Lead secure design reviews, threat modeling, and security-focused code reviews across the product and platform.
Build and run Fieldguide’s vulnerability management program: scanning, triage, SLA-driven remediation tracking, and engineering coordination.
Partner with Compliance to ensure technical controls satisfy framework requirements (SOC 2, ISO 27001, ISO 42001, FedRAMP).
Fieldguide is establishing a new state of trust for global commerce and capital markets through automating and streamlining the work of assurance and audit practitioners. They are based in San Francisco, CA, and built as a remote-first company that enables you to do your best work from anywhere.
Embed security into CI/CD pipelines and repos using policy-as-code tools (pre-commit hooks, SAST/SCA, IDE tool integrations)
Conduct threat modeling sessions and risk‑driven design reviews early in development
OnePay is a consumer fintech company trusted by millions of Americans to make money better by providing an all-in-one financial services platform. They are backed by Walmart and Ribbit Capital, allowing them rare scale and distribution to build something truly category-defining.
Create, manage, and maintain the application security strategy and roadmap.
Develop, execute, and track the performance of security measures to protect Alma’s data, applications, and systems.
Build and provide high-quality application security documentation and training to engineers.
Alma simplifies access to high-quality, affordable mental health care by making it easy and financially rewarding for therapists to accept insurance. Alma has over 20,000 therapists in their growing network and was named one of Inc’s Best Workplaces in 2022 and 2023.
Support ServiceNow’s Sales Teams in Pre- and Post-Sales efforts.
Respond to prospect and customer questions related to security.
ServiceNow is a global market leader bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Their intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work.
Drive and enable proactive identification, analysis, and remediation of security vulnerabilities.
Respond to manage pen testing and bug bounty programs.
Work in partnership with Software Architecture, Risk/Compliance, the SRE team, and other partners, to integrate security capabilities into the SDLC.
Subsplash builds The Ultimate Engagement Platform™ for churches, Christian ministries, non-profits, and businesses around the world. They are a family-owned and operated company of 290+ mission-driven people.
Serve as the dedicated security architect and strategic partner for Core DevOps functional leadership.
Lead security architecture and design work for strategic Core DevOps initiatives.
Identify, assess, and drive reduction of systemic security risks in the Product Security Risk Register.
GitLab is an open-core software company developing an AI-powered DevSecOps platform used by over 100,000 organizations. Their mission is to enable everyone to contribute to and co-create the software that powers our world, valuing every voice in their high-performance culture.
Serve as the primary vCISO and subject matter expert for multiple clients.
Lead data-centric cybersecurity programs aligned to business risk.
Manage, mentor, and develop vCISO team members.
Coretelligent partners with growing, highly regulated organizations that need secure, dependable IT environments built to scale. They deliver managed IT, cybersecurity, cloud, and strategy, through a model designed for consistency, transparency, and trust. They are building a team of professionals who care deeply about quality, ownership, and continuous improvement.
Lead an engineering team building client-facing enterprise security features.
Design and implement libraries and microservices in Rust.
Deliver bring-your-own IdP integrations and modern enterprise authentication flows.
Kraken is a mission-focused company rooted in crypto values. They are committed to industry-leading security, crypto education, and world-class client support, and operate as a fully remote company with Krakenites in 70+ countries who speak over 50 languages.
Be a key driver in the greenfield implementation of Lime’s enterprise IGA platform.
Implement, manage, and automate the identity lifecycle (joiner, mover, leaver) to ensure seamless and secure transitions.
Execute on a high volume of new application integrations for Single Sign-On (SSO) and MFA.
Lime is the largest global shared micromobility business, operating in close to 30 countries across five continents. They're on a mission to build a future where transportation is shared, affordable and carbon-free. Named a 2025 Time 100 Most Influential Company, Lime continues to set the pace for shared micromobility globally, spurring a new generation of clean alternatives to car ownership.
Design, deploy, and manage security tools and infrastructure to detect and prevent threats across cloud (AWS and GCP), corporate, and product environments.
Work collaboratively with engineering and product teams to integrate security into the SDLC (Secure Software Development Life Cycle) via threat modeling, code reviews, and automated testing.
Conduct security assessments, penetration testing, and vulnerability management to identify and remediate risks in our applications and services.
Acorns is a financial wellness app helping people and families save and invest money for the long term. Since 2014, Acorns has grown into a global company with multiple life-stage products serving the needs of kids, teens, adults, and parents.