The team fosters a collaborative environment and is building a best-in-class program to partner with the business to protect the Firm’s information and computer systems. Millennium is a complex and robust technical environment and securing the Firm from external and internal threats is a top priority.

Responsibilities

• Define and implement security guardrails for Generative AI, LLMs, and Agentic frameworks, ensuring safe enterprise adoption.
• Conduct specialized threat modeling, red teaming, and risk assessments for AI/ML models (e.g., testing for prompt injection, model theft, and data poisoning).
• Lead risk management activities, including application risk assessments, design reviews, and mitigation strategies for IT projects.
• Engage throughout the SDLC to identify vulnerabilities, conduct code reviews/penetration testing, and enforce secure coding standards.
• Evangelize AppSec and AI security best practices through developer education, training materials, and outreach.
• Design robust security architectures and integrate automated security testing (SAST/DAST/SCA) into CI/CD pipelines.
• Partner with Technology, Trading, Legal, and Compliance to create policies and communicate technical risks to non-technical stakeholders.

Qualifications

• Bachelor's degree or higher in Computer Science, Computer Engineering, IT Security or related field.
• 5+ years’ experience working as an Application Security Engineer, Software Engineer, or similar role.
• Deep understanding of AI-specific risks (OWASP Top 10 for LLMs) and experience securing applications utilizing LLMs.
• Experience working with AI models, Agentic frameworks and security risks associated with AI.
• Experience in working with global teams, collaborating on code and presentations.
• Demonstrated work experience in hybrid on-premise and Public Cloud environments (AWS/GCP/Azure)
• Strong understanding of security architectures, secure configuration principles/coding practices, cryptography fundamentals and encryption protocols.
• Experience with common SCM & CI/CD technologies like GitHub, Jenkins, Artifactory, etc. and integrating Security Scanning and Vulnerability Management into the CI/CD Pipelines
• Familiarity with static and dynamic security analysis tools, and SCA/SBOM solutions.
• Hands on experience with Secrets Management & Password Vault technologies such as Delinea Secret Server and/or Hashicorp Vault, etc.
• Strong experience in secure programming in languages such as Python, Java, C++, C#, or similar.
• Familiarity with Infrastructure as Code tools (CloudFormation, Terraform, Ansible, etc.)
• Familiarity with web application security testing tools and methodologies.
• Knowledge of various security frameworks and standards such as ISO 27001, NIST, OWASP, etc.
• Knowledge of Linux, OS internals and containers is a plus.
• Certifications like CISSP, CISM, CompTIA Security+, or CEH are advantageous.

XML job scraping automation by YubHub

The successful candidate will have a proven understanding in enterprise security and AI security and will focus on defining and implementing security guardrails for Generative AI, LLMs, and Agentic frameworks, ensuring safe enterprise adoption.

Key responsibilities include:

• Defining and implementing security guardrails for Generative AI, LLMs, and Agentic frameworks
• Conducting specialized threat modeling, red teaming, and risk assessments for AI/ML models
• Leading risk management activities, including application risk assessments, design reviews, and mitigation strategies for IT projects
• Engaging throughout the SDLC to identify vulnerabilities, conduct code reviews/penetration testing, and enforce secure coding standards
• Evangelizing AppSec and AI security best practices through developer education, training materials, and outreach

Qualifications include:

• Bachelor's degree or higher in Computer Science, Computer Engineering, IT Security or related field
• 5+ years' experience working as an Application Security Engineer, Software Engineer, or similar role
• Deep understanding of AI-specific risks (OWASP Top 10 for LLMs) and experience securing applications utilizing LLMs
• Experience working with AI models, Agentic frameworks and security risks associated with AI
• Experience in working with global teams, collaborating on code and presentations

Preferred qualifications include:

• Demonstrated work experience in hybrid on-premise and Public Cloud environments (AWS/GCP/Azure)
• Strong understanding of security architectures, secure configuration principles/coding practices, cryptography fundamentals and encryption protocols
• Experience with common SCM & CI/CD technologies like GitHub, Jenkins, Artifactory, etc. and integrating Security Scanning and Vulnerability Management into the CI/CD Pipelines
• Familiarity with static and dynamic security analysis tools, and SCA/SBOM solutions
• Hands on experience with Secrets Management & Password Vault technologies such as Delinea Secret Server and/or Hashicorp Vault, etc.
• Strong experience in secure programming in languages such as Python, Java, C++, C#, or similar
• Familiarity with Infrastructure as Code tools (CloudFormation, Terraform, Ansible, etc.)
• Familiarity with web application security testing tools and methodologies
• Knowledge of various security frameworks and standards such as ISO 27001, NIST, OWASP, etc.
• Knowledge of Linux, OS internals and containers is a plus
• Certifications like CISSP, CISM, CompTIA Security+, or CEH are advantageous

We offer a competitive salary and benefits package, as well as opportunities for professional growth and development.

XML job scraping automation by YubHub

As a Staff Security Engineer, you will design and implement scalable triage, prioritization, and remediation-tracking systems across application, infrastructure, and hardware domains. You will set technical standards, drive high-impact initiatives, and mentor engineers through technical leadership, while partnering with leadership on priorities and execution risks.

Key Responsibilities:

• Lead high-complexity VM technical initiatives and deliver architecture decisions for assigned program areas
• Design and build scalable triage automation, including integrations, decision logic, and production hardening
• Implement end-to-end workflow components from assessment and detection to ticket routing and remediation tracking
• Provide deep technical leadership on hardware-adjacent vulnerabilities (GPU firmware, DPU firmware/BlueField, and BMC surfaces)
• Act as senior technical responder for embargoed disclosures and zero-day events, coordinating with owner teams that deploy fixes
• Improve prioritization logic, severity models, and exception workflows through code, design reviews, and technical proposals
• Produce actionable technical metrics and risk insights for leadership consumption
• Lead root-cause analysis for high-impact vulnerability incidents and implement durable technical improvements
• Mentor IC3/IC4/IC5 engineers through design guidance, code review, and incident coaching
• Partner with security, engineering, and operational stakeholders to improve workflow reliability and accelerate remediation outcomes

Requirements:

• 9+ years of relevant experience with demonstrated strategic impact in vulnerability management, application security, platform security, or cloud security engineering
• Proven track record building and scaling security automation (SOAR workflows, AI/ML systems, detection pipelines) in production environments
• Deep subject matter expertise with vulnerability management best practices: CVSS, EPSS, CISA KEV, threat intelligence integration, and risk-based prioritization frameworks
• Excellent development background with strong coding skills in Python, Go, or similar languages for building scalable, production-grade security systems
• Significant experience with modern vulnerability management tooling (for example Wiz, Semgrep, Rapid7, Tenable, or equivalent)
• Experience with specialized infrastructure: GPU/DPU environments, firmware security, hardware vulnerabilities, or high-performance computing
• Demonstrated track record mentoring engineers across levels and driving cross-functional technical initiatives at organizational scale
• Strong business acumen and understanding of how security decisions impact engineering velocity, customer trust, and business outcomes

Preferred Qualifications:

• Practical experience building AI/ML-powered security systems (LLM integration, automated decision-making, human-in-the-loop validation) in production
• Experience managing hardware vendor security partnerships (embargoed disclosures and pre-release collaboration)
• Production experience with security automation platforms such as TINES and serverless frameworks (AWS Lambda, GCP Cloud Functions)
• Strong DevOps, DevSecOps, or SRE background with deep experience in AWS/GCP/Azure cloud services and Infrastructure as Code (Terraform, CloudFormation)
• Deep understanding of Kubernetes security (container scanning, admission controllers, supply chain security, runtime protection)
• Experience leading security programs through rapid hypergrowth (10x+ infrastructure scaling) in startup or cloud-native environments
• Practical experience managing vulnerabilities within a FedRAMP-certified environment or similar regulatory frameworks

Salary and Benefits: The base salary range for this role is $188,000 to $275,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location. We strive for both market alignment and internal equity when determining compensation. In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

Work Environment:

While we prioritize a hybrid work environment, remote work may be considered for candidates located more than 30 miles from an office, based on role requirements for specialized skill sets. New hires will be invited to attend onboarding at one of our hubs within their first month. Teams also gather quarterly to support collaboration.

XML job scraping automation by YubHub

You will bring strong relationship-building experience, product knowledge, project management and organizational skills, as well as a high degree of empathy to ensure the customer's satisfaction with Cloudflare's services.

You will maintain a deep understanding of our solutions and present to customers about the most relevant features/functionality for their specific business needs.

You will act as the primary point of contact for Cloudflare customers and will be 'the face of the business'.

You will act as an internal escalation point for customer requests including: technical questions, contract questions, and other account-related questions.

You will advocate for customers internally and balance the needs of the customer with the business needs of Cloudflare.

You will own your book of business and will be responsible for delivering results on KPIs including revenue retention.

This is driven through demonstrating the value of the products and services provided to the customer's business via quarterly reviews.

To succeed, you will need to:

• Manage the customer lifecycle post-contract, identifying and communicating relevant features and functionality to support specific business needs.

• Foster strong relationships with customers and internal teams to find solutions to problems and ensure customer satisfaction.

• Lead retention efforts by demonstrating the value Cloudflare's products and services provide, through all suitable interactions.

• Coordinate and execute business reviews, delivering insights and recommendations to ensure customer alignment with business objectives.

• Leverage customer data to uncover potential risks and expansion opportunities, supporting growth and long-term retention.

• Work collaboratively with Product, Engineering, Marketing, and other internal teams to resolve customer business issues to drive customer business outcomes.

• Communicate and escalate potential customer issues through the appropriate channels to ensure timely resolution.

• Triage and manage inbound inquiries, gathering necessary detail for internal follow-up.

• Identify areas for improvement with internal processes.

Required skills, knowledge and experience:

• Strong communication skills in German and English (verbal and written)

• Bachelor's degree required, Master's degree is a plus

• 5+ years of experience in post-sales customer-facing roles in enterprise SaaS businesses, ideally in Customer Success Management

• Strong understanding of computer networking, application and network security, and 'how the internet works'

• Strong relationship-building skills and experience working with high value enterprise-level customers.

• Strong organizational skills with a proven ability to prioritize and multitask in a dynamic environment, and to perform under pressure

• Excellent interpersonal communication and presentation skills.

• Experience with customer negotiations and handling difficult customer conversations

• High degree of empathy and a customer-centric mindset to ensure our customers' success and satisfaction.

XML job scraping automation by YubHub

Identity is the key to unlocking the potential of AI. Auth0 secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence.

This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

Software Architect, Identity

The Engineering Architect Team

The Architecture team is a small group of very senior engineers reporting to our VP of Engineering Excellence, working broadly across the organisation in collaboration with Engineering, Product, and Security. We partner deeply with other Engineering teams for large projects, and provide direction and architectural guidance for smaller initiatives. We have a dual-pronged charter to “level up the tech stack and level up the people stack” via both technical contributions and partnerships/mentoring.

In this role, you will have the opportunity to significantly contribute to Auth0’s future technology direction. Through your experience, knowledge of industry trends, and technical abilities you will provide guidance, build proof of concepts, and deliver production software implementations that help Auth0 Engineering teams move faster by using and developing standard patterns and technologies. You will also help advance the engineering culture and help uplevel other engineers. Note that while this role involves a lot of guidance, documentation, and leadership, it also requires substantial hands-on coding and development of both applications and systems.

What you’ll be doing

• Collaborate with Product, Security, and Engineering teams to define and continually improve Auth0’s technology stack and architecture.

• Foster and lead innovation in the IAM space, with a strong focus on Agentic Identity

• Lead initiatives to enhance, scale, and evolve Auth0’s product offerings.

• Embed within Engineering teams across the organisation for large projects, while providing guidance and lighter touch engagements for smaller initiatives.

• Design, architect, and document large scale distributed systems.

• Lead the development of complex, broadly-scoped functionality in a very large and deep set of services and components.

• Teach by doing: coding, optimising, and troubleshooting Node.js and Go applications in collaboration with feature development teams.

• Implement features and create consistent foundations using technologies such as AWS, Azure, Node.js, Go, MongoDB, Redis, PostgreSQL, Kubernetes.

• Investigate, understand, and resolve bottlenecks in our ability to scale, use resources efficiently, and maintain a 99.99% uptime SLA.

• Drive technical decision making while striving to find the right balance between factors such as simplicity, flexibility, reliability, cost, and performance.

• Participate in “round table” discussions and mentor team members and engineers throughout the organisation to level up our people.

• Participate in our Engineering Leadership Team with other architects, directors, and executives.

• You will join our Incident Commander on-call rotation. Members of our team do periodic on-call rotation for high-severity incidents to help up-level our responses After spending time getting acquainted with our applications, systems, and processes, and getting training to

What you’ll bring to the role

• 10+ years of software development experience.

• 5+ years of experience working on cloud applications.

• Experience with API-first applications using REST and/or gRPC

• Passion and thorough understanding of what it takes to build and operate secure, reliable systems at scale.

• Knowledge of Identity Protocols such as OAuth, OIDC and SAML.

• Industry knowledge of the Authorization and Authentication spaces.

• Experience in building AI Agents, and/or MCP servers applications.

• Experience with security engineering and application security.

• Very strong written and verbal communication skills with a demonstrated ability to adjust your communication style to the intended audience, whether communicating with senior executives, customers, engineers, or product managers.

• Mastery and deep understanding of hands-on software development building distributed systems.

• Experience with multi-cloud environments and container deployments, particularly Kubernetes in AWS/Azure.

• Prior experience with application performance management, tracing, and performance testing tools.

• Excellence at creating clarity and alignment for technical initiatives.

• Great ability to build trust through collaboration with multiple teams and get consensus on a vision.

• Knowledge of application security and cloud security best practices.

And extra credit if you have experience in any of the following!

• Deep experience in Node.js (Javascript or Typescript), or Golang.

XML job scraping automation by YubHub

Brex is a financial platform that enables companies to spend smarter and move faster in over 200 markets. It combines global corporate cards and banking with intuitive spend management, bill pay, and travel software.

As a Senior Application Security Engineer, you will focus on finding and responding to security vulnerabilities across the Brex platform. In this role, you will perform code reviews, design reviews, penetration testing, and vulnerability management. You will develop and maintain tooling to perform static and dynamic testing of the Brex platform and tooling which supports secure developer workflows.

Application Security is part of our wider Financial Scale organization, which means you will work closely with Security Operations, GRC, Product Security, Front End Platform, IT Infrastructure teams.

We’re looking for individuals with a strong background and interest in penetration testing. You should have a demonstrated ability to find vulnerabilities in complex systems and craft exploits to demonstrate business impact.

This role is highly cross-functional and collaborative, you will have the opportunity to work with every engineering team across Brex.

Building a world-class financial service requires world-class security. Brex is pioneering the next wave of AI-driven financial services for dynamic, high-impact companies like Coinbase, Robinhood, and Anthropic.

Responsibilities

• Identifying vulnerabilities, demonstrating business impact, and articulating the risk of specific vulnerabilities to drive prioritization efforts

• Perform penetration testing and design reviews, looking for vulnerabilities and insecure designs, work with engineering and product to design secure product features

• Maintain and build internal tools to automate security efforts, perform SAST and DAST testing of the Brex platform, and support secure development practices

• Build and contribute to a culture of collaborative security excellence through technical leadership, learning sessions, and mentorship within the team and wider organization

Requirements

• 5+ years work experience in an Application Security or related role

• Ability to find vulnerabilities in complex systems, demonstrating business impact through custom attack chains

• Experience with a wide range of secure development activities including, threat modeling, developer education, and incident response

• Knowledge of Python, scripting languages, and AI/agentic workflows to automate tasks, build tools and improve productivity

• Collaborative mindset paired with strong written and verbal communication skills

Bonus points

• Proficiency with Kotlin, gRPC, GraphQL, Kubernetes

• Previous experience as a software engineer

• Consultancy experience performing web application security reviews

• Experience with securing distributed systems in AWS and cloud environments

• Experience with pentesting and securing agentic features and systems

• Contributions to the wider technical community, open source, public research, mentorship, community organizing, blogging, CVEs, presentations, etc

Experience submitting to bug bounty programs or responsible disclosure programs

Compensation

The expected salary range for this role is $192,000 - $240,000. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity.

XML job scraping automation by YubHub

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

As a Cloud Engineer for Developer Platform, you are an individual contributor working in the post-sales landscape, responsible for the technical execution of solutions and guidance to our customers, following a consultative approach, to get the most value possible from their Cloudflare investment.

