Own the end-to-end vulnerability lifecycle: intake, triage, assignment, remediation coordination, verification, and closure across all finding sources.
Enforce severity-based SLAs, escalation paths, and ownership expectations; track remediation timelines and follow up with engineering teams.
Assist the DevSecOps Lead with implementation of baseline security controls and help integrate controls into repositories, CI/CD pipelines, registries, and deployment workflows.
Conduct security architecture reviews across mobile, backend, data pipelines, and third-party integrations.
Build security-as-code patterns and pre-approved libraries that make the secure path the default path.
Drive SLA-based remediation workflows with clear severity definitions, ownership, and escalation paths.
Life360's mission is to keep people close to the ones they love. They have a remote-first team of over 500 employees and continue to innovate and deliver for their customers across more than 180 countries.
Lead and grow the Application & Product Security squad.
Own the strategic direction of product, application, and AI security.
Drive vulnerability management end-to-end with urgency.
Monarch is a personal finance platform designed to make finances feel simple again. They are a team of do-ers led by experienced entrepreneurs passionate about helping members reach their financial goals, hyper focused on building a product people love.
Define and execute a multi-year Application Security roadmap.
Integrate threat modeling, security tools & testing, and secure by design processes into the SDLC.
Oversee the end-to-end AppSec vulnerability lifecycle.
Prosper is a fintech company that provides a comprehensive suite of digital personal finance products. Since 2005, they have helped over 2 million customers achieve financial well-being.
Work closely with development teams, product managers, and third-party groups to ensure AutoFi’s products, services, cloud environments, internal systems, and vendor ecosystem are secure.
Contribute to secure design reviews, application security standards, vulnerability management, security monitoring, incident response, threat hunting, and third-party security assessments.
Define, implement, and maintain security practices, standards, and controls across AutoFi’s products, services, cloud environments, and internal systems.
AutoFi is the leading provider of digital commerce technology that powers the sales and finance experiences for the most innovative brands and dealers in automotive. Their dynamic selling platform empowers dealers to sell vehicles more efficiently and profitably, both online and in the showroom. They are funded for years of future growth and backed by investors.
Execute periodic vulnerability scans across infrastructure and cloud platforms, supporting compliance.
Analyze and prioritize scan results based on risk severity, reporting findings to stakeholders.
Collaborate with IT and product teams to track remediation within SLAs and support mitigation strategies.
Moniepoint Inc. is Africa's all-in-one financial ecosystem, providing seamless payments, banking, credit, and business management tools to 10 million businesses and individuals. The company operates profitably, processes $22 billion monthly, and fosters a culture of innovation, teamwork, and growth.
Monitor security findings and support remediation workflows.
Develop scripts and automation to improve security workflows.
GuidePoint Security provides trusted cybersecurity expertise, solutions, and services. They help organizations make better decisions and minimize risk with a three-tiered, holistic approach to security. GuidePoint has over 1,200 employees and serves more than 6,200 customers.
Partner with Security Engineering, Risk, Product, and Infrastructure teams to bake security and compliance into the process.
Dive deep into the security stack to identify execution blockers and actively architect the technical solutions to implement them.
Define the technical milestones for high-stakes initiatives like Zero Trust and IAM overhauls, translating a broad vision into a precise execution roadmap.
Human Interest aims to provide all workers access to retirement benefits. They are a high-growth fintech company that is financially backed by investors such as BlackRock, TPG, and SoftBank.
Design and implement automation, dashboards, and integrations that power our Governance, Risk, and Compliance (GRC) operations.
Operationalizing and expanding our GRC platform (Drata), building AI-assisted workflows that automate evidence collection, control monitoring, and vendor risk.
Manage project delivery across multiple GRC automation initiatives simultaneously — maintaining clear scope, milestones, and stakeholder visibility without sacrificing quality.
1Password is building the foundation for a safe, productive digital future. They innovated the market-leading enterprise password manager and pioneered Unified Access Management, a new cybersecurity category built for the way people and AI agents work today. 1Password has surpassed $400M in ARR and has over 180,000 businesses using their product.
Own and manage bug bounty intake processes, including triaging reports, validating vulnerabilities, and reproducing proof of concepts.
Collaborate with developers and product teams to design and implement effective remediation strategies for identified security issues.
Contribute directly to codebases by reviewing and submitting pull requests to fix security vulnerabilities.
Jobgether is a company using AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. They have a collaborative, feedback-driven culture that encourages innovation and ownership.
Lead, coach, and grow the Security Engineering team.
Design and implement security controls across Cloud environments.
Partner with engineering teams to embed security into the SDLC.
Horizon3.ai is a cybersecurity company dedicated to enabling organizations to proactively find, fix, and verify exploitable attack vectors. They are a fast-growing company with a culture of respect, collaboration, ownership, and results.
Own the product strategy and execution that strengthens our defense-in-depth architecture and operational controls.
Define and own the roadmap for security platform capabilities across cloud defense and secure-by-default developer tooling.
Translate regulatory, audit, and risk requirements into usable product surfaces and guardrails for internal teams.
Anchorage Digital is building a digital asset platform for institutions to participate in crypto. It is funded by institutions including Andreessen Horowitz, GIC, and Goldman Sachs, and has a Series D valuation over $3 billion.