Collaborate with the Webflow engineering team to secure Webflow’s web application platform and ecosystem.
Bring security best practices to the software development lifecycle.
Work to find security vulnerabilities through grey-box techniques, and propose solutions at the architecture and code level to mitigate findings.
Webflow is building the world’s leading AI-native Digital Experience Platform as a remote-first company. They empower teams to design, launch, and optimize for the web without barriers, with trust, transparency and creativity as their core values.
Own and lead the delivery of large, multi-quarter Application Security and Engineering initiatives.
Improve existing complex application security architectures and provide guidance for securing AI-based workflows.
Proactively identify emerging industry threats and act as Incident Commander for large-scale security incidents.
Wrapbook provides a unified payroll platform that seamlessly connects your entire team in one place. It empowers production teams to manage projects, pay cast and crew, track expenses, and generate data-driven insights. With a growing team of 250+ people across the USA and Canada, Wrapbook is backed by top-tier investors and has raised $130M.
Drive security of systems at scale and influence security strategy.
Integrate security into our SDLC with a shift-left approach.
Build a culture where security empowers developers through best practices.
Boulevard provides a client experience platform for appointment-based, self-care businesses, empowering customers to enhance client experiences. They are a team that values diverse backgrounds and believes in equal opportunity, fostering an inclusive culture where employees can excel.
Drive and enable proactive identification, analysis, and remediation of security vulnerabilities.
Respond to manage pen testing and bug bounty programs.
Work in partnership with Software Architecture, Risk/Compliance, the SRE team, and other partners, to integrate security capabilities into the SDLC.
Subsplash builds The Ultimate Engagement Platform™ for churches, Christian ministries, non-profits, and businesses around the world. They are a family-owned and operated company of 290+ mission-driven people.
Design, deploy, and manage security tools and infrastructure to detect and prevent threats across cloud (AWS and GCP), corporate, and product environments.
Work collaboratively with engineering and product teams to integrate security into the SDLC (Secure Software Development Life Cycle) via threat modeling, code reviews, and automated testing.
Conduct security assessments, penetration testing, and vulnerability management to identify and remediate risks in our applications and services.
Acorns is a financial wellness app helping people and families save and invest money for the long term. Since 2014, Acorns has grown into a global company with multiple life-stage products serving the needs of kids, teens, adults, and parents.
Own and lead Impiricus’s security architecture across AWS.
Design and implement application and infrastructure security controls across the SDLC.
Build and operate detection and response capabilities, including logging, monitoring, and alerting.
Impiricus is an AI-powered HCP Engagement Engine transforming how life sciences companies support physicians. They ethically connect HCPs to pharma resources and are known for their unique access to a large network of HCP advisors.
Integrate security activities across all SDLC phases: requirements, design, implementation, testing, deployment, and maintenance.
Run threat modeling sessions (e.g. STRIDE) for new and existing systems; identify threats, attack paths, misconfigurations, and insecure design patterns.
Perform security-focused code reviews to identify vulnerabilities and risky implementations; provide clear, actionable guidance on secure coding patterns and best practices.
Infiterra's B2B SaaS platform helps IT Distributors and Managed Service Providers (MSPs) automate and grow their subscription business. With 100+ customers in 75 countries, they're recognized for innovation and global impact. Infiterra fosters a collaborative and growth-oriented culture, allowing you to be part of a dynamic, forward-thinking team.
Serve as a cloud security technical expert to develop and execute cloud security policies and procedures.
Collaborate with cloud technology teams across the enterprise to ensure the integrity and security of our digital assets in AWS/Azure IaaS environments.
Demonstrate high proficiency across a wide range of cloud security technologies to establish guardrails to prevent or automatically remediate common security misconfigurations.
AbbVie discovers and delivers innovative medicines and solutions that solve serious health issues today and addresses the medical challenges of tomorrow. It strives to have a remarkable impact on people's lives across several key therapeutic areas.
Assist the sales team by creating and delivering impactful presentations and demonstrations.
Develop engaging demos and relevant use cases to illustrate product benefits and applications.
Lead Proof of Value initiatives to ensure successful technical implementations and customer satisfaction.
