Integrate security activities across all SDLC phases: requirements, design, implementation, testing, deployment, and maintenance.
Run threat modeling sessions (e.g. STRIDE) for new and existing systems; identify threats, attack paths, misconfigurations, and insecure design patterns.
Perform security-focused code reviews to identify vulnerabilities and risky implementations; provide clear, actionable guidance on secure coding patterns and best practices.
Infiterra's B2B SaaS platform helps IT Distributors and Managed Service Providers (MSPs) automate and grow their subscription business. With 100+ customers in 75 countries, they're recognized for innovation and global impact. Infiterra fosters a collaborative and growth-oriented culture, allowing you to be part of a dynamic, forward-thinking team.
Own and operate n8n’s vulnerability intake and triage process, including the [email protected] inbox
Define and maintain security policies, standards, and public-facing disclosure documentation
Embed security into the software development lifecycle through threat modeling, design reviews, and pragmatic guardrails
n8n is the open workflow orchestration platform built for the new era of AI. They give technical teams the freedom of code with the speed of no-code, so they can automate faster, smarter, and without limits. Since their founding in 2019, they’ve grown into a diverse team of over 160.
Establish and execute a comprehensive long-term vision and strategy for Product Security, AppSec, and Privacy Engineering across all product lines.
Lead the Product Security Review process, including threat modeling, security architecture reviews, and penetration testing oversight for new and existing features.
Define and enforce Security and Privacy standards and policies within the Software Development Lifecycle (SDLC) and CI/CD pipelines.
Flock Safety is the leading safety technology platform, helping communities thrive by taking a proactive approach to crime prevention and security. We’re a high-performance, low-ego team driven by urgency, collaboration, and bold thinking.
Embed security into Firefox, Mozilla VPN, and other mission-critical products.
Anticipate, prioritize and mitigate risks through proactive threat modeling, security assessments, security testing, and automation.
Partner with engineers to integrate security throughout the software development lifecycle as a core design principle.
Mozilla Corporation shapes the internet for the better and makes privacy-minded brands like Firefox. They have over 225 million people around the world using their products each month and are focused on making the internet better for people.
Building automated tools to improve product security.
Reviewing platform and service designs and architecture.
Partnering with security teams to uplift security programs.
Atlassian's software products help teams all over the planet, and its solutions are designed for all types of work. They believe that the unique contributions of all Atlassians create their success and do not discriminate based on race, religion, national origin, etc.
Develop automated test procedures and data analytics.
Jobgether is a company that helps candidates get fairly reviewed. They use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements.
Analyze and assess security issues via design reviews, code audits, and penetration tests.
Design and build security tools, and develop mitigations and hardening strategies.
Review and develop secure operational practices, and provide security guidance for engineers.
Aptos Labs is building a people-first blockchain that aims to provide universal and fair access to decentralized assets in a safe and scalable way. Founded by original creators/maintainers of the Diem blockchain, they value diversity and are an Equal Opportunity Employer.
Serve as our Clients’ primary technical point of contact throughout the sales cycle
Experience designing, implementing, and operationalizing security controls across a wide range of IT and enterprise business systems
Understand and articulate complex technical information to both technical and non-technical audiences
GuidePoint Security provides trusted cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. They have over 1000 employees and have established strategic partnerships with leading security vendors, serving as a trusted advisor to more than 4,200 customers.
Develop and maintain a comprehensive product cybersecurity architecture, aligning with industry standards and business objectives.
Stay informed of emerging cybersecurity threats, continuously updating strategies and solutions.
Oversee the implementation of cybersecurity controls including encryption, access controls, network security, and secure coding practices.
Torc has been a leader in autonomous driving since 2007 and commercializing solutions with experienced partners. As part of the Daimler family, they are focused on developing software for automated trucks to transform how the world moves freight with a collaborative, energetic, and team focused culture.
Collaborate with the Webflow engineering team to secure Webflow’s web application platform and ecosystem.
Bring security best practices to the software development lifecycle.
Work to find security vulnerabilities through grey-box techniques, and propose solutions at the architecture and code level to mitigate findings.
Webflow is building the world’s leading AI-native Digital Experience Platform as a remote-first company. They empower teams to design, launch, and optimize for the web without barriers, with trust, transparency and creativity as their core values.
Identify, analyze, and reduce application-layer security risk.
Triage, validate, and prioritize findings from automated security tools and external researchers.
Work with engineering, vulnerability management, and security operations teams to address findings.
Upwork is the world’s work marketplace, serving startups to Fortune 100 companies. They provide a platform that enables companies and talent to work together to unlock their potential, with over $3.8 billion of work done through Upwork last year.