Key Responsibilities:

• Plan and deliver timely and organized services for customers, ensure customers see the full value in Cloudflare’s products and advice on product best practices.

• Gather business and technical requirements, use cases and any other information required to build, migrate and deliver a solution on behalf of the customer and transition the Cloudflare working environment to the customer.

• Produce a Solution Design, HLD, LLD, databuilds, procedures, scripts, test plans, drawings, deployment plan, migration plan, as-builts, and any other artifacts necessary to deliver the solution and transition smoothly into the customer’s technical teams.

• Implement changes on behalf of the customer in the Cloudflare environment following the customer’s change management process.

• Troubleshoot implementation issues and collaborate with Customer Support, Engineering and other teams to assist technical escalations.

• Contribute towards the success of the organization through knowledge sharing activities such as contributing to internal and external documentation, answering technical Q&A, and helping to iterate on best practices.

Support building operational assets like templates, automation scripts, procedures, workflows, etc.

Requirements:

• 3+ years of experience in a customer facing position as a Consultant delivering services.

• Demonstrated experience with:

• Developing serverless code in a CI/CD pipeline using an Agile methodology.

• Layers and protocols of the OSI model, such as TCP/IP, TLS, DNS, HTTP.

• Scripting languages.

• A scripting language (e.g. Python, JavaScript, Bash) and a desire to expand those skills.

• Infrastructure as code tools like Terraform.

• Strong experience with APIs.

• CI/CD pipelines using Azure DevOps or Git.

• Implementation and troubleshooting experience, knowledge of tools to troubleshoot, observability, logs, etc.

• Good understanding and knowledge of:

• Internet and Security technologies such as DDoS, Web Application Firewall, Certificates, DNS, CDN, Analytics and Logs.

• Security aspects of an internet property, such as DNS, WAFs, Bot Management, Rate Limiting, (M)TLS, certificates, OWASP.

• Performance aspects of an internet property, such as Speed, Latency, Caching, HTTP/3, TLSv1.3.

Preferred Qualifications:

• You have worked with a Cybersecurity company or products and have performed migrations using migration tools.

• You have developed application security and performance capabilities.

• Ability to manage a project, work to deadlines, prioritize between competing demands and manage uncertainty.

• The work will be performed in English. Fluency in a second regional European language is a strong advantage.

What Makes Cloudflare Special?

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare’s enterprise customers--at no cost.

Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project, we've provided services to more than 425 local government election websites in 33 states.

1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released.

Here’s the deal - we don’t store client IP addresses never, ever. We will continue to abide by our privacy commitment and ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you’d like to be a part of? We’d love to hear from you!

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer. We are committed to providing equal employment opportunity for all people and place great value in both diversity and inclusiveness. All qualified applicants will be considered for employment without regard to their, or any other person's, perceived or actual race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship, age, physical or mental disability, medical condition, family care status, or any other basis protected by law. We are an AA/Veterans/Disabled Employer. Cloudflare provides reasonable accommodations to qualified individuals

XML job scraping automation by YubHub

At Cloudflare, we are on a mission to help build a better Internet. Today, the company runs one of the world's largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks.

We're not looking for people who wait for a polished roadmap; we're looking for the builders who see the cracks in the Internet that everyone else has simply learned to live with. We value candidates who have the instinct to spot a 'normalized' problem and the AI-native curiosity to create a solution using the latest tools.

Our culture is built on iteration, leveraging AI to ship faster today to make it better tomorrow, while ensuring that every improvement, no matter how small, is shared across the team to lift everyone up.

If you're the type of person who values curiosity over bureaucracy, and that AI is a partner in solving tough problems to keep the Internet moving forward, you'll fit right in.

Note: This role is based in Lisbon.

About the team

The Pre-Sales Solutions Engineering organization is responsible for the technical sale of the Cloudflare solution portfolio, ensuring maximum business value, fit-for-purpose solution design and an adoption roadmap for our customers. As a Solutions Engineer, you are the technical customer advocate within Cloudflare. To aid your customers, you will work closely with every team at Cloudflare, from Sales and Product to Engineering and Customer Success.

Your goal should drive you through the entire organization as you seek out and create solutions for your customer's needs.

Virtual Solution Engineers (VSE) are a specialized part of this team, engaging directly with Small and Medium Business (SMB) customers across the Europe, Middle East and Africa (EMEA) region. They deliver product demonstrations, conduct discovery sessions, build technical alignment, and ensure customers understand how Cloudflare can solve their challenges at scale.

VSEs work primarily through digital channels, collaborating closely with Account Executives (AE) across multiple markets to engage with new prospects and help existing customers move forward in their journey with Cloudflare.

Ultimately, we're committed to accelerating sales cycles and increasing win rates while increasing productivity and efficiency, through standardization and automation.

Who are we looking for?

Our Virtual Solution Engineers come from a wide range of backgrounds. We're serious about building a diverse team. When hiring we look for experience combined with genuine curiosity for our technology and ambition to be as diligent and helpful as possible in supporting our customers and partners to achieve their goals.

The range of products and solutions offered by Cloudflare is broad so that we are able to meet our lofty goal of helping to build a better Internet. A broad knowledge of Internet performance, networking and security technology is required.

The curiosity to maintain and develop new knowledge is essential to keeping up with the high rate of product innovation at Cloudflare.

Ultimately, you are passionate about technology and have the ability to explain complex technical concepts in easy-to-understand terms. You are naturally curious, and an avid builder who is not afraid to be hands on.

Role Responsibilities

Connecting with multiple stakeholders within Cloudflare and utilizing a variety of tools, your role will be to support colleagues, customers and partners throughout the sales process by:

• Performing research and analysis on current and prospective customers' business and product usage;

• Leading technical discovery to understand customer requirements and challenges;

• Building and delivering product demonstrations to prospective customers;

• Owning technical validation activities such as Proof of Concepts, Request for Proposals and Solution Design;

• Translating complex technical capabilities into clear outcome-driven solutions.

• Staying on top of Cloudflare's new products, Internet technologies, and the competitive landscape.

What Makes This Role Exciting

• Regional Impact: You'll work with a diverse range of customers across EMEA, adapting to different markets, industries, and digital maturity levels;

• Breadth of technology: You'll cover Cloudflare's full platform: Application Services, Networking, and Developer Platform;

• Ownership: Build technical confidence throughout the sales cycle;

• Collaboration: You'll work hand-in-hand with teams such as Sales, Solutions Engineering, Marketing, Product, and Customer Success to help new audiences discover Cloudflare and to guide customers through evaluation and adoption;

• Innovation and scale: You'll contribute to campaigns, digital events, and scalable technical content that expand Cloudflare's reach and help more organizations benefit from our platform.

Examples of desirable skills, knowledge, and experience:

• Graduates of technical, computer science, engineering or other relevant degrees;

• 1-5 years of professional experience, ideally in technical presales, solutions engineering, consulting, or related roles;

• Strong knowledge of Internet fundamentals (HTTP/S, DNS, TLS, networking, APIs).

In other words, a solid understanding of 'how the Internet works';

• Programming and application development knowledge. Python, JavaScript, Bash experience is preferred.

• Excellent communication skills and the ability to present complex concepts clearly and confidently in front of an audience.

• Comfortable working across multiple markets and time zones in the EMEA region.

• Fluency (written & spoken) in English AND Arabic

Bonus!

• Previous experience in a customer-facing consultative or support role.

• Understanding of how customers make buying decisions and how to explain Return On Investment.

• Knowledge of security products such as Bot Management and Web Application Firewalls (WAF).

• Exposure to emerging technical landscape trends, e.g. cloud security platforms, SASE and Zero Trust.

• Hands-on knowledge of cloud providers (e.g. AWS, Azure, GCP) and modern app architectures (serverless, containers, microservices).

• Understanding of common application security risks (e.g., CSRF, XSS, SQLi) and mitigation strategies.

• Experience with regulatory or compliance frameworks (SOC-2, PCI DSS, HIPAA, GDPR).

• Track record of building reusable assets; demo environments, reference architectures, or presales tooling.

What Makes Cloudflare Special?

We're not just a highly ambitious, large-scale technology company. We're a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare's enterprise customers--at no cost.

Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project, we've provided services to more than 425 local government entities.

XML job scraping automation by YubHub

Key responsibilities include:

• Performing hands-on vulnerability triage and risk assessment using team-defined standards and playbooks
• Tracking remediation progress with owner teams, escalating blockers, and ensuring clean issue closure
• Supporting automated triage workflows by validating outputs and improving signal quality
• Contributing to automated remediation campaigns (e.g., EOL cleanup, vulnerable software upgrades, and fix verification)
• Supporting zero-day and embargo response by helping inventory affected assets and tracking owner-team deployment status
• Participating in incident investigations by gathering technical evidence and supporting impact analysis
• Participating in on-call rotation for critical vulnerability events
• Maintaining high-quality documentation, runbooks, and operational updates

The ideal candidate will have 3+ years of relevant experience in vulnerability management, security operations, application security, or related security engineering. Key skills include a strong understanding of vulnerability assessment fundamentals, hands-on experience with vulnerability management platforms, proficiency in scripting/automation for workflow support, and familiarity with cloud security concepts.

In addition to a competitive salary, we offer a variety of benefits to support your needs, including medical, dental, and vision insurance, 100% paid for by CoreWeave, company-paid life insurance, and flexible PTO.

XML job scraping automation by YubHub

dbt Labs is the pioneer of analytics engineering, helping data teams transform raw data into reliable, actionable insights. As of February 2025, we’ve grown from an open source project into the leading analytics engineering platform, now used by over 90,000 teams every week, driving data transformations and AI use cases.

We’re backed by top-tier investors including Andreessen Horowitz, Sequoia Capital, and Altimeter. At our core, we believe in empowering data practitioners:

• Reliable, high-quality data is the fuel that propels AI-powered data engineering.
• AI is changing data work, fast. dbt’s data control plane keeps data engineers ahead of that curve.
• We empower engineers to deliver reliable, governed data faster, cheaper, and at scale.

About the Security Team

The mission of the Security Engineering team at dbt Labs is to provide clear, opinionated security guidance and scalable, secure-by-default offerings to engineers for the purpose of securing software development and enabling pragmatic risk decisions at dbt.

Responsibilities

As a Senior Security Operations Engineer on the Detection & Response team, you will strengthen and maintain the company's security posture throughout the threat detection lifecycle from telemetry collection and continuous monitoring through threat detection, incident response, and security event management. You will serve as a subject matter expert for security operations across the dbt Labs' teams and technology infrastructure, including multi-cloud production environments, identity, endpoints, and SaaS technologies.

Key Responsibilities

• Participate in a 24/7 on-call rotation providing coverage for active security incidents, investigations, and security events across our global infrastructure.
• Lead investigation and remediation of security incidents, coordinating cross-functional response efforts to minimize impact and recovery time.
• Play a major role in bootstrapping an end to end D&R alert and investigation pipeline.
• Triage and investigate security alerts from detection tools including Wiz Defend, Crowdstrike, and cloud security platforms to identify genuine threats and reduce false positives.
• Develop and maintain detection rules, runbooks, and response procedures mapped to the company's threat model.
• Automate alert triage workflows and improve mean time to detection and response through tooling and process enhancements, including leveraging AI enrichment and processing.
• Collaborate with Infrastructure and Application Security teams to implement secure-by-design principles and remediate identified security issues.
• Conduct security event analysis to identify policy violations, misconfigurations, and potential attack vectors before they become incidents.
• Partner with our Enterprise Security & Technology team to enhance endpoint security controls and monitoring across endpoints (MacOS laptops & some Windows and Linux-based development environments).
• Design and facilitate tabletop exercises and game days to test detection, response, recovery, and remediation capabilities.
• Contribute to the maturation of the security incident response program through documentation, training, and process improvements.
• Mentor junior security engineers and cross-functional team members on incident handling best practices.

Requirements

• Demonstrated ability to excel in high-pressure situations; we need someone who can make sound decisions during active security incidents and can calmly serve as incident commander with confidence.

Qualifications

• Have 8+ years of professional experience in security-related domains, including at least 4 years in security operations, incident response, threat hunting, or threat detection roles.
• Have demonstrable experience leading security incident investigations and coordinating cross-team response efforts.

What We Offer

• Competitive compensation packages commensurate with experience, including salary, equity, and where applicable, performance-based pay.
• Opportunity to work with a leading analytics engineering platform and contribute to the growth and success of the company.
• Collaborative and dynamic work environment with a team of experienced professionals.
• Opportunities for professional growth and development.

How to Apply

If you are a motivated and experienced security professional looking for a new challenge, please submit your resume and cover letter to [insert contact information]. We look forward to hearing from you!

XML job scraping automation by YubHub

The ideal candidate has a background in electrical or software engineering, with a focus on platform security, or has pivoted to a product or application security role. They will be able to conduct complex security architecture reviews, research and mitigate exploits against hardware and software, and work with other engineering teams to build resiliency into our products.

As a product security engineer, you will:

• Own the development and maturation of security features for Anduril's products
• Collaborate and build solutions with engineering teams to meet and exceed industry-standard security goals
• Collaborate with security assessment teams to assess Anduril's products and integrated components to uncover potential weaknesses
• Collaborate with manufacturing and operations teams to develop secure handling and operational processes
• Engage with teams to remediate uncovered weaknesses in designs, implementations, integrations, and processes

Required qualifications include:

• Experience with one or more programming languages (e.g. C/C++, Golang, Rust, Python)
• Experience assessing security of firmware, applications, network, IoT, or embedded systems
• Experience developing features for and improving security of firmware, applications, network, or embedded systems
• Experience building, testing, and delivering production-ready systems, especially for embedded and/or Linux systems
• Familiarity with anti-tamper and reverse engineering mechanisms
• Strong and professional communication skills (written and verbal)
• Strong understanding of the 'why' behind product, systems, and security design
• A sincere commitment to a positive, inclusive, and collaborative culture
• Must be eligible to obtain and maintain a U.S. TS clearance

Preferred qualifications include:

• Excels at the above-listed requirements
• Possesses and able to maintain an active U.S. TS Security clearance with SCI and/or SAP eligibility
• Familiarity with security architectures of embedded, aerospace, or cyber-physical systems
• Fluency in modern USG cyber methodologies, including Cyber Survivability guidance and related policy (JSIG, ICD 503, CSEIG, SSECG, NIST SP 800-160, Cyber T&E Guidebook, CMMC, etc.)
• Experience with programmable logic devices and their development tools
• Regularly builds, tests, and delivers production-ready systems, especially for embedded and/or Linux systems

US Salary Range: $156,000-$253,000 USD

XML job scraping automation by YubHub

You will work closely with engineering teams to integrate security into the software development lifecycle, build secure-by-default patterns, and ensure that products are resilient against modern threats.

This role combines hands-on technical work, security engineering, and collaboration with developers to guide secure design and remediation.

You will help implement security controls, perform assessments, and contribute to the continuous improvement of our security program.

Key responsibilities include:

• Integrating application security best practices into the development lifecycle by partnering with engineering teams and enabling automated security checks within CI/CD pipelines.

• Supporting and maintaining Application Security based tooling,including SAST, DAST, SCA, and secrets scanning,and helping developers interpret and remediate findings.

• Conducting secure code reviews, threat modeling sessions, and application architecture assessments to identify risks and propose mitigation strategies.

• Developing and maintaining security automation, guardrails, and reusable components.

• Assisting in defining and improving secure coding standards and application hardening practices.

• Supporting monitoring and detection efforts by helping improve application-level logging, telemetry, and alerting.

• Assisting in incident response activities related to application vulnerabilities, including verification, triage, and remediation support.

• Staying current on emerging threats, vulnerabilities, and best practices in application and product security.

• Contributing to documentation including security requirements, guidelines, and remediation playbooks.

• Participating in internal security reviews, compliance-driven assessments, and architectural walkthroughs.

• Developing and helping maintain existing application security tools, pipelines, and workflows.

• Collaborating with engineering and product teams to ensure secure deployment and continuous improvement of applications.

Requirements include:

• A bachelor’s degree in Computer Science, Engineering, MIS, or equivalent practical experience.

• 2–5 years of experience in application security, product security, software engineering with a security focus, or a related technical role.

• Strong understanding of application vulnerabilities and mitigation strategies (OWASP Top 10, CWE).

• Experience with CI/CD tooling, Git-based workflows, and modern development practices.

• Familiarity with cloud security concepts and hands-on experience with at least one cloud platform (AWS, Azure, or GCP).

