Coordinate with engineering teams to raise concerns and communicate results.
Manage and review the work of external security auditing teams.
Espresso Systems is building foundational infrastructure to power tomorrow’s internet, where digital assets are able to move across chains. They are a diverse and passionate group of contributors from around the world with roughly $60 million raised from leading investors.
Preventively perform penetration tests and actively combat attacks.
Be a driver for automation with regards to security testing.
Analyze and mitigate data and cyber risks.
Deutsche Telekom IT Solutions, a subsidiary of the Deutsche Telekom Group, is Hungary’s most attractive employer providing a wide portfolio of IT and telecommunications services. With over 5300 employees, they serve hundreds of large customers and corporations in Germany and other European countries and continuously develops its four sites.
Define and lead the long-term product security strategy and roadmap aligned with company goals and regulations.
Architect and evolve a best-in-class Product Security program covering threat modeling, SAST, DAST, IAST, SCA, runtime protection, and API security.
Identify and resolve systemic, high-impact vulnerabilities and architectural security gaps across Greenlight's platform while mentoring staff and senior engineers.
Greenlight is a family fintech company providing a banking app to help parents manage finances and teach children about money. The company is mission-driven with a collaborative and inclusive culture, employing over 6 million users and a team passionate about financial literacy.
Design and implement security controls for AI systems, including model training pipelines and inference endpoints across the platform.
Conduct threat modeling, vulnerability assessments, and penetration testing focused on AI-specific attack vectors like prompt injection and model poisoning.
Lead security reviews for AI use cases, identify risks, and provide actionable mitigation recommendations to ensure features are secure by design.
Canva is a design platform that empowers users to create a wide range of visual content. It is a large, global company known for a dynamic, collaborative, and creative culture that emphasizes trust and employee flexibility.
Conduct comprehensive penetration tests and code audits across cloud environments and internal infrastructure.
Collaborate with detection and incident response teams to review security controls and enhance detection capabilities.
Build and maintain custom offensive tools and automation frameworks to increase assessment speed.
Offchain Labs builds advanced blockchain scalability and security technology, pioneering Ethereum scaling solutions like the Arbitrum stack. The company has a remote-first global team, is backed by $124 million in funding, and fosters a culture of tackling unprecedented problems to create a more equitable digital future.
Perform application security assessments across software products, cloud services, and supporting infrastructure.
Plan, coordinate, and manage penetration testing activities, including scoping, execution, and remediation tracking.
Support preparation of cybersecurity documentation for regulatory submissions, including FDA 510(k) filings and NIST requirements.
iRhythm Technologies is a leading digital healthcare company specializing in cardiac health solutions using wearable biosensors and data analytics to transform heart rhythm data into actionable clinical insights. The company fosters a collaborative, fast-paced environment focused on patient care, innovation, and inclusivity.
Conduct comprehensive security and vulnerability assessments of internally developed and third-party applications.
Perform software security evaluations, including code reviews and architectural analysis, and utilize penetration testing to identify vulnerabilities.
Ensure application deliverables align with DoD and Air Force cybersecurity policies and frameworks, providing expert guidance on secure design and cloud security best practices.
Odyssey is a world-class technical and engineering integration company serving the warfighting ecosystem with capabilities in airborne integration, ISR, C2, and warfighter readiness. It is dedicated to excellent contract execution and fosters a workplace built on employee care, operating with core values of commitment, ambition, and respect through philanthropic initiatives like OdysseyCares.
Conduct advanced penetration testing and vulnerability assessments on products and infrastructure.
Collaborate with development teams to integrate security best practices into the software development lifecycle.
Stay current on exploitation techniques and incorporate them into penetration testing methodologies.
Origami Risk delivers single-platform SaaS solutions to help organizations manage risk, insurance, compliance, and safety. The company is an equal opportunity employer focused on creating an inclusive environment for all employees.
Perform penetration testing on networks, web applications, and APIs to identify and assess vulnerabilities.
Write clear, concise deliverable reports for clients to help them understand their risk posture and remediation steps.
Advise clients on security best practices for application design and infrastructure architecture.
Crosslake Technologies provides programmatic, proactive technology governance and advisory services throughout the investment lifecycle, helping clients buy, build, and run better technology. The firm fosters a culture of service, curiosity, credibility, commitment, and creativity, working with private equity and investment firms.