Security Engineer - Product Security

Role Overview Aircall is looking for a Security Engineer focused on Product Security to help protect our products and platform. This role is based in our London office. What You Will Do Work with teams across engineering, product, and other functions to spot vulnerabilities and address them early in the development process. Implement security measures that f…

Join Wiz, a pioneering force in cloud security, dedicated to empowering businesses to excel in the cloud. As the fastest-growing startup, we are on a mission to secure cloud environments and help organizations thrive. Our diverse team spans over 20 countries, protecting the infrastructures of numerous clients, including more than 50% of the Fortune 100. At Wiz, you will have the opportunity to influence our product roadmap, collaborate with talented professionals, and contribute to our unprecedented growth.

As a Principal Product Security Engineer at Navantia UK, you will play a pivotal role in safeguarding our products and systems against evolving security threats. Your expertise will guide our security strategies and ensure compliance with industry standards. You will collaborate closely with cross-functional teams to integrate security best practices throughout the product development lifecycle.

Join Us at CommercetoolsAt commercetools, we believe that true innovation is built on a solid foundation. Our team embodies a unique blend of builders, explorers, and problem-solvers who are reshaping the future of commerce. We are not just pioneers in flexible commerce architecture, but also champions of a culture of experimentation that drives our industry forward. Together, we empower ambitious businesses to thrive in a rapidly changing landscape through AI-driven solutions and seamless integration of digital and physical shopping experiences.Your Role and ImpactAs the Principal Engineer for Product Security, you will be instrumental in addressing complex technical challenges that arise within our innovative product lines. Your expertise will enable our engineering teams to 'shift left', fostering secure service development across a multi-cloud infrastructure. Join us and make a significant impact on the future of commerce!

Join our dynamic team at Blockchain as an Infrastructure Security Engineer. In this pivotal role, you will be responsible for designing, implementing, and maintaining robust security architectures to safeguard our cutting-edge blockchain technologies. Your expertise will be essential in identifying vulnerabilities, managing security incidents, and ensuring compliance with industry standards.We are looking for a passionate individual who thrives in a fast-paced environment and is eager to contribute to the future of decentralized technologies.

Join Redgate Software as a Product Security Engineer!At Redgate, we develop innovative, user-friendly software solutions that empower data professionals to maximize the value of their databases. Our products address intricate database management issues throughout the DevOps lifecycle, enhancing efficiency, minimizing errors, and safeguarding critical business data. The data community places its trust in Redgate to effectively balance speed to market, teamwork, and data security.Explore more about our vibrant culture and commitments:Redgate Software – CultureFlexa CareersGlassdoorRepVueYour RoleAs a vital member of our team, you will integrate security into the software development lifecycle across various product teams. Your responsibilities will include defining security requirements, enhancing detection and prevention mechanisms (SAST/DAST), guiding teams on application security governance, and conducting threat modeling.Your Contributions at RedgateCollaborate with engineering and product teams to define and operationalize security requirements throughout the SDLC, from design to deployment.Conduct audits of application code to identify weaknesses and vulnerabilities.Lead or co-lead application security governance practices, including secure-by-default standards, patterns, guardrails, and risk acceptance processes.Promote SAST/DAST adoption and ensure high-quality outcomes through tool tuning, triage workflows, severity calibration, and fix-forward practices.Facilitate the implementation of threat modeling for new features, architectural changes, and high-risk services, transforming findings into actionable engineering tasks.Offer guidance on product security within cloud-native environments (AWS and containerized workloads), focusing on secure service design.

Trainline is a major player in European rail travel, connecting millions of customers with ticket options from hundreds of carriers. With a presence in over 40 countries and a team representing more than 50 nationalities, the company focuses on making travel simpler and more sustainable. The London office is one of several across Europe supporting this mission. The security team at Trainline works at the intersection of technology and safety, partnering with Cloud Engineering, SRE, and Platform Engineering. Their work helps protect digital channels that process billions in ticket sales, adapting to new threats and integrating emerging technologies to keep systems secure. Role overview The Junior Product Security Engineer role centers on supporting security throughout the product development lifecycle. This position is well suited to someone early in their security career who wants to apply security concepts in a cloud-native environment. The role involves hands-on work with vulnerability management and collaboration with product teams to strengthen security practices. What you will do Assist with embedding security into each stage of product development Support vulnerability management processes Work alongside experienced security engineers and cross-functional teams Help improve security practices for digital products Location This position is based in London.