• Experience with one or more programming languages such as Python, Go, Java, JavaScript/Typescript, or Ruby. (Java and Python preferred.)

• Experience with application security tools such as OWASP ZAP, Burp Suite, SAST/DAST tools, SCA, or dependency scanning.

• Knowledge of secure coding principles, API security, authentication, authorization, and secrets management.

• Strong problem-solving skills and the ability to communicate technical issues clearly to developers and cross-functional stakeholders.

• Understanding of agile development processes and working within engineering teams.

• Ability to Travel: This role will require 25% in-person travel for purposes including but not limited to new hire onboarding, team and department offsites, customer engagements, and other company events.

This role is based in our Boston office and follows a hybrid model, with an expectation of being onsite 1-2 days per week.

XML job scraping automation by YubHub

You'll conduct hands-on penetration testing, lead red team engagements, and collaborate with blue team counterparts to validate and improve detection and response capabilities. Your work will directly influence how Stripe builds, ships, and secures financial infrastructure used by millions of businesses worldwide.

Responsibilities:

Conduct comprehensive penetration tests across web applications, APIs, cloud environments (AWS/GCP/Azure), mobile applications, and internal infrastructure.

Plan and execute red team engagements that emulate the TTPs of cyber and criminal threat actors targeting financial services, including initial access, lateral movement, persistence, and data exfiltration scenarios.

Perform assumed-breach and objective-based assessments to test detection and response capabilities in coordination with defensive teams.

Partner with detection engineering, threat intelligence, and incident response teams to validate security controls, identify coverage gaps, and improve detection fidelity.

Contribute adversary tradecraft insights to inform detection rule development, threat hunting hypotheses, and incident response playbooks.

Support incident investigations by providing offensive expertise, log analysis, and root cause analysis when required.

Design, develop, and maintain custom offensive tools, scripts, and automation frameworks to enhance assessment efficiency and coverage.

Build internal platforms and workflows that enable scalable, repeatable offensive operations.

Contribute to internal security tooling repositories and champion engineering best practices within the team.

Automate repetitive testing tasks, payload generation, and reporting workflows using modern development practices.

Produce clear, actionable reports that communicate technical findings, business risk, and remediation guidance to both technical and non-technical stakeholders.

Act as a subject-matter expert and primary point of contact for stakeholder teams engaged in offensive security programs and Stripe-wide security initiatives.

Lead offensive security projects end-to-end, mentor junior team members, and foster a culture of continuous learning and knowledge sharing.

Stay current with emerging threats, vulnerabilities, and attack techniques; share research internally and contribute to the broader security community.

XML job scraping automation by YubHub

Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence.

This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

Staff Security Engineer

Okta is The World’s Identity Company. We free everyone to safely use any technology, anywhere, on any device or app. Our flexible and neutral products, Okta Platform and Auth0 Platform, provide secure access, authentication, and automation, placing identity at the core of business security and growth.

At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences.

Join our team! We’re building a world where Identity belongs to you.

Responsibilities

The Staff Security Engineer is a key role for strengthening the organisation's security posture. You'll be responsible for performing security assessments of third-party integrations and connected apps, with a focus on mitigating API-related security risks. This position is vital for ensuring a 'secure-by-design' approach for critical systems within the organisation.

What You Will Do

• Lead Technical Security Reviews: Perform in-depth security reviews and threat modelling for complex enterprise applications and third-party integrations.

• Operationalize AI for Security: Take the lead in deploying and managing AI for Security use cases, such as integration security reviews, to automate and scale security operations.

• Risk Analysis & Documentation: Analyse and document API permissions and risk levels for major integrations (e.g., Salesforce, Slack, Google) to ensure they meet internal standards.

• Develop Workflow Processes: Collaborate with stakeholders to design and implement repeatable security review workflows, such as the Salesforce API Integration Review.

• Vulnerability & Control Gap Mitigation: Identify potential vulnerabilities and security control gaps in connected apps and recommend technical mitigation strategies to stakeholders.

• Report & Visualize Posture: Contribute to and maintain metrics and dashboards that demonstrate the organisation's overall security posture for leadership.

What You Bring

• Deep Technical Expertise: Proven experience in information security, specifically within application and enterprise security domains.

• API & Integration Specialist: Strong background in assessing and mitigating risks associated with third-party APIs and connected application ecosystems.

• Advanced Security Principles: Understanding of 'secure-by-design' principles and the 'least privilege' model.

• Practical Threat Modelling: Hands-on experience identifying attack vectors and conducting risk assessments for complex systems.

• Tooling & AI Proficiency: Experience working with security platforms for analysing application permissions and an interest or background in applying AI to streamline security tasks.

• Collaborative Influencer: Exceptional communication skills with a track record of aligning multiple teams toward shared security goals.

• Education: A Bachelor's degree in Computer Science, information security, or a related field.

Benefits

In addition to the annual base salary range for this position, Okta offers equity (where applicable), bonus, and benefits, including health, dental, and vision insurance, RRSP with a match, healthcare spending, telemedicine, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies.

XML job scraping automation by YubHub

We are looking for a Senior Software Engineer to join our Core Identity team. As a Senior Software Engineer, you will design, build, and operate the critical services that form the backbone of our identity platform.

Key Responsibilities:

• Join a fast-paced and agile team spread remotely across Central Europe and US or Canada EST.
• Build innovative features and standards that extend the capabilities of Auth0’s platform to help organizations securely innovate around the world.
• Take ownership of the technical quality, security, reliability, and scalability of our systems.
• Work in a highly collaborative and cross-functional environment, working with talented engineers and partners across Product, Security, Design, Architecture and QA to deliver features that delight our customers.

Requirements:

• 4+ years of professional software development experience, or equivalent.
• Proficiency in building backend services with Node.js (JavaScript or TypeScript).
• Experience designing, building, and operating distributed systems in a cloud environment (e.g., AWS, Azure).
• A strong commitment to quality, with experience in various testing strategies (e.g., unit, integration, end-to-end).
• A product-oriented mindset, with the ability to understand customer needs and work collaboratively to find effective solutions.

Nice to have:

• Fluent at using AI tools as part of the Product Development Life Cycle (PDLC).
• Experience in the identity and access management (IAM) domain.
• Knowledge of security engineering principles and application security best practices.
• Experience working effectively in a distributed, remote-first team.

The Okta Experience

• Supporting Your Well-Being
• Driving Social Impact
• Developing Talent and Fostering Connection + Community

Okta is an Equal Opportunity Employer.

XML job scraping automation by YubHub

This is a rare opportunity to architect and build distributed systems that will fundamentally change how large organisations approach application security and developer security workflows.

As the SRM Stage Lead, you'll be responsible for transforming our engineering culture toward high-performance distributed systems while delivering an exceptional user experience for both Application Security professionals and Developers.

You'll own the technical strategy for processing, analysing, and remediating vulnerabilities across massive codebases and complex enterprise environments.

Technical Leadership & Architecture

• Design distributed systems architecture capable of processing vulnerability data from thousands of repositories, millions of commits, and complex dependency graphs in real-time
• Drive storage system decisions for multi-petabyte security datasets, balancing query performance, cost efficiency, and data retention requirements across time-series, graph, and document storage paradigms
• Architect scalable analysis pipelines that can ingest vulnerability feeds, correlate findings across multiple security tools, and provide actionable intelligence to both security teams and individual developers
• Lead the technical evolution from monolithic security scanning to microservices-based, event-driven vulnerability management systems

Engineering Culture Transformation

• Champion high-performance systems thinking throughout the team, establishing patterns for horizontal scaling, efficient resource utilisation, and fault-tolerant distributed computing
• Establish technical standards for system observability, chaos engineering, and performance optimisation in security-critical systems
• Mentor and develop senior engineers in distributed systems design, database optimisation, and large-scale system architecture
• Drive architectural decision records (ADRs) for major technical decisions, particularly around data storage, processing frameworks, and system boundaries

Product & User Experience Excellence

• Own the end-to-end user journey (in partnership with PM) for both AppSec professionals managing enterprise-wide risk and developers receiving actionable security feedback in their workflow
• Design APIs and interfaces that abstract complexity while providing the power and flexibility that security professionals demand
• Collaborate with Product Management, UX and Product Design to translate complex technical capabilities into intuitive user experiences
• Establish feedback loops with large enterprise customers to ensure our technical solutions scale with their organisational complexity

Strategic Technical Execution

• Evaluate and integrate cutting-edge technologies in areas such as graph databases, stream processing, machine learning inference at scale, and distributed caching, in collaboration with GitLab’s Infrastructure, Data and AI teams
• Own the technical roadmap for vulnerability correlation, risk scoring, and automated remediation workflows
• Drive partnerships with other GitLab stages to ensure seamless integration across the DevSecOps platform
• Lead incident response for availability and performance issues in customer-facing security systems

What You’ll Bring

• 10+ years of software engineering experience with 5+ years leading distributed systems at scale (>100M daily operations)
• Deep expertise in designing and operating high-throughput, low-latency distributed systems with complex data models
• Proven experience with polyglot persistence strategies, including relational databases (PostgreSQL, Cloud Spanner), time-series databases, graph databases, and distributed key-value stores
• Strong background in stream processing frameworks (Apache Kafka, Apache Flink, or similar) and event-driven architectures
• Hands-on experience with container orchestration (Kubernetes) and cloud-native observability stacks
• Security domain knowledge with understanding of vulnerability assessment, static analysis, dependency scanning, or application security testing

Leadership & Communication

• Proven track record of leading and growing high-performing engineering teams (40+ engineers)
• Experience transforming engineering culture and establishing technical excellence standards in fast-growing organisations
• Strong technical communication skills with ability to present complex architectural decisions to executive stakeholders
• Collaborative leadership style with experience working across multiple engineering teams and product stakeholders

Problem-Solving & Innovation

• Systems thinking approach to complex technical problems with demonstrated ability to make appropriate trade-offs between performance, scalability, and maintainability
• Experience with A/B testing frameworks and data-driven decision making in technical contexts
• Track record of successfully delivering large-scale technical migrations or architectural transformations
• Startup or high-growth company experience with ability to balance technical debt with rapid feature delivery

About the team

Security Risk Management sits at the heart of modern DevSecOps. The systems you build will directly impact how Fortune 500 companies protect their applications and how millions of developers integrate security into their daily workflow.

You'll have the opportunity to define the future of application security tooling while working with some of the most challenging distributed systems problems in the industry.

The Technical Challenge

You'll be solving some of the most interesting distributed systems problems in the security space:

• Scale: Processing vulnerability data for organisations with 100,000+ repositories and millions of developers
• Performance: Sub-second query response times for complex security analytics across massive datasets
• Reliability: 99.95%+ uptime SLAs for security-critical workflows that can't afford downtime
• Complexity: Correlating findings across 20+ different security tools while maintaining data lineage and audit trails
• User Experience: Making complex security data accessible to both security experts and developers with varying security expertise

Salary

The base salary range for this role’s listed level is currently for residents of the United States.

XML job scraping automation by YubHub

This role combines technical depth, strategic thinking, and the autonomy to design workflows that will protect infrastructure driving the future of AI.

Key Responsibilities:

• Build and scale AI-powered triage workflows: evaluate tools (LLM integration, TINES orchestration), architect solutions, and deploy to production
• Drive intelligent, risk-based vulnerability prioritization while simultaneously training AI models,your assessments become the foundation for automation
• Influence automation priorities: recommend which areas of the vulnerability pipeline would most benefit from automation to improve team efficiency
• Design and implement automated detection-to-ticket pipelines: build workflows that generate vulnerability detections, test them, scale across the environment, and auto-create Jira tickets
• Execute remediation campaigns: build automated workflows for EOL product removal, vulnerable software upgrades, and OS migrations at scale
• Manage embargoed vendor disclosures from hardware partners, including embargo verification and zero-day response coordination
• Lead security incident investigations related to high-profile vulnerabilities, coordinating cross-functional response and impact assessment
• Participate in on-call rotation for rapid-response vulnerability analysis during active zero-day events or critical security incidents
• Partner with IT, Infrastructure, and Engineering teams to drive remediation efforts, enforce SLAs, and escalate blockers strategically
• Write daily operations reports documenting vulnerability trends, remediation velocity, and emerging threats for security leadership
• Drive process improvements and workflow automation to improve operational efficiency and reduce manual toil

Requirements:

• 7+ years of relevant experience with demonstrated impact in vulnerability management, application security, platform security, or cloud security engineering
• Bachelor’s or Master’s degree in Computer Science, Computer Engineering, Electrical Engineering, or equivalent practical experience
• Proven hands-on experience building security automation (SOAR workflows, detection pipelines, or vulnerability prioritization frameworks)
• Deep subject matter expertise with vulnerability management best practices: CVSS, EPSS, CISA KEV, exploit intelligence, and compensating controls
• Strong development background with proficiency in Python, Go, or similar languages for building production-grade security tools
• Experience with modern vulnerability management tooling such as Wiz, Semgrep, Rapid7, or similar platforms
• Demonstrated ability to partner with cross-functional teams (IT, SRE, Engineering) to drive remediation without formal authority
• Strong familiarity with common security vulnerabilities and the ability to judge their severity and business impact

Preferred Qualifications:

• Practical experience building AI/ML-powered security workflows (LLM integration, automated triage, human-in-the-loop validation)
• Experience managing hardware security vulnerabilities (GPU/DPU firmware, BMC/IPMI, specialized compute environments)
• Production experience with security automation platforms such as TINES, Splunk SOAR, or serverless frameworks (AWS Lambda)
• Strong DevOps, DevSecOps, or SRE background with experience in AWS/GCP/Azure cloud services and Infrastructure as Code (Terraform, CloudFormation)
• Deep understanding of container security and Kubernetes (image scanning, admission control, runtime protection, supply chain security)
• Experience supporting customer audits (SOC 2, ISO 27001, FedRAMP) with vulnerability evidence and control validation
• Experience integrating vulnerability management into modern CI/CD pipelines with a 'shift-left' mentality

What We Offer:

The base salary range for this role is $165,000 to $242,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location. We strive for both market alignment and internal equity when determining compensation. In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

The range we’ve posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and location.

XML job scraping automation by YubHub

We are looking for a Senior Software Engineer to join our Tenant Protection team. As a member of this team, you will be responsible for designing and building features using technologies such as Node.js (JavaScript/Typescript), AWS, Azure, MongoDB, PostgreSQL, DynamoDB and Kubernetes.

Key Responsibilities:

• Design and build features using technologies such as Node.js (JavaScript/Typescript), AWS, Azure, MongoDB, PostgreSQL, DynamoDB and Kubernetes
• Lead the technical breakdown of complex requirements into clear, modular, and actionable engineering tasks, setting the standard for project clarity and velocity.
• Drive and own the engineering estimation process for medium to large-sized initiatives, effectively managing risk and communicating technical trade-offs, timelines, and dependencies to engineering and product leadership.
• Act as a key technical collaborator and influencer with internal stakeholders (e.g., Product Management, Security, Infrastructure), proactively aligning technical roadmaps and advocating for architectural changes that support long-term product vision.
• Collaborate with industry-leading experts to implement the cutting-edge of Identity Protocols and Open Standards such as OpenID Connect, OAuth and SAML
• Maintain and operate services at a large scale
• Participate in scheduled on-call rotations
• Mentor junior and mid-level engineers, providing guidance on system design, code quality, testing practices, and career development.

Requirements:

• Practical experience using Node.js (JavaScript or Typescript) or a similar language
• Experience working on systems that are highly reliable, maintainable and scalable.
• Thorough understanding of application security and cloud security best practices
• A systematic problem-solving approach, coupled with strong communication skills and a sense of ownership and drive
• A track record of influencing engineering strategy and driving complex, multi-quarter projects to completion across organisational boundaries.
• Demonstrated ability to coach and grow other engineers in areas of system architecture, security, and operational rigour.
• Experience with cloud environments (AWS and Azure preferred)
• The ability to communicate your ideas and collaborate with other team members effectively in a remote working environment.
• Experience designing, analysing, and troubleshooting large-scale distributed systems
• Enthusiasm to work with and learn more about Identity Protocols such as OAuth, OIDC and SAML

Preferred Qualifications:

• Existing knowledge of Identity Protocols such as OAuth, OIDC and SAML
• Existing knowledge of security engineering and application security
• Proven experience and understanding of architecture principles across infrastructure platforms, security, data, integration, and application layers

XML job scraping automation by YubHub

Auth0 secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era.

