Partner with engineering teams throughout the SDLC to embed security by design in our products.
Lead and evolve our AppSec tooling and workflows by implementing, tuning, and integrating SAST, DAST, SCA, and container/image scanning into CI/CD pipelines.
Drive vulnerability management for our applications and supply chain, including triaging and prioritizing issues, coordinating with teams on fix/mitigate/accept decisions.
Building automated tools to improve product security.
Reviewing platform and service designs and architecture.
Partnering with security teams to uplift security programs.
Atlassian's software products help teams all over the planet, and its solutions are designed for all types of work. They believe that the unique contributions of all Atlassians create their success and do not discriminate based on race, religion, national origin, etc.
Build practical controls to improve the effectiveness and robustness of our engineering team
Foster a DevSecOps culture through education, automation, and tooling
Secure our SDLC process through automation
Human Interest aims to provide all workers access to retirement benefits because over half of working Americans aren't saving enough. They're a high-growth fintech company that is backed by investors and is changing the retirement industry.
Develop and maintain automated security tools and processes to identify vulnerabilities and conduct security testing.
Design and implement secure cloud infrastructure, network architecture, and deployment processes.
Implement security monitoring tools and processes to proactively identify and respond to security events and anomalies.
Deel is an all-in-one payroll and HR platform for global teams, aiming to unlock global opportunity for every person, team, and business. They are among the largest globally distributed companies with a team of 7,000 spanning more than 100 countries, fostering a connected and dynamic culture.
Serve as the dedicated security architect and strategic partner for Core DevOps functional leadership.
Lead security architecture and design work for strategic Core DevOps initiatives.
Identify, assess, and drive reduction of systemic security risks in the Product Security Risk Register.
GitLab is an open-core software company developing an AI-powered DevSecOps platform used by over 100,000 organizations. Their mission is to enable everyone to contribute to and co-create the software that powers our world, valuing every voice in their high-performance culture.
Create, manage, and maintain the application security strategy and roadmap.
Develop, execute, and track the performance of security measures to protect Alma’s data, applications, and systems.
Build and provide high-quality application security documentation and training to engineers.
Alma simplifies access to high-quality, affordable mental health care by making it easy and financially rewarding for therapists to accept insurance. Alma has over 20,000 therapists in their growing network and was named one of Inc’s Best Workplaces in 2022 and 2023.
Be the primary DevOps engineer for the Vulnerability Management Development team.
Work to make sure our infrastructure is responsive and resilient.
Ensure our systems are secure by following relevant standards and performing patching and upgrades.
itD is a global technology consulting company that is woman- and minority-owned. They blend diversity, innovation, and integrity with real business results and reject any strong hierarchy, empowering them to deliver excellent results.
Drive and enable proactive identification, analysis, and remediation of security vulnerabilities.
Respond to manage pen testing and bug bounty programs.
Work in partnership with Software Architecture, Risk/Compliance, the SRE team, and other partners, to integrate security capabilities into the SDLC.
Subsplash builds The Ultimate Engagement Platform™ for churches, Christian ministries, non-profits, and businesses around the world. They are a family-owned and operated company of 290+ mission-driven people.
Lead secure design reviews, threat modeling, and security-focused code reviews across the product and platform.
Build and run Fieldguide’s vulnerability management program: scanning, triage, SLA-driven remediation tracking, and engineering coordination.
Partner with Compliance to ensure technical controls satisfy framework requirements (SOC 2, ISO 27001, ISO 42001, FedRAMP).
Fieldguide is establishing a new state of trust for global commerce and capital markets through automating and streamlining the work of assurance and audit practitioners. They are based in San Francisco, CA, and built as a remote-first company that enables you to do your best work from anywhere.
Lead cross-team infrastructure security initiatives from design through delivery, owning technical outcomes and stakeholder communication
Design and implement security solutions for cloud infrastructure, container platforms, and orchestration systems
Partner with SRE, Infrastructure, and Engineering teams to integrate security into platform services and deployment pipelines
GitLab is an open-core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Their mission is to enable everyone to contribute to and co-create the software that powers our world.
Embed security into CI/CD pipelines and repos using policy-as-code tools (pre-commit hooks, SAST/SCA, IDE tool integrations)
Conduct threat modeling sessions and risk‑driven design reviews early in development
OnePay is a consumer fintech company trusted by millions of Americans to make money better by providing an all-in-one financial services platform. They are backed by Walmart and Ribbit Capital, allowing them rare scale and distribution to build something truly category-defining.