The Product Security Team at Databricks is dedicated to seamlessly integrating security throughout the Software Development Lifecycle (SDLC). Our primary goal is to ensure that all code written for customer use or internal support is rigorously examined to minimize the introduction of new vulnerabilities and reduce the impact of those identified externally on Databricks Services. As a Senior Staff Product Security Engineer, you will play a pivotal role as an individual contributor on our product security team, overseeing SDLC functions for various features and products at Databricks. Your responsibilities will encompass security design reviews, threat modeling, manual code assessments, exploit development, and incident response support. You will collaborate with a globally distributed team across the US and EMEA. Your Contributions Will Include: Providing comprehensive SDLC support for new product features developed by engineering and non-engineering teams, including threat modeling and design reviews. Collaborating with other security teams to assist with incident response and vulnerability management as needed. Utilizing SAST tools to identify and assess false positives and document legitimate security issues. Engaging with DAST tools and automating processes for continuous assessment and defect tracking. Enhancing the automation framework to support compliance with various security standards such as FedRamp, PCI, and HIPAA. Adopting a risk management approach to prioritize security measures effectively. Assisting in the development and implementation of security processes that enhance the productivity of the product security organization and the SDLC. What We Seek: 5-10 years of experience with threat modeling and the ability to identify design flaws based on data flow diagrams. A strong foundation in at least two of the following areas: web security, cloud security, systems security, and applied cryptography. Proficiency in programming languages such as Python, Java, Scala, or JavaScript, with the capability to analyze code for security vulnerabilities. Expertise in scripting and automation for exploit development. Fuzzing experience is a plus. Strong skills in exploit writing are highly desirable.

As a Product Security Engineer at Chainguard, you will play a crucial role in ensuring the security of our products. You will work collaboratively with cross-functional teams to identify vulnerabilities, implement robust security measures, and support the development of secure software solutions. This remote position allows you to leverage your expertise while contributing to a dynamic and innovative team.

Galaxy Digital Services seeks a Vice President, Senior Product Security Engineer for its London office. This role focuses on strengthening the security of microservices and cloud applications across a range of digital asset and trading platforms. The position reports to the Director of Product Security. Role overview The Senior Product Security Engineer will assess complex trading systems and blockchain architectures. Responsibilities include identifying vulnerabilities, recommending or implementing remediations, and ensuring security best practices are integrated throughout product and software engineering processes. Collaboration with Engineering, Product, and Infrastructure teams is central to this role, supporting secure software delivery as the company expands. What you will do Evaluate the security of microservices and cloud-based applications Conduct assessments of trading systems and blockchain architectures Facilitate or implement remediation efforts to address identified risks Work closely with cross-functional teams to deliver secure products Requirements Expertise in securing microservices and cloud applications Strong understanding of product and software engineering processes Experience with trading systems and blockchain security Ability to collaborate effectively with technical and product teams Our core values Pursue excellence Be selective to achieve effectiveness Maintain high alignment with loose coupling Encourage transparent disagreement Foster independent decision-making Assemble dream teams

Our Mission At Speakeasy, we are revolutionizing API infrastructure by providing our users with a developer experience akin to that of Stripe. Our goal is to enhance API adoption, alleviate support and engineering burdens, and unlock new use cases through exceptional developer surfaces.Our Product We create innovative code that generates code. Our primary tools are Golang and Typescript, and we leverage large language models (LLMs) to amplify user experience.The generated code becomes part of GitHub's Open Source Repositories for customer SDKs, Terraform Providers, and other developer interfaces. We enhance virality by branding these repositories with “Powered By Speakeasy,” which we refer to as Managed SDKs.We also provide a web interface built on React, Typescript, and Golang to facilitate configuration.Why Join Us?Our customers rave about our services and actively promote us.We are positioned in a market with a massive Total Addressable Market (TAM).Our high revenue per customer, alongside significant virality and natural avenues for product distribution, makes this position exciting.We develop tools that are incredibly useful for our customers.We enhance the initial user experience when interacting with APIs.About Us We are a cohesive team of 30 who are passionate about enhancing developer experiences and delivering value to our clients.We're on the lookout for polyglots who can engage with customers across various languages and technologies for API product integration—knowledge of multiple languages is a plus.Our engineering culture emphasizes context over control, enabling us to rapidly and continuously deploy code while trusting each other to innovate and align our processes with company goals.While we value in-person collaboration, we understand that great talent can be found anywhere. Our policy allows for employee location flexibility, but we do arrange team meetups periodically.