We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

About Okta

Okta is the World’s Identity Company. We enable everyone to safely use any technology,anywhere, on any device or app. The Okta Platform and Auth0 Platform enable secure and flexible access, authentication, and automation, transforming people's experience in the digital world and putting Identity at the heart of business security and growth.

Job Description

As a member of the Okta Japan SE team, the Senior Solutions Engineer for the Auth0 Platform will serve as a key technical and business advisor to customers and partners. Leveraging a passion for technology and deep expertise, you will plan, propose, and demonstrate how Auth0 solutions solve critical business challenges for stakeholders ranging from field practitioners to C-level executives throughout the sales cycle. Consequently, you will directly contribute to achieving quarterly and annual sales targets in Japan.

Responsibilities

• Collaborate with the sales team and related departments to act as an authority on technology and the Identity Security domain, ensuring customers fully understand the value and potential of the Auth0 Platform.

• Communicate the value of implementing Auth0 solutions to customers in various positions (practitioners, managers, C-level) and earn their trust.

• Serve as a primary technical resource, confidently responding to product functionality questions and detailed technical inquiries from customers, partners, and internal Auth0 teams.

• Drive knowledge sharing by contributing to and utilizing best practices and reusable assets, proactively elevating the expertise and efficiency of the entire SE team.

• Support customer Proof of Concepts (PoCs) to technically demonstrate that implementing Auth0’s identity solutions will deliver value to the customer.

• Participate as a presenter and demonstrator in online or offline events aimed at evangelizing Auth0.

• Lead less experienced sales representatives and SEs, contributing to constructive performance improvement of the entire team through appropriate feedback.

Requirements

• Experience in customer-facing roles as a Pre-sales SE or Technical Sales.

• Ability to build and maintain strong relationships of trust with customer technical staff and leaders throughout the sales process.

• Native-level Japanese proficiency with excellent communication and reading comprehension skills.

• Ability to ask questions and express opinions in English via email, Slack, or one-on-one conversations.

• Joy in spreading industry-leading solutions that benefit society.

• Enjoyment in collaborating with Okta’s expanding partner community in Japan and working with Pre-sales Engineers around the world.

• A desire to become a top-tier Solutions Engineer by refining pre-sales skills, not just product and authentication technology knowledge.

And extra credit if you have experience in any of the following!

• Pre-sales experience in an organisation using sales methodologies such as SPIN, Solution Selling, or MEDDICC.

• Experience with Identity & Access Management (IAM), Single Sign-On (SSO), Security, or API-based solutions.

• Experience using at least one standard network security protocol (OAuth 2.0, OpenID Connect, SAML, LDAP, etc.).

• Knowledge/Experience with Cloud Platforms (AWS, GCP, Azure) and tools such as Kubernetes, Terraform, or Serverless environments.

• Hands-on development experience in one or more of the following areas: Web Development (JavaScript, HTML, Front-end frameworks), Mobile Development (iOS, Android), Backend Development (Java, C#, Node.js, Python, PHP, Ruby), or IP-based real-time communications.

• Knowledge of modern technologies such as Generative AI, Intelligent Agents, and Conversational Bots.

• Understanding of core application security (Password Hashing, SSL/TLS, EAR, XSS, XSRF).

• Experience speaking at technical conferences/webinars or writing technical blogs.

• Experience working as a software developer.

• Experience communicating and working with overseas engineers in English.

What you can expect as an Okta employee

• Benefits

• Social Impact (Okta for Good)

• Okta's People, Connections, and Community

Okta builds a dynamic work environment by providing the best tools, technology, and benefits so that employees can work productively in an environment that suits their needs. Each organisation has a unique way of working with flexibility and mobility so that every employee can be their most creative and successful self, regardless of where they live.

Find your place at Okta today!

XML job scraping automation by YubHub

Key responsibilities include:

• Identifying and mapping customer initiatives and business problems to Cloudflare solutions
• Building relationships and technical champions within customer accounts
• Developing and presenting customer presentations at every Enterprise Customer's organisation level
• Leading demo and proof-of-concept activities for Cloudflare prospects and customers
• Demonstrating expertise of Cloudflare with peers through creation of professional content, including white papers, blog posts and other knowledge sharing activities
• Representing and evangelising Cloudflare externally at Developer, Community, Technology, Cybersecurity and Industry focused events with thought leadership and expertise

Basic requirements include:

• Fluency in a Nordic language
• Previous experience as a Solutions Engineer or other customer-facing technical role with CDN, Security, Networking or SaaS
• Solid communication, written and presentation skills
• Ability to work on several projects and activities concurrently
• Highly driven individuals that are curious, team players and work with a sense of urgency
• Bachelor's Degree or equivalent in relevant work experience

Desirable skills include:

• Fundamental understanding of customer network and/or application architectures
• Detailed understanding of workflow from user to application including hybrid architectures with Azure, AWS, GCP
• Understanding, knowledge or experience of application and/or network security
• Understanding, knowledge or experiences with SaaS application environments
• Understanding, knowledge or experience with VPN and remote access challenges
• Understanding, knowledge or experience with SIEM and log analytics platforms
• Client OS fundamentals and software distribution

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorisation to receive software or technology controlled under these U.S. export laws without sponsorship for an export licence.

XML job scraping automation by YubHub

Your responsibilities will include:

• Design and build features using technologies such as Node.js (JavaScript/Typescript), AWS, Azure, MongoDB, PostgreSQL, DynamoDB and Kubernetes
• Lead the technical breakdown of highly complex, ambiguous requirements into clear, modular, and actionable engineering tasks, setting the standard for project clarity and velocity
• Drive and own the engineering estimation process for large-scale initiatives, effectively managing risk and communicating technical trade-offs, timelines, and dependencies to engineering and product leadership
• Drive cross-functional technical projects with other Auth0 and Okta engineering teams, ensuring alignment on service dependencies, security standards, and operational best practices
• Act as a key technical collaborator and influencer with internal stakeholders (e.g., Product Management, Security, Infrastructure), proactively aligning technical roadmaps and advocating for architectural changes that support long-term product vision
• Collaborate with industry-leading experts to implement the cutting-edge of Identity Protocols and Open Standards such as OpenID Connect, OAuth and SAML
• Maintain and operate services at a high scale
• Participate in scheduled on-call rotations
• Mentor senior and mid-level engineers, providing guidance on system design, code quality, testing practices, and career development. Foster a culture of technical excellence and collaborative ownership.

To be successful in this role, you will need to have:

• Practical experience using Node.js (JavaScript or Typescript) or a similar language
• Experience working on systems that are highly reliable, maintainable and scalable
• Thorough understanding of application security and cloud security best practices
• A systematic problem-solving approach, coupled with strong communication skills and a sense of ownership and drive
• A track record of influencing engineering strategy and driving complex, multi-quarter projects to completion across organisational boundaries
• Demonstrated ability to coach and grow other engineers in areas of system architecture, security, and operational rigour
• Experience with cloud environments (AWS and Azure preferred)
• The ability to communicate your ideas and collaborate with other team members effectively in a remote working environment
• Experience designing, analysing, and troubleshooting large-scale distributed systems
• Enthusiasm to work with and learn more about Identity Protocols such as OAuth, OIDC and SAML

In addition to your technical skills, you will also need to have excellent communication and interpersonal skills, as well as the ability to work effectively in a remote team.

XML job scraping automation by YubHub

You will work closely with the Product Manager and Product Designer to define the look, feel, and functionality of new features and review customer feedback. You will also serve as a subject matter expert on all building scalable, reliable, and maintainable distributed systems.

To be successful in this role, you will need to have solid architectural and security knowledge, backed by experience in designing, implementing, and evolving complex distributed systems. You will also need to have worked on projects that required close collaboration with external teams and have experience making those a success.

You will be a good mentor and communicator, able to explain complex concepts simply in person or in a document. You will know that while an engineer can write code, teams collaborate to ship successful products.

You will have solid previous experience with Node.js (JavaScript or Typescript) to build scalable backend services and creating and maintaining public and internal APIs. You will also have built frontend and full-stack apps and know what approach to use when.

You will have a good understanding of SQL databases and know how to debug and optimize table and query structure for performance under load. You will also have experience with Docker and cloud environments (AWS and Azure preferred).

Bonus points for experience with Kubernetes, knowledge of authentication protocols such as OAuth2, OIDC, SAML, understanding of event-driven architectures, especially Apache Kafka, understanding and experience of DevOps culture, and knowledge of security engineering and application security.

XML job scraping automation by YubHub

We are looking for a Staff Software Engineer, Security to join our Security Engineering group. As a Staff Software Engineer, Security, you will act as a liaison between the Security org and the engineering org to build technical leverage and influence the security roadmap and direction.

Responsibilities ---------------

• Act as a liaison between the engineering and security org to develop innovative requirements for the security roadmap.
• Evangelize security best practices across the engineering org.
• Research, design, implement and own security oriented frameworks and features with the common goal of protecting Okta’s customers.
• Routinely participate in cross-vertical code reviews with emphasis on Security.
• Break down complex problems into sub-tasks while prototyping rapidly and iteratively contributing to security initiatives using agile practices.
• Coach and mentor junior engineers in the team.

Preferred Qualification and Abilities -----------------------------------

• 7+ years of development experience in designing and implementing software systems in Java, building highly reliable and mission-critical software.
• 3+ years of work experience in designing and implementing security solutions for applications and distributed systems.
• Work experience and excellent understanding in mitigating OWASP Top 10 attacks on applications, Application Security, Cryptography, Authentication, Authorization using Role-Based and Attribute-Based access controls.
• Strong understanding of concepts such as Test-Driven development, Secure SDLC, Secure code reviews and the ability to identify and mitigate threat vectors and vulnerabilities in code and infrastructure.
• Good understanding and experience in using cloud service providers such as AWS and GCP.
• Developing and maintaining technical documentation such as cookbooks, design and architecture docs.
• Troubleshooting and fixing production issues to ensure reliability, security and performance.
• Work experience in using RDBMS like MySQL, good grasp of concepts such as replication and clustering along with familiarity in data stores such as Redis and Elasticsearch.
• Excellent grasp of software engineering principles coupled with strong written and verbal communication skills.
• B.S or M.S in Computer Science or related fields.

The Okta Experience ------------------ Supporting Your Well-Being Driving Social Impact Developing Talent and Fostering Connection + Community

XML job scraping automation by YubHub

The ideal candidate will have a proven track record in software/technology sales, consulting or customer success. They will have proven experience leading teams, driving software adoption, and building and scaling customer success management practices. They will have experience with software development lifecycle processes and tools as well as agile and/or DevOps practices. They will be knowledgeable with cloud/container technologies (e.g., Kubernetes, Docker), application security (SAST, DAST) and/or cloud deployment models (AWS, GCP, Azure) is a plus. They will have a proven ability to develop strategies, translate them into initiatives and track successful delivery. They will have demonstrated ability to lead managers and successfully manage global, distributed teams across cultures, lines of business, and geographies. They will possess a strong management presence and leadership ability, with communication and interpersonal skills that inspire and motivate leaders and teams. They will demonstrate operational excellence in analytical thinking, process development and improvement, problem-solving, communication, delegation, and planning. They will be able to collaborate across the organization and with external stakeholders. They will have experience successfully working with senior executives (VP/CxO). They will hold strong operational skills that will drive organizational efficiencies and customer satisfaction. They will be comfortable giving and receiving positive and constructive feedback. They will be able to connect technology with measurable business value. They will have strategic thinking about business, products, and technical challenges.

XML job scraping automation by YubHub

You'll focus on major enterprise prospects and customers, guiding them through complex DevSecOps and software delivery transformations across areas like CI/CD automation, secure development, and infrastructure modernisation.

In this role, you'll act as a key connector between customer stakeholders and GitLab's field organisation so GitLab is seen as a trusted, long-term partner before, during, and after the sale.

In your first year, you'll be expected to build and manage a healthy enterprise pipeline, create repeatable sales motions, and drive successful rollouts and adoption that translate into measurable results and long-term expansion.

Responsibilities

• Support GitLab's strategic large prospects and customers as a trusted advisor throughout their DevSecOps journey.

• Drive the full sales cycle in large, complex enterprises, including prospecting, qualifying, developing, and closing new opportunities across your assigned accounts.

• Provide strong account leadership and direction in both the pre-sales and post-sales process to ensure customers realise value from GitLab's AI-powered DevSecOps platform.

• Coordinate closely with Solutions Architects, Customer Success, Support, and strategic channel partners to design and execute account strategies that drive adoption, expansion, and retention.

• Develop and execute structured account plans based on customer business needs, including opportunity mapping, stakeholder alignment, and multi-threaded engagement across technical and business teams.

• Ensure successful rollout and ongoing adoption through proactive account management activities, regular business reviews, and clear alignment on customer outcomes.

• Prepare and deliver accurate activity and forecast reports, and contribute to root cause analysis on wins and losses while sharing lessons learned with account managers, marketing, and technical teams.

• Act as the voice of the customer by sharing feedback and product ideas, and use a consultative approach to create proposals, quotes, and presentations that clearly link GitLab's solutions to customer business objectives.

Requirements

• A true desire to see customers achieve meaningful outcomes and long-term value from their investment in GitLab.

• Experience driving complex B2B software sales cycles with large enterprises, ideally in DevSecOps, software development tools, or adjacent SaaS solutions.

• Proven success selling into large, strategic organisations, with the ability to build trusted relationships with C-level and senior stakeholders across business and technical teams.

• Able to provide a high degree of account management and control, working under minimal supervision on complex opportunities while maintaining clear communication and alignment.

• Ability to generate new business and expand existing accounts through consultative, multi-stakeholder sales motions that result in sustainable, long-term partnerships.

• Experience collaborating with strategic channel partners to develop opportunities, co-sell, and support successful customer adoption.

• Excellent negotiation, presentation, and closing skills, with effective written and verbal communication that influences internal and external stakeholders.

• Preferred experience with Git, software development tools, application lifecycle management, or security/application security tools.

• You share our values and work in accordance with them, use GitLab in your daily work, and are able to travel if needed while following GitLab's travel policy.

About the team

The Enterprise Sales team is responsible for driving growth, adoption, and long-term value for GitLab's AI-powered DevSecOps platform with our largest and most strategic customers.

As a Major Account Executive on the AMER Enterprise team, you'll be part of a distributed, all-remote team that works asynchronously across regions and partners closely with GitLab's sales engineering, marketing, and customer success teams.

We value transparency, collaboration, and a consultative approach, and we support one another through shared account planning, regular deal reviews, and knowledge sharing focused on enterprise customers across regulated and large-scale environments.

XML job scraping automation by YubHub

Your expertise will be crucial in building proactive security strategies that align with our business goals and protect the company from an ever-evolving threat landscape. This position demands deep expertise in security principles and a comprehensive understanding of the entire infrastructure stack and IAM systems to design robust, future-ready security solutions.

You will be instrumental in safeguarding our systems' resilience and integrity against ever-evolving cyber threats. You will play a critical role in shaping our security strategy for modern platforms across AWS, Azure, GCP, network infrastructure, storage, and SaaS solutions, help establish a strong least privilege (PoLP) model, providing specialized IAM expertise, and securely supporting SaaS with sensitive information (NHI).

You will also be a key contributor in building our internal strategy for secure AI development. Additionally, you will support the secure integration of SaaS platforms such as Google Workspace, collaboration tools, and GTM systems, maintaining alignment with enterprise security standards.

Close collaboration with cross-functional teams is essential to embed security throughout the technology stack.

