Partner with engineering teams throughout the SDLC to embed security by design in our products.
Lead and evolve our AppSec tooling and workflows by implementing, tuning, and integrating SAST, DAST, SCA, and container/image scanning into CI/CD pipelines.
Drive vulnerability management for our applications and supply chain, including triaging and prioritizing issues, coordinating with teams on fix/mitigate/accept decisions.
Camunda is the leader in enterprise agentic automation, orchestrating complex business processes across agents, people, and systems. They were named a Visionary in the inaugural 2025 Gartner Magic Quadrant for Business Orchestration and Automation Technologies (BOAT).
Analyze security vulnerabilities and drive remediations.
Integrate security at every stage of the SDLC.
Deploy and manage security tooling.
Modern Health is a mental health benefits platform for employers, offering access to various resources for emotional, professional, social, financial, and physical well-being. They are the fastest entirely female-founded company in the U.S. to reach Unicorn status, with a unique culture centered around high empathy and accountability.
Conduct regular security assessments, vulnerability scanning, and penetration testing of Veeam products and services
Work with development teams to integrate secure development practices into the software development lifecycle
Collaborate on the design and implementation of security within Veeam products
Veeam specializes in helping organizations ensure their data and AI are fully understood, secured, and resilient to enable the acceleration of safe AI at scale. They are headquartered in Seattle with offices in more than 30 countries, protecting over 550,000 customers worldwide.
Develop and maintain automated security tools and processes to identify vulnerabilities and conduct security testing.
Design and implement secure cloud infrastructure, network architecture, and deployment processes.
Implement security monitoring tools and processes to proactively identify and respond to security events and anomalies.
Deel is an all-in-one payroll and HR platform for global teams, aiming to unlock global opportunity for every person, team, and business. They are among the largest globally distributed companies with a team of 7,000 spanning more than 100 countries, fostering a connected and dynamic culture.
Conduct security assessments, code reviews, and penetration testing to identify vulnerabilities.
Plan and execute security testing for LLM-enabled applications, including prompt injection testing.
Design, develop, and implement security tools and automation to prevent and detect vulnerabilities.
Granicus provides technology that transforms the Govtech industry by connecting governments and constituents. They are a remote-first company with a globally distributed workforce across the United States, Canada, United Kingdom, India, Armenia, Australia, and New Zealand.
Serve as trusted advisor to team’s leadership and partner teams by clearly articulating business risks associated with security issues
Lead security operation functions – including vulnerability management, SAST, DAST, detection engineering, and incident response – in CI/CD and cloud-native production environments
Integrate security into our applications throughout the software development lifecycle
They are scaling intelligence to serve humanity by training and deploying frontier models for developers and enterprises, building AI systems to power magical experiences. Cohere is composed of researchers, engineers, and designers who are passionate about their craft, and believes that a diverse range of perspectives is a requirement for building great products.
Create, manage, and maintain the application security strategy and roadmap.
Develop, execute, and track the performance of security measures to protect Alma’s data, applications, and systems.
Build and provide high-quality application security documentation and training to engineers.
Alma simplifies access to high-quality, affordable mental health care by making it easy and financially rewarding for therapists to accept insurance. Alma has over 20,000 therapists in their growing network and was named one of Inc’s Best Workplaces in 2022 and 2023.
Drive adoption of a Secure Software Development Lifecycle (SSDLC) across engineering teams.
Implement and integrate application security tooling into CI/CD pipelines, improving vulnerability detection and remediation.
Establish consistent threat modelling and secure design practices across new features and products.
Neko Health's mission is to deliver proactive healthcare for all, empowering members to take control of their health via technology and compassionate care. They have nearly 100 full-time engineers working across Berlin, Chamonix, Hamburg, Lisbon, Marseille, Vilnius, and Stockholm and they support a flexible workplace that prioritizes work-life balance.
Run client SAST/DAST/SCA tools, review outputs and provide recommendations
Work with development teams to identify and remediate security vulnerabilities
Provide security guidance during the software development lifecycle (SDLC)
GuidePoint Security provides cybersecurity expertise and solutions to help organizations make better decisions and minimize risk. Since 2011, they've grown to over 1,200 employees and serve as a trusted advisor to more than 6,200 customers, fostering a collaborative and enjoyable workplace.