Role Overview NBCUniversal is hiring a Production & Event Security Manager based in London. This position oversees security operations for a range of productions and events, focusing on the safety of both personnel and guests. What You Will Do Develop and implement security protocols for productions and events Coordinate with local law enforcement and external partners Lead and manage a team of security professionals Allocate and oversee security resources Ensure compliance with all relevant safety regulations

Join the forefront of cloud networking and security!Cato Networks is revolutionizing enterprise networking and security by delivering a unified global service through the cloud. Under the leadership of industry trailblazer Shlomo Kramer, founder of Check Point and Imperva, Cato has pioneered a groundbreaking product category recognized by Gartner as 'SASE', projected to reach a market value of $28.5 billion by 2028.Seize this opportunity to be part of a dynamic team at Cato Networks as we build an advanced enterprise network and secure cloud platform, positioning ourselves as the global market leader. Don't miss out on this chance!At Cato Networks, we are fundamentally transforming the network into a secured cloud service, and we are in search of a stellar Product Manager to play a pivotal role in shaping the future of our security offerings. As a Product Manager, you will be an integral part of a team focused on driving product strategy, defining features and requirements, and spearheading the launch of innovative security capabilities.

Why Choose Nebius?Nebius is at the forefront of a transformative era in cloud computing, dedicated to empowering the global AI economy. We develop innovative tools and resources that enable our clients to tackle real-world challenges and revolutionize industries, all while avoiding exorbitant infrastructure expenses and the necessity for expansive in-house AI/ML teams. Join our team of pioneering engineers and industry leaders as we redefine the landscape of AI cloud infrastructure.Our Work CultureBased in Amsterdam and publicly traded on Nasdaq, Nebius boasts a diverse global presence with R&D centers across Europe, North America, and Israel. Our talented workforce of over 1,400 includes more than 400 adept engineers who possess extensive expertise in both hardware and software engineering, complemented by a dedicated in-house AI R&D team.The RoleThe Security Engineering Team within our Platform Security organization is tasked with strategically selecting, implementing, managing, and optimizing cybersecurity tools and technologies that enhance the organization's platform security capabilities. This team plays a critical role in strengthening our security posture, proactively detecting and addressing potential security threats, and safeguarding our essential data, systems, and services.We are seeking a skilled Infrastructure Security Engineer to bolster our cloud and on-premises infrastructure security through the implementation of robust security controls, vigilant threat monitoring, adherence to industry compliance standards, and prompt incident response. The ideal candidate will possess a solid background in cloud security, Linux hardening, and network security.Your Key Responsibilities Will Include:Designing and implementing comprehensive security measures to protect both cloud and on-premises infrastructure.Identifying and remediating vulnerabilities within cloud environments, networks, and operating systems.Developing and maintaining essential security tools for cloud and infrastructure.Conducting thorough security reviews, threat modeling, and risk assessments to enhance security protocols.