The impact you will have:

• Design and implement secure, scalable reference architectures for the Databricks IT across Cloud Infra (Compute, DBs, Network, Storage), SaaS, Custom Built Applications, Data & AI systems.
• Establish and enforce security controls for: Core Security Areas: - Databricks Workspace Management: Workspace isolation, Unity Catalog for data governance.
• Secure Networking: VPC configs, PrivateLink, IP Allow Lists.
• Identity and Access Management (IAM): SSO, SCIM user provisioning, RBAC via Un, Strong MFA best practices for enterprise identities and customers.
• Data Encryption: At rest and in transit, customer-managed keys for critical assets.
• Data Exfiltration Prevention: Admin console settings, VPC endpoint controls.
• Cluster Security: User isolation, compliance with enhanced security monitoring/Compliance Security Profiles (HIPAA, PCI-DSS, FedRAMP).
• Offensive Security: Test and challenge the effectiveness of the organization’s security defenses by mimicking the tactics, techniques, and procedures used by actual attackers.
• Specialized Security Functions: - Non-human Identity Management: Design and implement secure authentication and authorization for automated systems (service accounts, API keys, machine identities), focusing on automation and integration with existing identity management systems.
• IAM Best Practices: Develop and document comprehensive Identity and Access Management policies, including user provisioning, de-provisioning, access reviews, privileged access management, and multi-factor authentication, ensuring security and compliance.
• Data Loss Prevention (DLP): Implement DLP solutions to identify, monitor, and protect sensitive data across endpoints, networks, and cloud environments, preventing unauthorized access, use, or transmission.
• SaaS Proxy Design and Implementation: Design and implement cloud-based proxies for SaaS applications (SASE solutions) to provide secure access, enforce security policies, monitor user activity, and protect against threats.
• Cloud Infrastructure Best Practices: Establish and document best practices for VPC configurations, cloud networking, and infrastructure as code using Terraform, ensuring secure network segmentation, routing, firewalls, and VPNs for consistent, automated, and secure deployments.
• Least Privilege Access for Data Security: Design and implement data security controls based on the principle of least privilege, ensuring users and systems have only the minimum necessary access through fine-grained controls, data classification, and regular access reviews.
• Guide internal IT on Databricks’ security and compliance certifications (SOC 2, ISO 27001/27017/27018, HIPAA, PCI-DSS, FedRAMP), and support security reviews/audits.
• Support incident response, vulnerability management, threat modeling, and red teaming using audit logs, cluster policies, and enhanced monitoring.
• Stay current on industry trends and emerging threats in GenAI, AI Agentic flow, MCPs to enhance security posture.
• Advise executive leadership on security architecture, risks, and mitigation.
• Mentor security engineers and developers on secure design and best practices.

What we look for:

• Bachelor’s degree in Computer Science, Information Security, Engineering, or a related field
• Master’s degree in Computer Science specifically in Information Security or a related discipline is strongly preferred
• Minimum 12 years in cybersecurity, with 5+ in security architecture or senior technical roles.
• Experience in FedRAMP High systems/ GovCloud preferred.
• Must have direct experience designing and securing enterprise platforms in complex multi-cloud environments, deep knowledge of enterprise architecture and security features (control plane/data plane separation, network infra, workspace hardening, network segmentation/ isolation), and hands-on experience automating security controls with Terraform and scripting.
• Proven expertise securing data analytics pipelines, SaaS integrations, and workload isolation in enterprise ecosystems.
• Experience with Enterprise Security Analysis Tools and monitoring/security policy optimization.
• Deep experience in threat modeling, design, PoC, and implementing large-scale enterprise solutions.
• Extensive hands-on experience in AWS cloud security, network security, with knowledge of Zero Trust, Data Protection, and Appsec.
• Strong understanding of enterprise IAM systems (Okta, SailPoint, VDI, Entra ID) and Data Protection.
• Expert experience with SIEM platforms, XDR, and cloud-native threat detection tools.
• Expert in web application security, OWASP, API security, and secure design and testing.
• Hands-on experience with security automation is required, with proficiency in AI-assisted development, Python, Cursor, Lambda, Terraform, or comparable scripting/IaC tools for operational efficiency.
• Industry certifications like CISSP, CCSP, CEH, AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional, or AWS Certified Advanced Networking – Specialty (or equivalent) are preferred.
• Ability to influence stakeholders and drive alignment.
• Strategic thinker with a passion for security innovation, continuous improvement, and building scalable defenses.

Pay Range Transparency

Databricks is committed to fair and equitable compensation practices. The pay range(s) for this role is listed below and represents the expected salary range for non-commissionable roles or on-target earnings for commissionable roles. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to job-related skills, depth of experience, relevant certifications and training, and specific work location. Based on the factors above, Databricks anticipates utilizing the full width of the range. The total compensation package for this position may also include eligibility for annual performance bonus, equity, and the benefits listed above.

XML job scraping automation by YubHub

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world's largest networks that powers trillions of requests per month. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code.

What you'll do as a Specialist Solution Engineer

You will work with our clients to understand their business needs and understand their current applications landscape and access architecture with the goal of helping them develop a security posture that meets their needs while also keeping their employees and assets safe according to the most recent standards in cyber security. You will do this with the technological solutions in the Cloudflare One product portfolio, which encompasses different Zero Trust offerings, including our cutting edge Remote Browser Isolation and email security solutions.

Responsibilities

• Serve as a trusted advisor to our customers; helping them find the best solution for their business needs with Cloudflare One.
• Guide qualified prospects through the Solution Design and Proof of Concept stages of sales engagements; showing them the key capabilities of the Cloudflare One portfolio
• Work with your Sales Partners to consistently achieve Pipeline and Revenue goals
• Understand our customers IT landscape and security requirements and develop an architecture for our customers to support their business needs
• Articulate the benefits of the Cloudflare One product portfolio vs competing solutions
• Promote retention by capturing and communicating gaps in product or features

Skill Requirements

• Curiosity and Learning Agility
• 8+ years of prior Technical Sales, Systems Engineering, or related experience
• Experience interacting with senior level/executives to communicate a message of network and security transformation
• Familiar with trends in cyber security (e.g. RAT/trojans, malware, ransomware, phishing, adware, cryptomining, spam, botnets, info stealing, scareware)
• Fundamental understanding of customer network and application architectures.
• Technical curiosity and passion: Cloudflare is at the cutting edge of internet technology. It’s incumbent on us to stay up to date not only with Cloudflare’s specific products, but with industry trends.
• Detailed understanding of workflow from user to application including hybrid architectures with Azure, AWS, GCP.
• SASE concepts and Zero Trust Networking architectures
• Secure Web Gateway, CASB, DLP, DNS, DNS over HTTPS
• IdP/authentication, SAML, OTP
• SaaS application integration and tenant controls
• VPN and remote access challenges
• SIEM and log analytics platforms
• Client OS fundamentals and software distribution
• Ability to jump in with hands-on configuration when needed
• Ability to manage a project, work to deadlines, and prioritize between competing goals

Other desirable skills areas include:

• Routing, subnetting, split tunnels. SD-WAN, local internet breakout
• End user and application security risks
• DDoS, malware, phishing, viruses
• Knowledge of competitive market around CDN providers, Web application Firewall, Remote access solutions, Next generation Firewalls, CASB solutions , DDOS mitigations solutions, SD-WAN solutions , Secure Gateway solutions

Ideally knowledge of Cloudflare ZTNA solutions such as Teams, Access, Gateway, and Browser Isolation

What Makes Cloudflare Special?

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare’s enterprise customers--at no cost. Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project, we've provided services to more than 425 local government election websites in 33 states. 1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released.

Here’s the deal - we don’t store client IP addresses never, ever. We will continue to abide by our privacy commitment and ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you’d like to be a part of? We’d love to hear from you!

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer. We are committed to diversity, equity, and inclusion.

XML job scraping automation by YubHub

At Cloudflare, we're on a mission to help build a better Internet. Today the company runs one of the world's largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

As a Senior Solutions Engineer, Named Accounts, you will be responsible for partnering with the sales team to understand customer requirements and provide sales support, preparing and delivering technical presentations and demos explaining the benefits of Cloudflare products to existing and potential customers, and running proof of concept trials for customers.

Specifically, we are looking for you to:

• Identify and map customer initiatives and business problems to Cloudflare solutions
• Build relationships and technical champions within customer accounts
• Develop and present customer presentations at every Enterprise Customer's organization level
• Lead demo and proof-of-concept activities for Cloudflare prospects and customers
• Demonstrate your expertise of Cloudflare with your peers through the creation of professional content, including white papers, blog posts and other knowledge sharing activities
• Represent and evangelize Cloudflare externally at Developer, Community, Technology, Cybersecurity and Industry focused events with thought leadership and expertise.

Basic Requirements

• Previous experience as a Solutions Engineer or other customer facing technical role with CDN, Security, Networking or SaaS
• Solid communication, written and presentation skills
• Ability to work on several projects and activities concurrently
• Highly driven individuals that are curious, team players and work with a sense of urgency
• Bachelor's Degree or equivalent in relevant work experience

Examples of one or more desirable skills, knowledge and experience

• Fundamental understanding of customer network and/or application architectures
• Detailed understanding of workflow from user to application including hybrid architectures with Azure, AWS, GCP
• Understanding, knowledge or experience of application and/or network security
• Understanding, knowledge or experiences with SaaS application environments
• Understanding, knowledge or experience with VPN and remote access challenges
• Understanding, knowledge or experience with SIEM and log analytics platforms
• Client OS fundamentals and software distribution

What Makes Cloudflare Special?

We're not just a highly ambitious, large-scale technology company. We're a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare's enterprise customers--at no cost.

Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project, we've provided services to more than 425 local government election websites in 33 states.

1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released.

Here's the deal - we don't store client IP addresses never, ever. We will continue to abide by our privacy commitment and ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you'd like to be a part of? We'd love to hear from you!

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer. We are committed to providing equal employment opportunity for all people and place great value in both diversity and inclusiveness. All qualified applicants will be considered for employment without regard to their, or any other person's, perceived or actual race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship, age, physical or mental disability, medical condition, family care status, or any other basis protected by law.

We are an AA/Veterans/Disabled Employer. Cloudflare provides reasonable accommodations to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job.

XML job scraping automation by YubHub

About the Team: Anduril employs a variety of networks and networking infrastructures to support global operations. Information Systems Security Managers are in charge of directly supporting business lines that wish to deploy Anduril products in classified environments.

About the Job: As an Information Systems Security Manager, you will be responsible for providing expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments. You will partner with program and security teams to coordinate security artifacts in support of classified deployments. You will apply technology standards from the commercial space in classified, air-gapped environments.

Responsibilities:

• Provide expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments.
• Partner with program and security teams to coordinate security artifacts in support of classified deployments.
• Apply technology standards from the commercial space in classified, air-gapped environments.
• Collaborate with Information System Owners to understand key stakeholders' needs and provide complex technical solutions to meet contractual obligations.
• Tailor NIST 800-53 controls to determine applicability to the network environment and oversee the implementation of Continuous Monitoring for respective programs.
• Define, document, and conduct security scanning on Anduril's products and accredited information systems.
• Scope, shape, and orchestrate the development of features to ensure products meet compliance goals.

Required Qualifications:

• Design, develop, and implement secure systems and networks per NIST RMF, JSIG, and other industry standards.
• Integrate security best practices into Anduril's Software Development Lifecycle (SDLC) and infrastructure design, collaborating with internal IT and engineering teams.
• Conduct security risk assessments, vulnerability assessments, and audits to identify and mitigate threats.
• Recommend and implement security solutions, such as IDS/IPS, encryption protocols, and secure communications technologies.
• Develop and enforce access controls, encryption strategies, and other technical measures to safeguard systems.
• Maintain and update System Security Plans (SSPs), POA&Ms, and other accreditation documentation.

Preferred Qualifications:

• Experience with application security paradigms such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
• Proven experience in securing micro-services architecture, including implementing best practices and compliance with DoD cybersecurity standards.
• Experience with cybersecurity in unmanned and ground control system within DoD environments.
• Experience with containerization and kubernetes along with the best practices for securing them.
• Experience with Cloud Service Providers (CSPs) and the various tools they offer for implementing security and compliance best practices.

Salary: The salary range for this role is $146,000-$194,000 USD.

Benefits: Anduril offers top-tier benefits for full-time employees, including comprehensive medical, dental, and vision plans at little to no cost to you. Anduril also offers income protection, generous time off, family planning and parenting support, mental health resources, professional development, commuter benefits, relocation assistance, and a retirement savings plan.

Protecting Yourself from Recruitment Scams: Anduril is committed to maintaining the integrity of our Talent acquisition process and the security of our candidates. We've observed a rise in sophisticated phishing and fraudulent schemes where individuals impersonate Anduril representatives, luring job seekers with false interviews or job offers. These scammers often attempt to extract payment or sensitive personal information.

To ensure your safety and help you navigate your job search with confidence, please keep the following critical points in mind:

• No Financial Requests: Anduril will never solicit payment or demand personal financial details (such as banking information, credit card numbers, or social security numbers) at any stage of our hiring process. Our legitimate recruitment is entirely free for candidates.
• Please always verify communications:
• Direct from Anduril: If you receive an email from one of our recruiters, it will only come from an @anduril.com address.
• Via Agency Partner: If contacted by a recruiting agency for an Anduril role, their email will clearly identify their agency. If you suspect any suspicious activity, please verify the agency's authenticity by reaching out to contact@anduril.com.
• Exercise Caution with Unsolicited Outreach: If you receive any communication that appears suspicious, contains grammatical errors, or makes unusual requests, do not respond or engage with the sender.

XML job scraping automation by YubHub

As a Staff Engineer, AI Security on the AppSec team, you'll lead autonomous defense for the AI lifecycle. Build multi-agent frameworks and secure gateways while integrating real-time security gates and identity standards. By mentoring Security and R&D to define the MLSecOps roadmap, you'll ensure a 'secure-by-default' future for agentic workflows and resilient AI innovation.

Responsibilities:

Serve as the primary subject matter expert for all AI and machine learning security initiatives across security and R&D.

Design and manage AI gateways to provide a centralized control plane for authentication and authorization and rate limiting across all model and tool interactions.

Build and maintain an autonomous security agentic framework that utilizes multi agent orchestration for end to end investigation and alert triage and remediation.

Develop agentic identity models using OAuth 2.1 to propagate identity across trust boundaries and prevent the confused deputy problem.

Help govern the AI augmented software development lifecycle by integrating real time security gates into the developer environment and CI/CD pipeline.

Manage Agentic Security Solutions that secure AI lifecycle and manage AI workloads at runtime.

Author company wide AI security standards and implement these security checks across Twilio's stack.

Implement human in the loop checkpoints and transactional safety protocols for high impact or destructive agentic actions.

Partner with engineering leadership to set the long term roadmap for identity centric security and automated posture management.

Act as a knowledge multiplier by mentoring security engineers and developing secure by default paved road templates for R&D teams

Qualifications:

8+ years of experience in security engineering with at least 3 years focused on AI or machine learning security operations (MLSecOps).

Expertise in orchestrating multi-agent systems with AWS Strands, LangGraph, and CrewAI, specializing in runtime isolation, PII redaction, and defending against indirect prompt injection in agentic environments.

Hands-on experience with AI-specific frameworks (e.g., MITRE ATLAS, MAESTRO, OWASP Top 10 for LLMs/Agents/MCP) to threat model and defend against a wide spectrum of risks, including direct/indirect prompt injection, training data poisoning, tool poisoning, and data exfiltration within agentic workflows.

Proficiency in securing end-to-end AI pipelines, from data ingestion and training to model deployment and monitoring.

Strong communication skills to translate complex AI risks into actionable business logic for stakeholders.

Desired:

Hands-on experience in modern application security tooling including SAST and SCA and DAST with experience adapting these tools to catch AI specific vulnerabilities like indirect prompt injection.

Expertise in identity standards including OAuth 2.1 and PKCE.

Experience with AI Red Teaming and conducting adversarial simulations against Large Language Models (LLMs) and agentic systems.

Proficiency in at least one general programming language (Python, Go, etc) with experience in container security and workload isolation.

Proven ability to operate with autonomy and drive high impact outcomes in ambiguous environments by identifying and executing on critical projects without predefined roadmaps or direct supervision.

XML job scraping automation by YubHub

You will identify and map customer initiatives and business problems to Cloudflare solutions, build relationships and technical champions within customer accounts, develop and present customer presentations at every Enterprise Customer's organization level, lead demo and proof-of-concept activities for Cloudflare prospects and customers, demonstrate your expertise of Cloudflare with your peers through the creation of professional content, including white papers, blog posts and other knowledge sharing activities, represent and evangelize Cloudflare externally at Developer, Community, Technology, Cybersecurity and Industry focused events with thought leadership and expertise, and apply in-depth vertical knowledge or domain expertise.

The ideal candidate will have previous experience as a Solutions Engineer or other customer-facing technical role with CDN, Security, Networking or SaaS, solid communication, written and presentation skills, ability to work on several projects and activities concurrently, highly driven individuals that are curious, team players and work with a sense of urgency, and a Bachelor's Degree or equivalent in relevant work experience.

The role requires up to 50% travel to attend meetings with prospects or customers, attend conferences and other industry events, and to collaborate with your Cloudflare teammates.