ArmorCode is dedicated to supercharging security teams by reducing risk and tech debt with their AI-powered ASPM platform, which unifies and normalizes findings. They foster a culture that values hungry, humble, hardworking, honest, and human employees who are passionate about excellence.
Conduct security assessments using SAST, DAST, and SCA tools to identify vulnerabilities.
Perform code reviews and provide secure coding guidance to development teams.
Evaluate AI/ML model security and implement protections against prompt injection.
Hims & Hers is a health and wellness platform focused on providing affordable and personalized care. They are a public company traded on the NYSE, committed to a talent-first flexible/remote work approach featuring outstanding benefits and a strong culture.
Security analysis of internal and third-party applications.
Vulnerability assessment in web applications and APIs.
Review of SAST/DAST scan findings and support in remediation.
Netrix Global provides the people, processes, and technology needed to run and scale modern, data-driven businesses that are always on and always secure. They work with clients of all sizes and specialize in solutions for healthcare, manufacturing, government, education, financial services, and legal industries.
Design, build, and maintain security tools, scripts, and automations.
Partner with Engineering teams to manage and drive remediation of security vulnerabilities.
Evaluate and prioritize security risks based on industry standards and business context.
Weedmaps is a global leader in the cannabis industry. They are dedicated to transparency, education, and community, serving cannabis to consumers and businesses in the U.S. and worldwide.
Embed security into Firefox, Mozilla VPN, and other mission-critical products.
Anticipate, prioritize and mitigate risks through proactive threat modeling, security assessments, security testing, and automation.
Partner with engineers to integrate security throughout the software development lifecycle as a core design principle.
Mozilla Corporation shapes the internet for the better and makes privacy-minded brands like Firefox. They have over 225 million people around the world using their products each month and are focused on making the internet better for people.
Own the technical roadmap for deploying key product suites to government environments.
Design and harden product suites within compliant cloud infrastructures.
Collaborate with product teams to align development timelines and meet security controls.
Jobgether helps partner companies find the best candidates. They use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements.
Manage inbound security questionnaires from partner physician practices.
Lead security evaluations for Aledade’s vendors and analyze SOC2 reports.
Maintain and optimize our security response repository and identify bottlenecks.
Aledade empowers independent primary care, becoming the largest network of its kind in the US. The company fosters a collaborative, inclusive, and remote-first culture, aiming to improve healthcare for patients, practices, and society.
Own and operate n8n’s vulnerability intake and triage process, including the [email protected] inbox
Define and maintain security policies, standards, and public-facing disclosure documentation
Embed security into the software development lifecycle through threat modeling, design reviews, and pragmatic guardrails
n8n is the open workflow orchestration platform built for the new era of AI. They give technical teams the freedom of code with the speed of no-code, so they can automate faster, smarter, and without limits. Since their founding in 2019, they’ve grown into a diverse team of over 160.
Work alongside DevOps and engineering teams to ensure our platforms, repositories and CI/CD pipelines are secure by default while remaining easy to build, test, and deploy against
Identify security risks through tools, audits, and monitoring, and drive them to resolution — whether that means changing a policy, updating infrastructure, or improving a pipeline
Take ownership of the security posture across multiple AWS accounts and continuously improve it over time
Versaterm is a global public safety solutions company helping agencies transform how they serve their communities. Since 1977, they’ve been building an ecosystem of intuitive tools designed for public safety agencies, forensic labs, court systems, schools and other institutions.
Drive enterprise standard WAF solution security strategy and champion best practices.
Design, engineer, and maintain Web Application Firewall solutions to protect enterprise applications.
Develop and enforce WAF policies to align with organizational security standards.
Symplr is revolutionizing healthcare operations with a first-of-its-kind platform that drives effective, efficient, and connected workflows. They are a remote-first company with employees across the United States, India, and the Netherlands, focusing on teamwork and championing their customers.
Identify and help mitigate security issues related to Applied’s cloud, datacenter, and Kubernetes infrastructure.
Implement new and update existing security measures for the protection of Applied’s infrastructure.
Contribute to the operationalization of Security platforms at Applied.
Applied Systems is transforming the insurance industry with innovative software and services. They have 40+ years of experience and are committed to creating a culture built on values that make them indispensable to each other.