Design and own the Channel SE motion from scratch.
Serve as the primary technical resource for Semgrep's highest-priority partners.
Empower partners through the development of technical packaging, delivery methodology, and reference architecture.
Semgrep is the leader in code security for builders, empowering invention without friction. Semgrep is backed by Menlo Ventures, Felicis Ventures, Lightspeed Venture Partners, Redpoint Ventures, and Sequoia Capital and is recognized by Gartner in Application Security Testing.
Design, deploy, and manage security tools and infrastructure to detect and prevent threats across cloud (AWS and GCP), corporate, and product environments.
Work collaboratively with engineering and product teams to integrate security into the SDLC (Secure Software Development Life Cycle) via threat modeling, code reviews, and automated testing.
Conduct security assessments, penetration testing, and vulnerability management to identify and remediate risks in our applications and services.
Acorns is a financial wellness app helping people and families save and invest money for the long term. Since 2014, Acorns has grown into a global company with multiple life-stage products serving the needs of kids, teens, adults, and parents.
Drive security of systems at scale and influence security strategy.
Integrate security into our SDLC with a shift-left approach.
Build a culture where security empowers developers through best practices.
Boulevard provides a client experience platform for appointment-based, self-care businesses, empowering customers to enhance client experiences. They are a team that values diverse backgrounds and believes in equal opportunity, fostering an inclusive culture where employees can excel.
Assist the sales team by creating and delivering impactful presentations and demonstrations.
Develop engaging demos and relevant use cases to illustrate product benefits and applications.
Lead Proof of Value initiatives to ensure successful technical implementations and customer satisfaction.
ArmorCode is dedicated to supercharging security teams by reducing risk and tech debt with their AI-powered ASPM platform, which unifies and normalizes findings. They foster a culture that values hungry, humble, hardworking, honest, and human employees who are passionate about excellence.
Security analysis of internal and third-party applications.
Vulnerability assessment in web applications and APIs.
Review of SAST/DAST scan findings and support in remediation.
Netrix Global provides the people, processes, and technology needed to run and scale modern, data-driven businesses that are always on and always secure. They work with clients of all sizes and specialize in solutions for healthcare, manufacturing, government, education, financial services, and legal industries.
Lead and grow a high-performing security engineering team.
Own cloud security architecture for AWS.
Embed security into the SDLC: threat modeling, secure coding guidance, code scanning, dependency controls, build-time checks, and release gates.
Keyrock is a leading change-maker in the digital asset space, known for partnerships and innovation. They have over 180 team members around the world from 42 nationalities, with backgrounds ranging from DeFi natives to PhDs, with hubs in London, Brussels, Singapore and Paris.
Assist the program and business to design and implement systems using cutting edge tools and interfaces.
Apply access controls, input validation and secure coding principles to protect customer data.
Document system architecture and compliance considerations for security best practices.
Peraton is a next-generation national security company that drives missions of consequence spanning the globe. They deliver trusted, highly differentiated solutions and technologies to protect our nation and allies.
Serve as our Clients’ primary technical point of contact throughout the sales cycle
Experience designing, implementing, and operationalizing security controls across a wide range of IT and enterprise business systems
Understand and articulate complex technical information to both technical and non-technical audiences
GuidePoint Security provides trusted cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. They have over 1000 employees and have established strategic partnerships with leading security vendors, serving as a trusted advisor to more than 4,200 customers.
Establish and execute a comprehensive long-term vision and strategy for Product Security, AppSec, and Privacy Engineering across all product lines.
Lead the Product Security Review process, including threat modeling, security architecture reviews, and penetration testing oversight for new and existing features.
Define and enforce Security and Privacy standards and policies within the Software Development Lifecycle (SDLC) and CI/CD pipelines.
Flock Safety is the leading safety technology platform, helping communities thrive by taking a proactive approach to crime prevention and security. We’re a high-performance, low-ego team driven by urgency, collaboration, and bold thinking.
Engineer a software product as part of a cross-functional team
Advocate for lean-agile engineering principles and practices
Analyze systems to identify opportunities for improvement
Skylight is a digital consultancy using design and technology to help government agencies deliver better public services. They are at the forefront of a civic movement to reinvent how all levels of government serve families, patients, and many others in today's digital world.