Designing, implementing, and operating identity and authorization platforms.
Defining authentication and authorization patterns based on OAuth 2.0 and OpenID Connect.
Improving API security using API Gateway technologies like Kong.
Pismo, founded in 2016 and acquired by Visa in 2024, offers a comprehensive processing platform for banking, card issuing, and financial market infrastructure. With over 500 employees across more than 10 countries, Pismo helps companies innovate and transition from legacy systems to advanced, secure technology.
Own the strategy and execution for the Cloudflare ecosystem to secure the network edge.
Lead the design of security controls within Google Cloud Platform, specifically for Vertex AI, BigQuery, VPC Service Controls, IAM, and Security Command Center.
Embed security into CI/CD pipelines (Cloud Build, GitHub Actions) using Infrastructure as Code (Terraform).
Kareo and PatientPop joined forces to become Tebra, the digital backbone for practice well-being, helping independent practices bring modernized care to patients everywhere. Well over 100,000 providers trust them to elevate their patient experience and grow their practice.
Design and implement security controls for mobile applications, backend services, and web platforms.
Conduct threat modelling and risk assessments for new and existing systems.
Embed secure coding practices across engineering teams, aligned with OWASP standards.
Smart Working connects skilled professionals with outstanding global teams and products for full-time, long-term roles, breaking down geographic barriers. It is a highly-rated workplace on Glassdoor, focused on community, growth, and well-being in a remote-first environment.
Actively partner on the Cloud Security strategy and implementation.
Evolve and expand our current Cloud Security posture across multiple platforms.
Recommend and validate Security controls and improvements across our infrastructure stack
Circle is a global financial technology firm building the foundation for a more open financial system through digital assets, payment applications, and blockchain infrastructure. They value their employees and foster a culture of collaboration and excellence, with a flexible work enviornment.
Design and build scalable backend systems, APIs, and data pipelines
Own services end-to-end, including architecture, development, deployment, and operation
Lead technical design discussions and contribute to system architecture decisions
VulnCheck is transforming vulnerability intelligence by helping security teams act faster and with more confidence. They were founded in 2021 and strive to have a transparent, collaborative, and supportive culture- with smart, humble, hardworking, and supportive teammates.
Lead security architecture/design review and threat modeling sessions with product and engineering teams.
Conduct hands-on penetration testing and security assessments across our full product stack.
Drive PSIRT Operations by triaging incoming vulnerability reports, leading technical investigations, coordinating remediation with engineering, scoring severity.
Greenlight is a family fintech company with a mission to help parents raise financially smart kids through their award-winning banking app. They serve over 6 million parents and kids, offering tools to automate allowance, manage chores, set spend controls, and invest.
Lead security architecture and design reviews across applications, infrastructure, and integrations.
Conduct and coordinate penetration testing, threat modeling, and security reviews.
Design and implement security automation within CI/CD pipelines.
Assured modernizes insurance by providing software solutions to large insurers that help them win in a technology-driven world. Their products include self-service claim-filing software to backend fraud detection and are dynamic, collaborative, and rewarding.
Design and implement security controls across cloud, infrastructure, and internal platforms
Partner with engineering to harden cloud architecture, IAM, and infrastructure
Own product security reviews for new features, services, and major architecture changes
XBOW is redefining the future of cybersecurity by building the world's first autonomous pentester, powered by AI. They are backed by Sequoia Capital and Altimeter, and a team that includes the creators of GitHub Copilot and GitHub Advanced Security.
Accountable for designing and engineering strategic security solutions.
Developing Zero Trust Architecture design requirements through sound design methodology.
Reviewing current system security measures and recommending and implementing enhancements.
BitMEX is a leading global exchange for crypto derivatives, offering a professional-grade trading platform. Since 2014, BitMEX has maintained an impeccable security record, offering over 100 derivatives contracts and 16 pairs for spot trading.
Perform infrastructure security reviews across cloud services, network design, IAM, and platform components.
Design and build internal security services, APIs, and tools that automate infrastructure vulnerability detection, triage, reporting, and remediation.
Develop security automation that integrates with CI/CD, cloud control planes, and developer workflows to shift detection and remediation earlier in the lifecycle.
Webflow is building the world’s leading AI-native Digital Experience Platform as a remote-first company. They empower teams to design, launch, and optimize for the web without barriers, from entrepreneurs to global enterprises, and believe the future of the web, and work, is more open, more creative, and more equitable.
Own the architecture, development, and operation of scalable, secure, and fault-tolerant cloud services.