Desirable skills areas include experience interacting with senior-level executives to communicate a message of network and security transformation, routing, subnetting, split tunnels, SD-WAN, local internet breakout, end-user and application security risks, DDoS, malware, phishing, viruses, and knowledge of competitive market around CDN providers and internet security technologies.

XML job scraping automation by YubHub

At Cloudflare, we're on a mission to help build a better Internet. Today, the company runs one of the world's largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

As a Senior Strategic Solutions Engineer, you will be a customer-facing hands-on technologist with credibility built on domain expertise across the region. You should have solid experience in influencing enterprise architecture design across various senior buyer personas both at customers and partner organizations.

Your role will be to convince these decision makers of the long-term value of thinking of Cloudflare as a strategic technology partner. You will work as a part of a highly visible structured pursuit team attached to designated strategic accounts, working to understand their unique business challenges and priorities with a goal of defining short and long-term solution architecture with Cloudflare as a centrepiece.

Responsibilities

• Build and maintain the long-term technical relationship of key accounts, ensuring the successful design, proof, and adoption of Cloudflare as a part of the customers' critical infrastructure.

• Identify and drive strategic conversations with key stakeholders with the purpose of increasing our reputation and authority within the business, and further establishing our footprint within the customers' landscape.

• Be the voice of the customer, engaging and influencing Product Management and Product Roadmap to serve their needs.

• Demonstrate your expertise of Cloudflare within your field through the creation of professional content, including white papers, reference architectures, blog posts, and demo proof-of-concept labs.

• Represent and evangelize Cloudflare externally at Developer, Community, Technology, Cybersecurity, and Industry-focused events with thought leadership and expertise.

Requirements

• 10+ years of relevant experience

• Experience interacting with senior-level executives to communicate a message of network and security transformation

• Fundamental understanding of customer network and application architectures

• Detailed understanding of workflow from user to application including hybrid architectures with Azure, AWS, GCP

• Secure Web Gateway, CASB, DLP, DNS, DNS over HTTPS

• IdP/authentication, SAML, OTP

• SaaS application integration and tenant controls

• VPN and remote access challenges

• SIEM and log analytics platforms

• Client OS fundamentals and software distribution

Preferred Skills

• Routing, subnetting, split tunnels. SD-WAN, local internet breakout

• End-user and application security risks

• DDoS, malware, phishing, viruses

• Knowledge of competitive market around CDN providers, Web application Firewall, Remote access solutions, Next-generation Firewalls, CASB solutions, DDOS mitigations solutions, SD-WAN solutions, Secure Gateway solutions

• Ideally knowledge of Cloudflare ZTNA solutions such as Teams, Access, Gateway, and Browser Isolation

What Makes Cloudflare Special?

We're not just a highly ambitious, large-scale technology company. We're a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare's enterprise customers--at no cost.

Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project, we've provided services to more than 425 local government election websites in 33 states.

1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster, more secure, and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released.

Here's the deal - we don't store client IP addresses never, ever. We will continue to abide by our privacy commitment and ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you'd like to be a part of? We'd love to hear from you!

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer. We are committed to providing equal employment opportunity for all people and place great value in both diversity and inclusiveness. All qualified applicants will be considered for employment without regard to their, or any other person's, perceived or actual race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship, age, physical or mental disability, medical condition, family care status, or any other basis protected by law.

We are an AA/Veterans/Disabled Employer. Cloudflare provides reasonable accommodations to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job.

XML job scraping automation by YubHub

At Cloudflare, we're on a mission to help build a better Internet. Today, the company runs one of the world's largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

As a Senior Solutions Engineer, you will be a customer-facing technologist within the Cloudflare Solutions Engineering team. You will have experience in working in a pre-sales or other technical customer-facing role supporting large enterprise accounts or acquiring new enterprise customers, as well as excellent verbal and written communication skills suited to explain the benefits of Cloudflare products and services to existing and potential customers.

In this role, you will be responsible for partnering with the sales team to understand customer requirements and provide sales support, preparing and delivering technical presentations and demos explaining the benefits of Cloudflare products to existing and potential customers, and running proof-of-concept trials for customers.

Specifically, we are looking for you to:

• Identify and map customer initiatives and business problems to Cloudflare solutions
• Build relationships and technical champions within customer accounts
• Develop and present customer presentations at every Enterprise Customer's organization level
• Lead demo and proof-of-concept activities for Cloudflare prospects and customers
• Demonstrate your expertise of Cloudflare with your peers through the creation of professional content, including white papers, blog posts, and other knowledge-sharing activities
• Represent and evangelize Cloudflare externally at Developer, Community, Technology, Cybersecurity, and Industry-focused events with thought leadership and expertise
• Apply in-depth vertical knowledge or domain expertise. Advise on best practices

Basic Requirements

• Previous experience as a Solutions Engineer or other customer-facing technical role with CDN, Security, Networking, or SaaS
• Solid communication, written, and presentation skills
• Ability to work on several projects and activities concurrently
• Highly driven individuals that are curious, team players, and work with a sense of urgency
• Bachelor's Degree or equivalent in relevant work experience

Desirable Skills

• Fundamental understanding of customer network and/or application architectures
• Detailed understanding of workflow from user to application including hybrid architectures with Azure, AWS, GCP
• Understanding, knowledge, or experience of application and/or network security
• Understanding, knowledge, or experiences with SaaS application environments
• Understanding, knowledge, or experience with VPN and remote access challenges
• Understanding, knowledge, or experience with SIEM and log analytics platforms
• Client OS fundamentals and software distribution

Bonus Points

• Graduate-level degrees in Computer Science, Engineering, or related fields
• Certifications: Azure/AWS/GCP Architect, etc.

More About You

• You can translate technical concepts and jargon for a wide variety of audiences: from systems engineers, to front-end developers, through to IT managers and C-levels in enterprise organizations.
• You want to be constantly learning new things and teaching what you've learned to the broader team through internal and external blog posts, team demos, and product training sessions.
• You have a knack for understanding problems and finding creative ways to solve them. Our product suite is ever-growing, and knowing how to identify which parts will solve a customer's particular problem is important.
• You understand how to manage a project, work to deadlines, and prioritize between competing demands.

What Makes Cloudflare Special?

We're not just a highly ambitious, large-scale technology company. We're a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare's enterprise customers--at no cost.

Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project, we've provided services to more than 425 local government election websites in 33 states.

1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster, more secure, and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released.

Here's the deal - we don't store client IP addresses never, ever. We will continue to abide by our privacy commitment and ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you'd like to be a part of? We'd love to hear from you!

XML job scraping automation by YubHub

XML job scraping automation by YubHub

About the Role: The Application Security team at Anthropic is at the forefront of building security into every phase of the software development lifecycle. As an Application Security Engineer, you will partner closely with software engineers and researchers to ensure that security is a core consideration from initial design through implementation. You will lead threat modeling and secure design reviews to proactively identify and mitigate risks early, and help with continuous risk assessment. You will build tools and systems to support developers shipping code securely, adhering to secure coding best practices.

Responsibilities:

• Help secure AI products and internal tools that are introducing industry-novel security risks and pushing established security boundaries
• Lead “shift left” security efforts to build security into the software development lifecycle
• Conduct secure design reviews and threat modeling. Identify and prioritize risks, attack surfaces, and vulnerabilities
• Develop tooling to scale security code reviews and respond to developer questions, including advising developers on remediating vulnerabilities and following secure coding practices
• Manage Anthropic's vulnerability management program, including integrating data ingestion pipelines, coding logic to prioritize vulnerability fixes, supporting teams remediating vulnerabilities and developing automated systems at scale
• Oversee Anthropic's bug bounty program. Set scope, validate submissions, perform root cause analysis, coordinate remediation with engineering teams, and award bounties. Cultivate relationships with the ethical hacker community
• Collaborate closely with product engineers and researchers to instill security best practices. Advocate for secure architecture, design, and development
• Develop and document security policies, standards, and playbooks. Conduct security awareness training for engineers

Requirements:

• 5+ years of hands-on experience in application and infrastructure security, including securing cloud-based and containerized environments
• Strong proficiency in at least one programming language (e.g., Python, Rust, Go, Java)
• Lead with empathy, a collaborative spirit, and a learning mindset to work cross-functionally with engineers of all levels to build security into the software development life cycle
• Leverage creative and strategic thinking to reduce risk through secure design and simplicity, not just controls
• Possess broad security knowledge to connect the dots across domains and identify holistic ways to decrease the overall threat surface
• Are keen to distill complex security concepts into clear actions and drive consensus without direct authority
• Embody a proactive mindset to thread security throughout the product lifecycle through activities like threat modeling, secure code review, and education
• Have a strong grasp of offensive security to anticipate risks from an adversary's perspective, not just check compliance boxes
• Bring experience with modern application stacks, infrastructure, and security tools to implement pragmatic defenses
• Are practiced at collaborating cross-functionally and effectively balancing security requirements with business objectives
• Advocate for security fundamentals like least privilege, defense-in-depth, and eliminating complexity that could sub-linearly scale security through smart design

Preferred Qualifications:

• Hands-on technical expertise securing complex cloud environments and microservices architectures leveraging technologies like Kubernetes, Docker, and AWS / GCP
• Exposure to offensive security techniques like vulnerability testing, bug bounty, pen testing, and red team exercises
• Familiarity with AI/ML security risks such as prompt injection, data poisoning, model extraction, etc. and mitigations
• Experience building security tools, applications, and automated tools
• Solid foundational knowledge of both software and security engineering principles and are keen to continue learning
• Excellent communication skills, able to distill complex security topics for broad audiences
• Worked and thrived in fast-paced environments, and comfortable navigating ambiguity

Annual Compensation Range:

$300,000-$405,000 USD

Logistics:

• Minimum education: Bachelor’s degree or an equivalent combination of education, training, and/or experience
• Required field of study: A field relevant to the role as demonstrated through coursework, training, or professional experience
• Minimum years of experience: Years of experience required will correlate with the internal job level requirements for the position
• Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.
• Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

How to Apply:

If you're interested in this role, please submit your application through our website. We look forward to reviewing your application!

Note:

Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of emails from other domains. Legitimate Anthropic recruiters will never ask for money, fees, or banking information before your first day. If you're ever unsure about a communication, don't click any links,visit anthropic.com/careers directly for confirmed position openings.

XML job scraping automation by YubHub

Responsibilities: Conduct in-depth code reviews and static analysis to identify and mitigate security vulnerabilities in our applications Design and implement secure coding guidelines and best practices for development teams Collaborate closely with development teams to integrate security practices throughout the CI/CD pipeline Perform threat modeling and risk assessments for applications, developing mitigation strategies for potential risks Manage vulnerability tracking and remediation efforts, providing guidance to development teams Support incident response activities related to application security Stay current on emerging security threats and trends in cloud-native technologies and AI, continuously enhancing our security measures Evaluate and secure software supply chains, including producing and maintaining Software Bills of Materials (SBOMs) Address security concerns specific to AI and machine learning models, with a focus on the OWASP LLM Top 10

Basic Qualifications: Bachelor's degree in Computer Science, Cybersecurity, or a related field 3-5 years of experience in application security, with a strong focus on code security practices Deep understanding of secure coding practices, application security frameworks, and common vulnerabilities (e.g., OWASP Top 10) Proficiency in Python or Rust programming languages and experience with secure coding practices in these languages Experience securing CI/CD pipelines and implementing DevSecOps practices Familiarity with software supply chain security and SBOM generation tools Experience with security testing tools (e.g., Burp Suite, OWASP ZAP) and static/dynamic code analysis Understanding of AI/ML security implications, particularly those outlined in the OWASP LLM Top 10 Excellent communication skills, able to explain complex security issues to both technical and non-technical audiences

Preferred Skills and Experience: Experience with cloud platforms (e.g., GCP, AWS, Azure) and their security features Relevant security certifications (e.g., CSSLP, OSWE) Background in data privacy and compliance regulations relevant to cloud-native applications and AI systems Experience with GitOps and infrastructure-as-code security Familiarity with federated learning and privacy-preserving machine learning techniques Experience in building custom security tooling to enhance and automate security processes Interest in leveraging AI to automate security tasks and improve efficiency Contributions to open-source security projects or tools Experience in securing AI/ML models and data pipelines

Compensation and Benefits: $200,000 - $340,000 USD Base salary is just one part of our total rewards package at xAI, which also includes equity, comprehensive medical, vision, and dental coverage, access to a 401(k) retirement plan, short & long-term disability insurance, life insurance, and various other discounts and perks.

XML job scraping automation by YubHub

The engineer joining this team will help build tools that interact with external health data networks to collect information about our patients and load it into the Zus data stores at high volume, as well as services used by customers and internal stakeholders to request that data.

You will work on data pipelines that operate on large scale data using a variety of AWS services (Step Functions, Lambda, DynamoDB, S3, etc). You will also work on RESTful services that are used both internally and externally. Go is our language of choice, although we also have some components written in NodeJS.

The team is responsible for deploying, maintaining, and operating its pipelines and services. Our Zus engineering teams are all US-based, and we hire only in the US.

In Data Acquisition, we work across a collection of US timezones and also collaborate with our development partners in Central European Time.

Zus supports both remote work and hybrid work in the Boston area with an office near South Station, and our teams are a mix of both styles of work.

We actively work to make sure all voices are heard and information is shared regardless of your work location.

You're a good fit because you...

• Are scrappy and you move fast
• Have experience with operationally stable and cost efficient data pipelines
• Enjoy owning your work and seeing it deploy safely in production
• Have experience building backend software in any language (we use mostly Go with a bit of Node)
• Have some experience with at least one of the following: deployment technologies (Github actions, CodeDeploy, CircleCI), cloud providers (AWS, Azure, GCP)), and Infrastructure as Code (Terraform, CloudFormation, Chef)
• Are excited to ~ finally! ~ enable a true digital revolution in healthcare
• Thrive amid the changing landscape of a growing and evolving startup
• Enjoy collaboration and solving unique problems
• Are comfortable working remotely (EST/CST preferred as that is where our team is located) and are willing to travel for in person collaboration occasionally

It would be awesome if you were...

• Experienced in building and running large-scale systems in the cloud
• Experienced in building services and APIs used by third-party developers
• Knowledgeable about application security
• Experienced in working with healthcare data and APIs
• Familiar with the FHIR and/or TEFCA standards

Additional Information

This role can be hybrid in Boston or mostly remote. We’re flexible, because we trust our people to do great work wherever they’re most productive. We’re proudly remote-first, but not strangers by any means. We get together a few times a year to build real rapport, align on strategy, and connect as people.

We believe strong culture is built on trust, transparency, and showing up online or or in person. So yes, work from where you thrive… and plan on the occasional gathering where the strategy is sharp, the conversations are candid, and the snacks are usually excellent.

We will offer you…

• Competitive compensation that reflects the value you bring to the team a combination of cash and equity
• Robust benefits that include health insurance, wellness benefits, 401k with a match, unlimited PTO
• Opportunity to work alongside a passionate team that is determined to help change the world (and have fun doing it)

XML job scraping automation by YubHub

Your responsibilities will include:

• Supporting application security reviews for services, APIs, and new product features across the VGS platform.
• Helping identify, validate, and track security findings from static analysis, dependency scanning, container scanning, and other security testing tools.
• Participating in threat modeling and secure design discussions with engineering teams during feature development.
• Evaluating the security of AI-enabled development workflows, including internal AI systems integrated into the SDLC.
• Assisting with manual testing and validation of web application and API security issues.
• Helping improve secure SDLC processes by contributing to developer guidance, secure coding resources, and repeatable review checklists.
• Working with engineers to understand remediation options and clearly document security risks and recommendations.
• Contributing to improving security tooling and guardrails in CI/CD and development workflows.

We're looking for someone with a strong interest in secure software design, cloud-native architectures, and automation. You should have a foundational understanding of application security concepts, such as the OWASP Top 10, API security, authentication and authorization, secure coding, and common software vulnerabilities.

At VGS, we have a remote-first philosophy, and we're looking for someone who is comfortable working independently and collaboratively as part of a team.

XML job scraping automation by YubHub

Mistral AI is a technology company that develops and provides AI-powered solutions and platforms for enterprise use. Our technology is designed to integrate seamlessly into daily working life.

Role Summary

As a CyberSecurity Team Lead, you will be responsible for architecting and enforcing the security posture of our entire technical stack, from on-premise foundations to cloud-native deployments. You will oversee the identification, prioritization, and remediation of vulnerabilities across both On-Prem and Cloud infrastructures as well as internal applications.