Lead, coach, develop, and support the GSSC AppSec team while effectively delegating workload
Refine and mature team processes to enhance operational excellence and program scalability
Engage directly with customers to understand key security concerns and communicate how ServiceNow mitigates their risks
ServiceNow is a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Their intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work.
Design and implement APIs, data pipelines, and simulation runtime logic for mission applications.
Develop software using modern programming languages such as Java, Python, C++, or TypeScript/Angular.
Build and integrate modular microservices for improved scalability and maintainability.
They deliver advanced technology solutions, integrating people and processes to tackle complex challenges effectively. The company has a collaborative and supportive team culture.
Define the security operations roadmap by designing and implementing long term strategies.
Improve and maintain processes, tooling, documentation, and training to mature and enhance cybersecurity incident response.
Design, implement, and maintain security events monitoring systems.
Docplanner Tech is a diverse group of over 400 people working in Engineering, Data, and Product teams, responsible for building the product for all locations. They are leaders in 13 countries, with over 2,500 employees globally, and are backed by leading venture capital funds such as Point Nine Capital and Goldman Sachs Asset Management.
Design, develop, and maintain full-stack web applications, ensuring high performance, scalability, and security
Implement new features and enhancements in a well-tested, maintainable, and efficient way
Collaborate with product managers and UX designers to create intuitive, responsive, and accessible interfaces
Exadel is an AI-first global tech company with 25+ years of engineering leadership. We have 2,000+ team members and 500+ active projects powering Fortune 500 clients, and our people are ambitious, collaborative, and constantly evolving.
Design and implement security controls across cloud infrastructure, applications, and data systems.
Identify, assess, and mitigate security risks through threat modeling, reviews, and testing.
Build and maintain monitoring, alerting, and incident response capabilities.
BlockchainUnmasked aims to streamline cryptocurrency forensic investigations through advanced automation combined with cutting-edge solutions. They work with investigative partners to dramatically accelerate investigation times and boost success rates in interdiction, recovery, and deterrence.
Lead Application Security testing projects and drive remediation of identified vulnerabilities.
Design and run adversarial testing campaigns across the full Buildkite environment.
Build automation for both AppSec and adversarial testing workflows.
Buildkite's mission is to unblock every developer on the planet with their CI/CD platform. They are a remote-first company since 2013 with a small team, high standards, and real ownership distributed across 60+ cities, built around async communication and genuine autonomy.
Drive and enable proactive identification, analysis, and remediation of security vulnerabilities.
Respond to manage pen testing and bug bounty programs.
Work in partnership with Software Architecture, Risk/Compliance, the SRE team, and other partners, to integrate security capabilities into the SDLC.
Subsplash builds The Ultimate Engagement Platform™ for churches, Christian ministries, non-profits, and businesses around the world. They are a family-owned and operated company of 290+ mission-driven people.
Test cloud and infrastructure with penetration testing
Pismo, founded in 2016, provides a comprehensive processing platform for banking, card issuing, and financial market infrastructure, helping customers innovate and build next-generation banking and payment solutions. With over 500 employees across 10 countries, Pismo joined Visa in 2024 and leverages their solutions to address technological challenges faced by large banks, marketplaces, and fintech companies.
Build and maintain stable, scalable foundational services that can be leveraged by other engineering teams.
Collaborate with many internal partners and product teams to influence the design of our API surface.
Design and develop reliable, secure, highly available and delightful experiences for the dbt Cloud admin and the end user.
Dbt Labs is the pioneer of analytics engineering, helping data teams transform raw data into reliable, actionable insights. They've grown from an open source project and now serve more than 5,400 dbt Platform customers, including Astra Zenica, Sky, Nasdaq, Volvo, JetBlue, and SafetyCulture.
Partner with team in designing, implementing and delivering effective cloud based solutions - evidenced by timeliness, quality, usability, operational stability, performance, and success of meeting customer requirements/business objectives
Ability to maintain a proactive and positive attitude in a fast-paced, changing environment
Qualio is a unified quality and compliance management platform that helps regulated organizations get products to market faster with reduced risk. The Qualio team is all-remote, and currently distributed across North America, Europe and Australia.
Be the primary DevOps engineer for the Vulnerability Management Development team.
Work to make sure our infrastructure is responsive and resilient.
Ensure our systems are secure by following relevant standards and performing patching and upgrades.
itD is a global technology consulting company that is woman- and minority-owned. They blend diversity, innovation, and integrity with real business results and reject any strong hierarchy, empowering them to deliver excellent results.