses to transform data into a strategic asset.
Manage and optimize GitHub Enterprise environments.
Design, implement, and maintain GitHub Actions CI/CD pipelines.
Enable and manage GitHub Advanced Security.
Beyondsoft is a mid-sized business IT and consulting company. They combine modern technologies and methodologies to tailor solutions. They have a diversely talented team that thrives on innovation and pushing the bounds of technology.
Perform threat modeling, security architecture review, and design analysis for web applications and APIs.
Conduct manual and automated security testing during development and pre-release stages.
Implement and manage SBOM generation and consumption processes across the SDLC.
Constructor's mission is to enable all educational organizations to provide high-quality digital education. With expertise in machine intelligence and data science, they offer an all-in-one platform for education and research, addressing educational challenges.
Own and drive the company’s security strategy, roadmap, and overall posture
Lead threat modeling, secure code reviews, and architecture reviews
Build and maintain security tooling, automation, and infrastructure as code
Seesaw's mission is to provide every elementary student with joyful and connected learning experiences that lay the foundation for success in life. Trusted and loved by 25 million educators, students, and families worldwide, Seesaw is the only elementary learning experience platform.
This role involves creating conditions for product and engineering teams to move faster with confidence.
You will lead infrastructure, IT security operations, and governance for Workleap and ShareGate.
Key in Workleap's evolution towards a Full-Stack Builder model, reducing friction and reinforcing confidence.
Workleap is a tech company based in Montreal with a mission to make work simpler. Since 2006, they have been building innovative products that help HR and IT teams tackle their biggest challenges. They have over 20,000 companies using their products.
Perform threat modeling, security architecture reviews, and design analysis for web applications and APIs.
Conduct manual and automated security testing, and design and implement security pipelines integrated into the SDLC.
Implement and manage SBOM generation processes and collaborate with development teams on vulnerability remediation.
Constructor Knowledge is a technology company focused on providing search and discovery solutions. Based on the posting's professional tone and mention of teams, it appears to be an established company with a collaborative and security-focused culture.
Own and evolve vulnerability management end-to-end.
Embed secure design principles across mobile applications, APIs, and microservices.
Partner closely with engineering teams to remediate security issues.
Smart Working connects skilled professionals with global teams for full-time, long-term roles. They help you discover meaningful work with teams that invest in your success, where you’re empowered to grow personally and professionally.
Drive tactical execution of the Application Security program: scaling the team for non linear security gains, security reviews enhancements and secure design consultations for high-risk changes.
Lead AI adoption within the Application Security team: leverage AI-assisted/automated workflows for review triage, threat model generation, code analysis, and operational toil reduction.
Champion practical AI use without losing critical thinking rigor.
GitLab is the intelligent orchestration platform for DevSecOps. They enable organizations to increase developer productivity, improve operational efficiency, reduce security and compliance risk, and accelerate digital transformation. More than 50 million registered users trust GitLab.
Work cross-functionally with the InfoSec, SRE, and Engineering teams.
Check code and repositories for insecure coding practices and work with Engineering teams to remediate.
Implement security checks and practices within CI/CD pipelines to ensure secure code deployment and infrastructure.
Roadie, a UPS Company, is a logistics management and crowdsourced delivery platform. Founded in 2014, Roadie offers businesses fast, flexible and asset-light logistics solutions for last-mile delivery.
Lead and grow a team of the best security engineers.
Define the strategy for Vanta’s application security program.
Work with Engineering and Product Development to assess and mitigate risk.
Vanta helps businesses earn and prove trust by providing continuous security monitoring and verification. They aim to empower companies to practice better security with their automation and orchestration tools. Vanta has a kind and talented team, embracing individuals with and without prior security experience.
Participate in threat modeling exercises with engineering team members
Triage SCA/SAST/DAST/CSPM findings by eliminating false positives and providing well-vetted vulnerabilities to engineering teams
Support vulnerability management efforts for networks and infrastructure
They offer a SaaS-based Global Employment Platform that enables clients to expand into over 180 countries. Their diverse, remote-first teams are essential to their success, fostering innovation and valuing every contribution.
Lead AI security assessments and provide practical recommendations.
Draft secure architecture designs with key AI security controls.
Facilitate strategy and planning workshops for AI security.
AHEAD builds platforms for digital business, weaving together cloud infrastructure, automation, analytics, and software delivery. AHEAD prioritizes a culture of belonging and inclusivity, valuing diverse perspectives to drive innovation and enrich ideas.
Drive security vulnerability remediations with Engineering for CSPM, OS Runtime, SAST, SCA, DAST
Coordinate and track services provided by the security team and assist with enforcement security requirements throughout the organization
Assist with prioritizing work resulting from security findings, stakeholder requests, and strategic vision
Outreach provides a sales engagement platform to streamline communication and workflows for sales teams. They partner with Product, Engineering, Privacy, GRC, IT, and Legal teams to ensure security best practices are applied to protect the company and Outreach customers.