Responsibilities

• Oversee the identification, prioritization, and remediation of vulnerabilities across both On-Prem and Cloud infrastructures as well as internal applications.
• Select, deploy, and maintain the tools needed for visibility and protection, including CNAPP, CSPM, SAST/DAST, secret scanning, and SBOM/CVE tracking.
• Integrate security controls and automated gates directly into CI/CD pipelines to catch vulnerabilities before deployment (Shift Left).
• Partner with engineering teams to interpret findings and 'ease the fix,' providing patches, code snippets, or architectural advice to resolve issues quickly.
• Define and maintain rigorous security guidelines and best practices for developers and system administrators.
• Design and lead security awareness programs and technical training tailored for developers and admins to reduce human risk.
• Track and define key security metrics (MTTR, coverage, vulnerability density) to visualize posture and progress to leadership.

Requirements

• 6+ years of experience in Information Security, with a specific focus on Application Security, Cloud Security, or DevSecOps.
• Strong scripting skills (Python, Go, or Bash) to automate security tasks and integrate tools.
• Deep understanding of CI/CD ecosystems and container orchestration (Kubernetes/Docker).
• Hands-on experience with modern security tooling (e.g., Wiz, Snyk, SonarQube, Prisma, or similar enterprise tools).
• Collaborative mindset: you view developers as partners, not adversaries, and focus on enabling them to code securely.
• Clear communication, autonomous, and capable of translating technical security risks into actionable engineering tasks.

Benefits

• Competitive salary
• Comprehensive health insurance
• Flexible working hours
• Professional development opportunities

Note: The company may offer additional benefits not listed here.

XML job scraping automation by YubHub

Your day-to-day will involve leading security architecture/design review and threat modeling sessions with product and engineering teams, translating threats into actionable, risk-rated engineering remediations prioritized by severity, conducting hands-on penetration testing and security assessments across our full product stack, and driving PSIRT operations by triaging incoming vulnerability reports, leading technical investigations, coordinating remediation with engineering, scoring severity (CVSS), managing coordinated disclosure with external researchers, and on-call incidents.

You will also shape the posture of our AI-assisted development environment, defining and enforcing enterprise policies for Claude and Cursor, and partner across the organization, sitting in design review with architects, advising product managers and engineering teams on security and compliance implications of new features, briefing executives on emerging AI threats, mentoring junior security engineers, and collaborating with the AI team on securing ML pipelines.

As a champion of security culture, you will run developer training on secure coding with AI assistants, evangelize security by design for products, and ensure every engineer understands that product security is an enabler and not a gate.

You will bring 10+ years of product security experience spanning application security, cloud security, and secure SDLC, expert-level threat modeling using STRIDE, PASTA, or equivalent across web, mobile, cloud, embedded, and AI systems, hands-on penetration testing skills across applications, API, cloud infrastructure, and hardware/firmware, and deep hands-down AI security expertise and expert-level understanding of OWASP Top 10 for LLM, API, Web, Mobile, and practical experience with MITRE.

You will have strong hands-on experience in security tools SAST, DAST, SCA, and securing AI development tools specifically Claude and Cursor, and understand MCP security risks and know how to architect enterprise guardrails that enable safe AI-assisted development.

You will also have strong programming ability and capability to review code, build security tools, automate workflows, and be credible with the engineering teams you partner with.

Preferred experience includes hardware and embedded security experience with knowledge of secure boot, firmware integrity, hardware root of trust, and IoT threat modeling experience, and experience in the Financial industry, knowledge of PCI DSS, COPPA, or demonstrated ability to learn regulated domains quickly.

Work perks at Greenlight include medical, dental, vision, and HSA match, paid life insurance, AD&D, and disability benefits, traditional 401k with company match, unlimited PTO, paid company holidays and pop-up bonus holidays, professional development stipends, mental health resources, 1:1 financial planners, fertility healthcare, 100% paid parental and caregiving leave, plus cleaning service and meals during your leave, flexible WFH, both remote and in-office opportunities, fully stocked kitchen, catered lunches, and occasional in-office happy hours, and employee resource groups.

XML job scraping automation by YubHub

At Synopsys, interns dive into real-world projects, gaining hands-on experience while collaborating with our passionate teams worldwide,and having fun in the process! You'll have the freedom to share your ideas, unleash your creativity, and explore your interests. This is your opportunity to bring your solutions to life and work with cutting-edge technology that shapes not only the future of innovation but also your own career path.

Deploy and configure security tools for Software Composition Analysis (SCA), Static Application Security Testing (SAST), and Dynamic Application Security Testing (DAST), including project onboarding, configuration, and policy management.

Integrate security controls into CI/CD pipelines, such as quality gates, reporting mechanisms, and threshold management, to ensure early vulnerability detection.

Automate the collection, normalization, and publication of security results using dashboards, artifacts, and notifications.

Implement and manage dependency updates with tools like Dependabot and Renovate, including automated pull requests and update strategies.

Contribute to documentation (integration guides, best practices) while collaborating with development and infrastructure teams to improve the developer experience.

Participate in the analysis, prioritization, and tracking of security findings and remediation efforts.

Currently pursuing a Master’s degree or equivalent in cybersecurity, software engineering, DevOps/Cloud, or a related field.

Comfortable working in both Windows and Linux environments.

Understanding of CI/CD concepts and a keen interest in DevSecOps practices.

Experience with programming/scripting languages such as Python, Bash, Go, or Rust is a plus.

Familiarity with build and tooling systems (e.g., Bazel, Docker) and SDLC tools (e.g., Mend, Dependabot, Renovate).

Autonomy, attention to detail, strong problem-solving skills, and effective communication for collaboration within multidisciplinary teams.

Fluent/Professional English

XML job scraping automation by YubHub

Responsibilities: Scoping and performing mobile, web application, cloud, and infrastructure penetration tests. Collaborating with engineering teams to facilitate secure development, including reviewing and analysing proposed technical solutions to identify appropriate security controls, conducting code reviews of features and critical security components, and performing in-depth practical security testing. Advising on the remediation of security issues and identifying solutions to address root causes. Automating security testing and developing internal tooling to achieve continuous assurance. Identifying and implementing improvements to the team's internal processes and procedures. Mentoring less-experienced team members, leading by example in technical assessments, and promoting a collaborative approach to security across Starling.

Requirements: 5+ years technical information security experience. Experience in mobile, web application, cloud, and infrastructure penetration testing. Technical knowledge in mobile security (iOS and Android), web application security, networking and associated protocols, cloud security (AWS and GCP), containers and Kubernetes. Penetration testing qualifications (e.g. CREST Certified Tester, OSCP) or equivalent industry experience. Excellent verbal and written communication skills.

XML job scraping automation by YubHub

Embedded directly within Mistral's Security Engineering ecosystem, you will architect and enforce the security posture of our entire technical stack, from on-premise foundations to cloud-native deployments.

As a CyberSecurity Team Lead, you will oversee the identification, prioritization, and remediation of vulnerabilities across both On-Prem and Cloud infrastructures as well as internal applications.

You will select, deploy, and maintain the tools needed for visibility and protection, including CNAPP, CSPM, SAST/DAST, secret scanning, and SBOM/CVE tracking.

Integrate security controls and automated gates directly into CI/CD pipelines to catch vulnerabilities before deployment (Shift Left).

Partner with engineering teams to interpret findings and 'ease the fix,' providing patches, code snippets, or architectural advice to resolve issues quickly.

Define and maintain rigorous security guidelines and best practices for developers and system administrators.

Design and lead security awareness programs and technical training tailored for developers and admins to reduce human risk.

Track and define key security metrics (MTTR, coverage, vulnerability density) to visualize posture and progress to leadership.

Who you are

• 6+ years of experience in Information Security, with a specific focus on Application Security, Cloud Security, or DevSecOps.

• Strong scripting skills (Python, Go, or Bash) to automate security tasks and integrate tools.

• Deep understanding of CI/CD ecosystems and container orchestration (Kubernetes/Docker).

• Hands-on experience with modern security tooling (e.g., Wiz, Snyk, SonarQube, Prisma, or similar enterprise tools).

• Collaborative mindset: you view developers as partners, not adversaries, and focus on enabling them to code securely.

• Clear communication, autonomous, and capable of translating technical security risks into actionable engineering tasks.

It would be ideal if you also have:

• Industry certifications such as CISSP, CCSP, OSCP, or cloud-specific security certifications.

• Strong Infrastructure as Code (IaC) experience with Terraform or Ansible.

• Experience in offensive security (Penetration Testing) to better understand attacker mindsets.

• Prior experience securing large-scale AI or Machine Learning infrastructure.

XML job scraping automation by YubHub

Fuse Energy is a forward-thinking renewable energy startup on a mission to deliver a terawatt of renewable energy - fast. We're combining first-principles thinking with cutting-edge technology to build a radically better energy system.

We're creating a fully integrated energy company: from developing solar, wind and hydrogen projects to real-time power trading and distributed energy installations. By selling directly to consumers, we cut out the middleman, lower costs and pass on savings to customers.

But we're not stopping there. We're also building the Energy Network: a decentralised platform of smart devices that rewards users in Energy Dollars for electrifying their homes, shifting usage to off-peak hours, and helping balance the grid. This network strengthens grid stability - a critical foundation for scaling AI data centers and other energy-intensive industries.

Responsibilities

Security Engineering & Implementation

• Assist in implementing and maintaining security controls across cloud infrastructure, web applications, and internal systems.
• Support secure configuration of services, including access controls, secrets management, and API security.
• Help review and improve the security of components related to identity, authentication, and transaction workflows.

Threat Modelling & Risk Awareness

• Participate in threat modelling exercises and security reviews for new features and system changes.
• Help identify common security risks and misconfigurations, and work with engineers to remediate them.
• Stay informed about common attack vectors and vulnerabilities relevant to modern cloud and web environments.

Security Operations & Incident Support

• Assist with monitoring, detection, and investigation of security alerts and events.
• Support incident response activities, including analysis, documentation, and follow-up remediation tasks.
• Help maintain and improve runbooks, alerts, and basic detection mechanisms.

Secure Development & Best Practices

• Contribute to secure development practices, including code reviews with a security lens.
• Help document and promote security guidelines for engineers, such as secure coding and secrets handling.
• Support ongoing efforts related to compliance readiness (e.g., evidence gathering, control checks).

Collaboration & Learning

• Work closely with engineering and product teams to integrate security into day-to-day development.
• Learn from senior security engineers and actively develop your skills in cloud security, application security, and infrastructure security.

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent practical experience.
• 2–3 years of experience in a Security Engineer, Software Engineer, Infrastructure Engineer, or similar role with security exposure.
• Foundational understanding of security concepts such as authentication, authorisation, encryption, and secure communication.
• Familiarity with common web and cloud security risks (e.g., OWASP Top 10, IAM misconfigurations).
• Basic experience with AWS and an interest in cloud security best practices.
• Working knowledge of operating systems, networking fundamentals, and software development workflows.
• Strong problem-solving skills and a willingness to learn and grow in a fast-moving environment.

Benefits

• Competitive salary and an equity sign-on bonus
• Biannual bonus scheme
• Fully expensed tech to match your needs
• Paid annual leave
• Breakfast and dinner allowance for office based employees

XML job scraping automation by YubHub

As an Agile Dev Team Member III, you will be responsible for performing daily development activities such as coding, configuration, debugging, and defect fixes using Task & User Story & Feature concepts in agile. You will also support DevOps processes through code base management using GIT, Jenkins, Sonar, and support security and code quality by using tools such as Sonar, Dynatrace for scanning of code to ensure quality and no security flaws.

Responsibilities:

• Performs daily development activities such as coding, configuration, debugging, and defect fixes using Task & User Story & Feature concepts in agile.

• Supports DevOps processes through code base management using GIT, Jenkins, Sonar.

• Supports security and code quality by using tools such as Sonar, Dynatrace for scanning of code to ensure quality and no security flaws.

• Resolves production security flaws.

• Supports production issues/outages ad hoc as needed.

• Maintains code base documentation and organization.

• Researches, analyses, and designs processes within the team and supporting other agile teams on the train.

• Participates in scheduled meetings within the larger team.

• Follows best practices in development and works with Architecture in ensuring cohesive design.

Requirements:

Skills and Capabilities:

• Application Security

• Root Cause Analysis

• Agile Software Development

• SDLC Automation

Software / Tool Skills:

• MS Visual Studio

• MS .NET

• MS .NET CORE

• SQL

• Office Suite

• Test Automation Tools

• Front-End Development (Ex. Angular, Blazer)

• Database - SQL or Oracle

• GITHub - Code Base Management

Benefits:

• Competitive compensation and benefits package:

1. Competitive salary and performance-based bonuses

1. Comprehensive benefits package

1. Career development and training opportunities

1. Flexible work arrangements (remote and/or office-based)

1. Dynamic and inclusive work culture within a globally renowned group

1. Private Health Insurance

1. Pension Plan

1. Paid Time Off

1. Training & Development

Note: Benefits differ based on employee level.

XML job scraping automation by YubHub

Fuse Energy is a forward-thinking renewable energy startup on a mission to deliver a terawatt of renewable energy - fast. We're combining first-principles thinking with cutting-edge technology to build a radically better energy system.

We're creating a fully integrated energy company: from developing solar, wind and hydrogen projects to real-time power trading and distributed energy installations. By selling directly to consumers, we cut out the middleman, lower costs and pass on savings to customers.

But we're not stopping there. We're also building the Energy Network: a decentralised platform of smart devices that rewards users in Energy Dollars for electrifying their homes, shifting usage to off-peak hours, and helping balance the grid. This network strengthens grid stability - a critical foundation for scaling AI data centers and other energy-intensive industries.

Responsibilities

Security Engineering & Implementation

• Assist in implementing and maintaining security controls across cloud infrastructure, web applications, and internal systems.
• Support secure configuration of services, including access controls, secrets management, and API security.
• Help review and improve the security of components related to identity, authentication, and transaction workflows.

Threat Modelling & Risk Awareness

• Participate in threat modelling exercises and security reviews for new features and system changes.
• Help identify common security risks and misconfigurations, and work with engineers to remediate them.
• Stay informed about common attack vectors and vulnerabilities relevant to modern cloud and web environments.

Security Operations & Incident Support

• Assist with monitoring, detection, and investigation of security alerts and events.
• Support incident response activities, including analysis, documentation, and follow-up remediation tasks.
• Help maintain and improve runbooks, alerts, and basic detection mechanisms.

Secure Development & Best Practices

• Contribute to secure development practices, including code reviews with a security lens.
• Help document and promote security guidelines for engineers, such as secure coding and secrets handling.
• Support ongoing efforts related to compliance readiness (e.g., evidence gathering, control checks).

Collaboration & Learning

• Work closely with engineering and product teams to integrate security into day-to-day development.
• Learn from senior security engineers and actively develop your skills in cloud security, application security, and infrastructure security.

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent practical experience.
• 2–3 years of experience in a Security Engineer, Software Engineer, Infrastructure Engineer, or similar role with security exposure.
• Foundational understanding of security concepts such as authentication, authorisation, encryption, and secure communication.
• Familiarity with common web and cloud security risks (e.g., OWASP Top 10, IAM misconfigurations).
• Basic experience with AWS and an interest in cloud security best practices.
• Working knowledge of operating systems, networking fundamentals, and software development workflows.
• Strong problem-solving skills and a willingness to learn and grow in a fast-moving environment.

Benefits

• Competitive salary and an equity sign-on bonus
• Biannual bonus scheme
• Fully expensed tech to match your needs
• Paid annual leave
• Breakfast and dinner allowance for office based employees

XML job scraping automation by YubHub

As an Agile Dev Team Member III, you will be responsible for performing daily development activities such as coding, configuration, debugging, and defect fixes using Task & User Story & Feature concepts in agile. You will also support DevOps processes through code base management using GIT, Jenkins, Sonar, and support security and code quality by using tools such as Sonar, Dynatrace for scanning of code to ensure quality and no security flaws.