About the RoleJane Street is seeking a skilled Infrastructure Security Engineer with a robust background in Windows engineering and hands-on experience with contemporary platform security measures to enhance the security of our IT platforms globally. In this pivotal role, you will exercise sound judgement and a keen sense of priorities to manage complex remediation tasks effectively. Your insights will guide our mitigation strategies and provide essential technical guidance for the team.Your responsibilities will include proactively designing, testing, implementing, and documenting strategic security measures. You will lead the coordination and delivery of security solutions across our IT infrastructure while discovering opportunities to automate intelligent workflows. Your expertise will be vital in securing both internal IT and remote working environments through a blend of technical execution, consultancy, and influence over the broader IT team. This position encompasses a variety of tasks, including building scalable security controls, investigating emerging threats, developing innovative security tools, and spearheading vulnerability management initiatives.As part of our IT Engineering department, you will collaborate with a dedicated team of engineers who oversee our operations across a diverse physical and virtual computing landscape spanning three continents. Your analytical skills and technical proficiency will be crucial in supporting our colleagues' daily operations and maintaining our systems at peak performance.

Join Abnormal Security as a Machine Learning Engineer II, specializing in Behavioral Security Products. In this remote role, you will be instrumental in developing advanced machine learning models to enhance security measures and protect organizations from emerging threats. Collaborate with a talented team to innovate and implement cutting-edge solutions that leverage behavioral data analysis.

Role overview The Senior Manager of Product Security at Anaplan plays a key leadership role in Manchester, United Kingdom. The focus is on protecting the security and integrity of Anaplan’s products and services. This position is responsible for advancing initiatives that safeguard customer data and help maintain trust in the Anaplan brand. What you will do Lead product security efforts across all Anaplan offerings Work closely with teams from different disciplines to address security needs Drive projects and initiatives aimed at protecting customer data Help uphold high security standards to support Anaplan’s reputation

About XBOWAt XBOW, we are pioneering the future of cybersecurity with our innovative approach to automated penetration testing, driven by cutting-edge AI technology. While traditional pentesting relies on human expertise, we leverage AI to enhance offensive security, meeting the increasing demands of software system protection.As AI reshapes the cybersecurity landscape, it also empowers malicious actors, making it imperative for security professionals to stay ahead. XBOW equips security teams with AI-driven capabilities, enabling them to preemptively tackle cyber threats.Supported by Sequoia Capital and Altimeter, and featuring a team that includes the visionaries behind GitHub Copilot and GitHub Advanced Security, XBOW is not just keeping pace with technological advancements; we are setting the standard in cybersecurity. Our mission is clear: to neutralize threats before they materialize, transforming the offensive security paradigm through AI.Join us in our quest to innovate and shape the future of autonomous security.About This RoleAs a Product Analytics Engineer at XBOW, you will play a critical role in shaping our product's data strategy. You will be responsible for defining key metrics, developing data pipelines, and generating actionable insights that inform our product development. Currently, we have foundational tracking in place, but we need your expertise to elevate our analytics capabilities.Your work will ensure that the product team operates with a data-informed approach. Key areas of focus will include understanding which features enhance user retention, identifying user drop-off points in onboarding processes, and assessing the adoption rates of new functionalities. You will avoid producing unread reports and instead create dashboards and data models that present product usage data in a comprehensible manner for the stakeholders involved.This position requires a comprehensive understanding of both front-end and back-end systems. You'll be enhancing our existing front-end instrumentation, developing server-side event tracking, and crafting the data layer that connects user interactions to product results. Collaboration with engineers to ensure accurate event emission and with Product Managers to prioritize relevant metrics will be essential.This is not a support role; you will be an integral member of the product team, providing input on what metrics are significant and advocating for the importance of tracking impactful data.

Join our dynamic team at Scalian as a Product Engineer where your expertise will contribute to innovative solutions and product development. In this role, you will leverage your technical skills to drive product enhancements and collaborate across departments to ensure excellence in product delivery.

Role overview Anaplan is hiring a Senior Manager of Product Security in London. This leadership position focuses on protecting Anaplan’s product suite from security threats. The Senior Manager will set the direction for product security, shape strategies, and ensure that teams meet industry standards for security and compliance. What you will do Develop and implement security strategies for Anaplan’s products. Collaborate with teams across the company to identify vulnerabilities and address them. Promote security awareness and best practices throughout the organization. Maintain compliance with relevant industry standards and regulations. Requirements Proven experience in product security and risk management. Background in leading security initiatives and managing teams. Skilled at guiding teams to identify and resolve security challenges. Knowledge of industry security standards and protocols.