Design and build privacy-focused systems that protect users from tracking, data misuse, and emerging online threats.
Enhance backend services and privacy infrastructure using Go, Node.js, Python, or Perl.
Lead complex technical projects from ideation through implementation, ensuring scalability and reliability.
Our partner is a privacy-first engineering organization focused on building and maintaining systems that protect users from tracking, profiling, and emerging online threats. They operate in a fully remote, globally distributed environment with a values-driven culture centered on trust, privacy, and transparency.
Implement privacy-improving, anti-tracking features and data sanitization into the Firefox web browser.
Implement architectural improvements into Gecko, the browser engine underlying Firefox.
Build performant, low-latency, and maintainable C++, JavaScript and Rust code.
Mozilla builds the Firefox web browser and works to keep the internet open and accessible to all. The company has a global distributed team and values diversity, equity, inclusion, and belonging.
Assist in developing secure software by writing and optimizing Rust code for security-critical components.
Conduct deep manual and automated code audits to identify vulnerabilities and manage bug bounty submissions.
Design machine learning models for automated security analysis and threat mitigation in blockchain.
Parity builds core blockchain infrastructure for a decentralized web, focusing on open-source projects like Polkadot. As a remote-first global team, we foster innovation and collaboration among some of the brightest minds in Web3.
Conduct threat modelling reviews of Technical Design Documents (TDDs) and provide actionable security recommendations early in the design process.
Perform application security assessments, including penetration testing, vulnerability assessments, and proof-of-concept development.
Investigate, triage, and respond to Bug Bounty program submissions, validating findings and driving timely remediation with engineering teams.
MoonPay is a unified payments platform for digital currency. Trusted by over 30 million customers and over 500 ecosystem partners, the company is committed to building a fairer, more open financial system with a culture of accountability and inclusivity.
Validate incoming security findings from the research community using code analysis and pentesting tools.
Collaborate with engineering teams to remediate valid vulnerabilities in the codebase.
Build or improve automated workflows and tooling using languages like Rust, Go, or Python.
1Password builds a human-centric cybersecurity platform, including enterprise password management and Unified Access Management. With over $400M in ARR and 180,000 business customers, the company has a remote-first culture focused on curiosity, teamwork, and continuous improvement.
Perform penetration testing and design reviews to identify vulnerabilities and insecure designs.
Maintain and build internal tools to automate security efforts, including SAST and DAST testing.
Identify vulnerabilities, demonstrate business impact, and articulate risk to drive prioritization.
Brex is the intelligent finance platform that enables companies to spend smarter and move faster in over 200 markets. With tens of thousands of customers including DoorDash, Coinbase, and Zoom, Brex fosters a diverse and inclusive team culture where collaboration with some of the brightest minds in the industry is key.
Champion and implement security best practices and automated tooling across Spotify's infrastructure and platforms.
Partner closely with teams to integrate security throughout the software development lifecycle from design to deployment.
Conduct threat modeling, security reviews, and risk assessments for both AI and non-AI systems.
Spotify is the world's most popular audio streaming subscription service, unlocking the potential of human creativity by giving artists the opportunity to live off their art. With over 700 million users, the company values curiosity, collaboration, and a willingness to both teach and learn from others.
Lead high-complexity privacy initiatives including agentic browsing frameworks and private search capabilities.
Evolve privacy triage and review processes, building automation to reduce engineering toil.
Mentor and grow a team of privacy engineers while contributing to cross-company privacy strategy.
We are DuckDuckGo, an online protection company on a mission to raise the standard of trust online. We are a remote-first team of 300+ with a culture of trust, inclusivity, and empowered project management, profitable since 2014.
Play a key role in protecting and strengthening large-scale cloud-native applications that power next-generation AI infrastructure.
Work at the intersection of software engineering and cybersecurity, ensuring security is embedded throughout the software development lifecycle.
Collaborate cross-functionally to identify and remediate vulnerabilities in complex distributed systems.
Our partner is a company building large-scale cloud-native applications that power next-generation AI infrastructure. They have a high-impact security engineering environment with a collaborative and innovative culture focused on trust, learning, and impact.
Own and manage bug bounty intake processes, including triaging reports, validating vulnerabilities, and reproducing proof of concepts.
Collaborate with developers and product teams to design and implement effective remediation strategies for identified security issues.
Contribute directly to codebases by reviewing and submitting pull requests to fix security vulnerabilities.