Drive technical design and architectural decisions for distributed systems, influencing patterns, standards, and long-term platform evolution.
Lead complex initiatives end-to-end, from design through deployment and ongoing optimization.
ExtraHop is a company focused on reinventing Network Detection and Response (NDR) to offer enterprises unparalleled visibility, context, and control against emerging threats. They integrate NDR with Network Performance Management (NPM), Intrusion Detection Systems (IDS), and forensics, providing a single, comprehensive solution.
Design and deploy the anti-abuse controls for features.
Research, plan, and build anti-abuse architectures for products and features
Redapt Inc. is a pioneering world-class data center infrastructure integrator, technology engineering firm, and cloud services provider. They focus on delivering innovative solutions and services that power their customers' most demanding applications and enable them to extract powerful insights from data that drive true business value.
Design and develop next-generation Security Platform Management capabilities that strengthen GitLab’s enterprise security offering
Build and optimize scalable backend services and data models in Ruby on Rails with PostgreSQL for large volumes of security data
Develop and maintain robust REST and GraphQL APIs that power security workflows across the GitLab platform
GitLab is the intelligent orchestration platform for DevSecOps. With over 50 million registered users GitLab enables organizations to increase developer productivity, improve operational efficiency, reduce security and compliance risk, and accelerate digital transformation. They embrace AI as a core productivity multiplier, and value knowledge exchange, enabling team members to reach their full potential while collaborating with industry leaders to solve complex problems.
Conducting a comprehensive threat model of our application and infrastructure layers.
Hardening our AWS infrastructure while keeping developer workflows frictionless.
Integrating security tooling into our CI/CD pipeline.
Loancrate simplifies home-buying for lenders and borrowers by building AI-native tooling to automate mortgage workflows. Since 2020, their remote team has enabled customers to power >$85 billion in new home loans and they value collaboration and open communication.
Serve as trusted advisor to team’s leadership and partner teams by clearly articulating business risks associated with security issues
Lead security operation functions – including vulnerability management, SAST, DAST, detection engineering, and incident response – in CI/CD and cloud-native production environments
Integrate security into our applications throughout the software development lifecycle
They are scaling intelligence to serve humanity by training and deploying frontier models for developers and enterprises, building AI systems to power magical experiences. Cohere is composed of researchers, engineers, and designers who are passionate about their craft, and believes that a diverse range of perspectives is a requirement for building great products.
Lead Application Security testing projects and drive remediation of identified vulnerabilities.
Design and run adversarial testing campaigns across the full Buildkite environment.
Build automation for both AppSec and adversarial testing workflows.
Buildkite's mission is to unblock every developer on the planet with their CI/CD platform. They are a remote-first company since 2013 with a small team, high standards, and real ownership distributed across 60+ cities, built around async communication and genuine autonomy.
You will plan and execute infrastructure deployments, using automation to ensure a stable platform.
You will manage operations, troubleshoot, and optimize workflows to maintain high availability.
You will own backend features supporting our platforms and interface with users for feedback.
Trust Wallet is the leading non-custodial cryptocurrency wallet, trusted by over 200 million people worldwide to securely manage and grow their digital assets. They aim to give individuals the opportunity to own their assets and participate in the future economy.
Own application, cloud, infrastructure, and data security across Cherry
Be hands-on: design systems, review code and architecture, and contribute directly where needed
Lead incident response, threat modeling, and security reviews
Cherry is a profitable, high-growth fintech ($500M+ revenue, ~3x YoY) building the financial infrastructure for healthcare providers. Security is core to our product, not a support function. They are looking for strong leaders that will help them scale Cherry to be the go-to financial partner for every doctor in the country.
Perform security reviews of our current and future product and service portfolio.
Be the security subject matter expert for product architects and engineers for threat modeling.
Find new and novel ways to identify and resolve security vulnerabilities in our products.
Palantir builds software for data-driven decisions and operations, empowering partners to develop lifesaving drugs, forecast supply chain disruptions, and locate missing children. They value excellence and encourage employees to work from their offices to foster connectivity and innovation.
Lead threat modeling and security architecture reviews for distributed, event-driven systems.
Integrate security code reviews, SAST/DAST, Software Composition Analysis (SCA), and container scanning into CI/CD and AI/ML pipelines.
Evangelize secure coding and AI security through training, brown bag sessions, and workshops.
Zeta Global is an AI-Powered Marketing Cloud that helps marketers acquire, grow, and retain customers more efficiently. They unify identity, intelligence, and omnichannel activation into a single platform. Zeta Global is headquartered in New York City with offices around the world.