Jobgether is a company using AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. They have a collaborative, feedback-driven culture that encourages innovation and ownership.
Lead penetration testing engagements on applications with complex technology stacks, working independently and collaboratively.
Contextualize vulnerabilities and assess realistic impact to clients, ensuring quality reports and services are delivered efficiently.
Maintain strong depth of knowledge in application security and mentor teammates while collaborating with project managers and delivery teams.
Coalfire is a cybersecurity firm that helps clients navigate complex security challenges through advisory, assessment, and automation services. The company is headquartered in Chicago with offices across the U.S. and U.K., and supports clients worldwide with a team of passionate cybersecurity experts.
Own end-to-end security reviews across smart contracts, backend services, and frontend surfaces.
Build and ship an agentic security CI/CD pipeline that runs autonomously against every PR and release candidate.
Triage and manage the bug bounty program, reproduce findings, and route confirmed issues to engineering with context.
Polygon Labs is a global blockchain payments company building infrastructure to move money instantly and reliably. It has facilitated trillions in onchain value transfer and supports millions of daily transactions for banks, fintechs, and enterprises.
Enable software engineering teams to continuously improve the security posture of products and SaaS environments through AppSec and DevSecOps expertise.
Serve as the go-to AppSec expert, mentoring engineers on secure design patterns and coding practices while collaborating on threat models and design reviews.
Lead automation of vulnerability management tooling across CI/CD pipelines, perform security code reviews, and contribute to compliance strategies.
Hypori is a high-growth cybersecurity SaaS company transforming how organizations think about secure mobility. Backed by $55M in funding from investors including UBS and AE Industrial Partners, the company is expanding into new commercial and regulated markets.
Lead by example and take ownership of complex systems to scale our platform.
Work independently and collaboratively in a fast-paced, high-accountability environment.
Utilize deep C++ expertise and related tools to build and maintain our infrastructure.
PrivateID provides secure, self-managed digital identities using biometric and cryptographic technology to eliminate passwords. The company is rapidly scaling to meet demand for passwordless, zero-trust solutions, with a remote-first culture.
Join the security team to build world-class security into products, focusing on operations, monitoring, and incident response.
Proactively improve security across codebase, product, cloud, and customer deployments.
Work as a generalist covering all facets of security, from application testing to threat modeling.
Sourcegraph builds the world's most powerful code intelligence platform, helping developers and agents navigate complex codebases. They are a globally distributed team backed by a16z, Sequoia, and Redpoint, with a culture of high agency and direct communication.
Partner with Product and Engineering teams to integrate security into application design and development, leading threat modeling and secure code reviews.
Develop and implement automated security guardrails across the SDLC, investigate and prioritize application security findings.
Promote secure coding practices through training and coaching, and create security standards and procedures that scale across teams.
Quanata is an insurance technology innovation company that engineers advanced risk prediction and prevention solutions and builds a full-stack, flexible, digital & increasingly AI-native insurance platform. We are a remote-first company wholly owned and funded by State Farm, with a culture that prioritizes inclusivity and positive collaboration.
Lead and mentor a high-performing team of security engineers, setting technical direction and standards for excellence.
Define and execute the security roadmap for infrastructure, remote access, endpoints, and M&A.
Design and implement security controls across cloud, production, and corporate environments.
Anduril Industries is a defense technology company transforming U.S. and allied military capabilities with advanced technology, powered by Lattice OS. They bring the expertise and business model of innovative companies to the defense industry, focusing on autonomy, AI, and networking.
Embed security into CI/CD pipelines and product development as a technical leader.
Drive cross-team influence and own hard security challenges in a cloud-native environment.
Work in a remote-first culture focused on customer obsession and intentional action.
Chainguard provides hardened, secure, and production-ready builds of open source software to help organizations build faster and stay compliant. Backed by leading investors including Sequoia Capital and Kleiner Perkins, Chainguard serves Fortune 500 enterprises and global industry leaders.
Design, develop, and maintain secure cryptographic systems including key hierarchies and encryption protocols for a global identity security platform.
Define and enforce robust key management strategies across client and server environments, ensuring secure generation, storage, rotation, and revocation of cryptographic material.
Collaborate with cross-functional engineering teams to integrate cryptographic standards into product features and system design.
Jobgether is an AI-powered job matching platform that connects candidates with hiring companies. The company operates a fully remote, collaborative, and mission-driven engineering environment with a strong emphasis on innovation and autonomy.