Responsibilities:

• Perform daily development activities such as coding, configuration, debugging, and defect fixes using Task & User Story & Feature concepts in agile
• Support DevOps processes through code base management using GIT, Jenkins, Sonar
• Support security and code quality by using tools such as Sonar, Dynatrace for scanning of code to ensure quality and no security flaws
• Resolve production security flaws
• Support production issues/outages ad hoc as needed
• Maintain code base documentation and organization
• Research, analysis, design processes within the team and supporting other agile teams on the train
• Participate in scheduled meetings within the larger team
• Follow best practices in development and work with Architecture in ensuring cohesive design

Requirements:

• Strong analytical skills
• Code analysis
• Understanding structure
• Strong communication and writing skills
• Application Security
• Root Cause Analysis
• Agile Software Development
• SDLC Automation
• MS Visual Studio
• MS .NET
• MS .NET CORE
• SQL
• Office Suite
• Test Automation Tools
• Front-End Development (Ex. Angular, Blazer)
• Database - SQL or Oracle
• GITHub - Code Base Management

Benefits:

• Competitive compensation and benefits package
• Comprehensive benefits package
• Career development and training opportunities
• Flexible work arrangements (remote and/or office-based)
• Dynamic and inclusive work culture within a globally renowned group
• Private Health Insurance
• Pension Plan
• Paid Time Off
• Training & Development

Note: Benefits differ based on employee level.

XML job scraping automation by YubHub

XML job scraping automation by YubHub

This is an excellent opportunity for a Support Bar Analyst (IT Help Desk) with excellent communication and leadership skills, looking to make an impact within a fast-paced and dynamic environment. The role reports to the Head of Local Support and involves working closely with colleagues in other offices to deliver a seamless service to our users.

Responsibilities:

• Act as front-line support for local and/or time zone-based employees
• Serve as the main point of contact for our customers via email, walk-ups, and chat support
• Respond promptly and professionally to customer inquiries and troubleshoot issues related to our products and services
• Utilize relevant software and databases to effectively diagnose, track, and resolve customer issues and address complaints
• Maintain accurate records, including call logs and ticketing systems, to track customer interactions and issue resolution
• Collaborate with other teams to identify and resolve technical issues
• Stay up-to-date with industry trends and provide input on continuous improvement to the Helpdesk and customer service workflows
• Identify and escalate issues requiring urgent attention to the appropriate parties
• Ensure SLAs are met and that our internal users are provided with an exceptional user experience
• Ensure that all IT assets in the local office are managed and maintained to a high standard
• Ensure compliance with all relevant regulations and legislation related to workplace services, health and safety, and environmental management

Requirements:

• Global experience within a business services environment and ideally video games development and/or working in a highly technical development environment
• Strong knowledge of first and second-line support operations
• Desirable knowledge of ServiceNow and industry trends
• Excellent relationship-building skills
• Ability to work in a matrix management environment
• Proven work experience in a customer service or Helpdesk role
• Excellent communication and active listening skills with a customer-first mindset
• Ability to operate effectively in a dynamic, fast-paced environment and multitask effectively
• Ability to learn quickly and adapt to new software applications and technologies
• Excellent problem-solving skills
• Strong customer service orientation, with a focus on delivering high-quality services to employees and stakeholders

Skills and experience desired:

• Manage the deployment, configuration, and maintenance of mobile devices, including tablets, smartphones, consoles, Meeting Room solutions (Intune, Autopilot, EMS, MDM, VDI)
• Manage the deployment, configuration, and maintenance of user peripherals
• Provide 3rd-line support for mobility applications to team members, customers
• Helping Keywords gain compliance in Local and global standards (ISO 27001, Cyber Essentials Plus)
• Collaborate with other stakeholders to ensure application security and data privacy are maintained
• Evaluate emerging technologies and provide recommendations for improving mobility services by closely working with OEMs and Vendors
• Develop and maintain technical documentation related to mobility solutions, providing training where needed to other departments on mobility solutions
• Basic knowledge of ITIL process

XML job scraping automation by YubHub

The Application Security team at Anthropic is at the forefront of building security into every phase of the software development lifecycle. In this hands-on technical role, you will partner closely with software engineers and researchers to ensure security is a core consideration from initial design through implementation.

You will lead threat modeling and secure design reviews to proactively identify and mitigate risks early, and help with continuous risk assessment. You will build tools and systems to support developers shipping code securely, adhering to secure coding best practices.

Your insights will shape our tooling, detection capabilities, and defenses against emerging threats to AI/ML. You'll develop the standards, processes, and educational resources that enable all Anthropic engineers to be security champions.

Responsibilities:

• Help secure AI products and internal tools that are introducing industry-novel security risks and pushing established security boundaries
• Lead “shift left” security efforts to build security into the software development lifecycle
• Conduct secure design reviews and threat modeling. Identify and prioritise risks, attack surfaces, and vulnerabilities
• Develop tooling to scale security code reviews and respond to developer questions, including advising developers on remediating vulnerabilities and following secure coding practices
• Manage Anthropic's vulnerability management program, including integrating data ingestion pipelines, coding logic to prioritise vulnerability fixes, supporting teams remediating vulnerabilities and developing automated systems at scale
• Oversee Anthropic's bug bounty program. Set scope, validate submissions, perform root cause analysis, coordinate remediation with engineering teams, and award bounties. Cultivate relationships with the ethical hacker community
• Collaborate closely with product engineers and researchers to instill security best practices. Advocate for secure architecture, design, and development
• Develop and document security policies, standards, and playbooks. Conduct security awareness training for engineers

You may be a good fit if you:

• Have 5+ years of hands-on experience in application and infrastructure security, including securing cloud-based and containerized environments
• Strong proficiency in at least one programming language (e.g., Python, Rust, Go, Java)
• Lead with empathy, a collaborative spirit, and a learning mindset to work cross-functionally with engineers of all levels to build security into the software development life cycle
• Leverage creative and strategic thinking to reduce risk through secure design and simplicity, not just controls
• Possess broad security knowledge to connect the dots across domains and identify holistic ways to decrease the overall threat surface
• Are keen to distill complex security concepts into clear actions and drive consensus without direct authority
• Embody a proactive mindset to thread security throughout the product lifecycle through activities like threat modeling, secure code review, and education
• Have a strong grasp of offensive security to anticipate risks from an adversary's perspective, not just check compliance boxes
• Bring experience with modern application stacks, infrastructure, and security tools to implement pragmatic defenses
• Are practiced at collaborating cross-functionally and effectively balancing security requirements with business objectives
• Advocate for security fundamentals like least privilege, defence-in-depth, and eliminating complexity that could sub-linearly scale security through smart design

Strong candidates may also:

• Hands-on technical expertise securing complex cloud environments and microservices architectures leveraging technologies like Kubernetes, Docker, and AWS / GCP
• Exposure to offensive security techniques like vulnerability testing, bug bounty, pen testing, and red team exercises
• Familiarity with AI/ML security risks such as prompt injection, data poisoning, model extraction, etc. and mitigations
• Experience building security tools, applications, and automated tools
• Solid foundational knowledge of both software and security engineering principles and are keen to continue learning
• Excellent communication skills, able to distill complex security topics for broad audiences
• Worked and thrived in fast-paced environments, and comfortable navigating ambiguity

The annual compensation range for this role is $300,000 - $405,000 USD.

XML job scraping automation by YubHub

Vendor Security Program Manager

Location

San Francisco; New York City; Seattle; Washington, DC

Employment Type

Full time

Location Type

Hybrid

Department

Security

Compensation

• SF, Seattle and NYC: $207K – $335K • Offers Equity
• Zone A: $186K – $301.5K • Offers Equity
• Zone B: $165.6K – $268K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

About the Team

The Vendor Security team sits at the core of our mission to ensure our technology benefits humanity safely and securely. We provide security assurances and robust compliance frameworks for our technology, people, and products. Our mission is to build trust with the world in our products and company. Our work is technical yet highly operational, strategically aligning with security and engineering teams to navigate and mitigate risks proactively. We prioritize impact, enable innovation, and foster a culture of continuous compliance and security awareness.

About the Role

As a Program Manager within the Vendor Security team, you will play a crucial role in protecting our organisation against external risks posed by suppliers, vendors, partners, and hardware manufacturers. Your responsibilities will include conducting comprehensive security assessments, building a program to manage global supply chain and vendor risks, and driving security initiatives across all of our third-party relationships. You will be analytical, detail-oriented, and proactive, capable of translating complex security evaluations into clear, actionable strategies.

The role is expected to operate with a strong point of view on risk. You will be responsible not only for identifying and documenting vendor and supply-chain risk, but for helping the company make informed trade-offs between speed, scale, and security. This role requires exceptional organisational skills, the ability to effectively communicate across different business functions, and a strong commitment to operational excellence in a dynamic environment.

This role may be based out of one of our US offices (San Francisco, Seattle, NYC or DC.) We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

In this role, you will:

• Be the interface for Security to the rest of the organisation for vendors.

• Own vendor security risk decisions and escalation paths, including clearly documenting risk acceptance, mitigation plans, and executive-level trade-offs when security requirements cannot be fully met.

• Conduct deep, evidence-based security assessments of third parties, including review of architectures, configurations, controls, logs, and operational practices - moving beyond questionnaires and attestations to validate real-world security posture of vendors.

• Assess and manage security risk across a diverse vendor landscape, including SaaS providers, cloud and infrastructure partners, hardware manufacturers, chip suppliers, and other strategic or high-impact suppliers.

• Develop, build, and continuously improve the vendor security program and security supply chain risk management function at OpenAI.

• Develop, propose, and implement effective controls to mitigate identified vendor risks.

• Build and maintain collaborative partnerships with key internal stakeholders including Infrastructure Security, Product, Engineering, Legal, Procurement, and Threat Intelligence to ensure comprehensive security coverage of the vendor and third-party supply chain.

• Streamline and automate vendor and supply chain security processes to increase efficiency and reduce manual overhead.

You might thrive in this role if you have:

• Proven experience conducting third-party or supply chain security assessments, including building and scaling a vendor management security program.

• An in-depth understanding of information security principles and controls, including data protection, access management, proactive and reactive security measures, and application security.

• Comfort operating in ambiguity, with the ability to form defensible security opinions even when information is incomplete or uncertain.

• Strong analytical and problem-solving skills, with the ability to identify and mitigate complex security risks.

• Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and stakeholders.

• Strong organisational and project management skills, with the ability to prioritise tasks and manage multiple projects simultaneously.

• A strong commitment to operational excellence and continuous improvement, with a focus on delivering high-quality results in a dynamic environment.

• A passion for security and a desire to make a meaningful impact in the field.

XML job scraping automation by YubHub

Location

New York City

Employment Type

Full time

Location Type

Hybrid

Department

Security

Compensation

• $260K – $385K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance related bonus for eligible employees and benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick and safe time (1 hour per 30 hours worked)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

About the Team

Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI’s technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture.

About the Role

As a Security Engineer, Application Security you will be responsible for identifying and mitigating security vulnerabilities within software applications through building security tools, code reviews, penetration testing, and security assessments.

We’re looking for people who will work closely with development teams to ensure secure coding practices are integrated throughout the software development lifecycle, preventing security risks before they emerge. You will also provide security guidance to developers and other stakeholders, fostering a culture of security awareness within the organization.

The role is preferred to be based in San Francisco, Seattle or New York City but may consider remote work. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

In this role, you will:

• Perform Security Assessments: Conduct regular security assessments, code reviews, and penetration testing to identify vulnerabilities in applications and software.

• Develop and Implement Security Tools: Design, develop, and implement security tools, frameworks, and methodologies to protect applications against security threats.

• Collaborate with Development Teams: Work closely with development teams to ensure security best practices are integrated throughout the software development lifecycle (SDLC), including secure coding guidelines.

• Threat Modeling and Risk Assessment: Conduct threat modeling and risk assessments to proactively identify potential risks and develop mitigation strategies.

• Vulnerability Management: Track, analyze, and manage vulnerabilities in applications, providing guidance and support for remediation efforts.

• Incident Response Support: Assist in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and documentation of incidents.

• Stay Current on Security Trends: Continuously stay updated on the latest security threats, vulnerabilities, and technologies to enhance security measures in applications.

You might thrive in this role if you:

• Extensive experience in information security, cybersecurity, or a related field, with a significant portion of that experience in leadership or management roles.

• Deep understanding of security technologies, tools, and best practices, including experience with secure coding practices, threat modeling, risk assessments, and incident response.

• Experience in application security, software development, or related areas with a strong understanding of secure coding practices and application security frameworks.

• Proficiency in programming languages (such as Python, Java, C++, etc.), knowledge of security tools (e.g., Burp Suite, OWASP ZAP), and familiarity with security protocols and encryption methods.

• Strong written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical audiences

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve this, we are building a team of talented engineers, researchers, and designers who share our vision and values.

XML job scraping automation by YubHub

Security Engineer, Application Security

Location

San Francisco

Employment Type

Full time

Location Type

Hybrid

Department

Security

Compensation

• $260K – $385K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance related bonus for eligible employees and benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick and safe time (1 hour per 30 hours worked)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

About the Team

Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI’s technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture.

About the Role

As a Security Engineer, Application Security you will be responsible for identifying and mitigating security vulnerabilities within software applications through building security tools, code reviews, penetration testing, and security assessments.

We’re looking for people who will work closely with development teams to ensure secure coding practices are integrated throughout the software development lifecycle, preventing security risks before they emerge. You will also provide security guidance to developers and other stakeholders, fostering a culture of security awareness within the organization.

The role is preferred to be based in San Francisco, Seattle or New York City but may consider remote work. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

In this role, you will:

• Perform Security Assessments: Conduct regular security assessments, code reviews, and penetration testing to identify vulnerabilities in applications and software.

• Develop and Implement Security Tools: Design, develop, and implement security tools, frameworks, and methodologies to protect applications against security threats.

• Collaborate with Development Teams: Work closely with development teams to ensure security best practices are integrated throughout the software development lifecycle (SDLC), including secure coding guidelines.

• Threat Modeling and Risk Assessment: Conduct threat modeling and risk assessments to proactively identify potential risks and develop mitigation strategies.

• Vulnerability Management: Track, analyze, and manage vulnerabilities in applications, providing guidance and support for remediation efforts.

• Incident Response Support: Assist in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and documentation of incidents.

• Stay Current on Security Trends: Continuously stay updated on the latest security threats, vulnerabilities, and technologies to enhance security measures in applications.

You might thrive in this role if you:

• Extensive experience in information security, cybersecurity, or a related field, with a significant portion of that experience in leadership or management roles.

• Deep understanding of security technologies, tools, and best practices, including experience with secure coding practices, threat modeling, risk assessments, and incident response.

• Experience in application security, software development, or related areas with a strong understanding of secure coding practices and application security frameworks.

• Proficiency in programming languages (such as Python, Java, C++, etc.), knowledge of security tools (e.g., Burp Suite, OWASP ZAP), and familiarity with security protocols and encryption methods.

• Strong written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical audiences

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve this, we are committed to advancing the state-of-the-art in AI research and development.

XML job scraping automation by YubHub

Location

Seattle

Employment Type

Full time

Department

Security

Compensation

• $260K – $385K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance related bonus for eligible employees and benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick and safe time (1 hour per 30 hours worked)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

About the Team

Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI’s technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture.

About the Role

As a Security Engineer, Application Security you will be responsible for identifying and mitigating security vulnerabilities within software applications through building security tools, code reviews, penetration testing, and security assessments.

We’re looking for people who will work closely with development teams to ensure secure coding practices are integrated throughout the software development lifecycle, preventing security risks before they emerge. You will also provide security guidance to developers and other stakeholders, fostering a culture of security awareness within the organization.

The role is preferred to be based in San Francisco, Seattle or New York City but may consider remote work. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

In this role, you will:

• Perform Security Assessments: Conduct regular security assessments, code reviews, and penetration testing to identify vulnerabilities in applications and software.

• Develop and Implement Security Tools: Design, develop, and implement security tools, frameworks, and methodologies to protect applications against security threats.

• Collaborate with Development Teams: Work closely with development teams to ensure security best practices are integrated throughout the software development lifecycle (SDLC), including secure coding guidelines.

• Threat Modeling and Risk Assessment: Conduct threat modeling and risk assessments to proactively identify potential risks and develop mitigation strategies.

• Vulnerability Management: Track, analyze, and manage vulnerabilities in applications, providing guidance and support for remediation efforts.

• Incident Response Support: Assist in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and documentation of incidents.

• Stay Current on Security Trends: Continuously stay updated on the latest security threats, vulnerabilities, and technologies to enhance security measures in applications.

You might thrive in this role if you:

• Extensive experience in information security, cybersecurity, or a related field, with a significant portion of that experience in leadership or management roles.

• Deep understanding of security technologies, tools, and best practices, including experience with secure coding practices, threat modeling, risk assessments, and incident response.

• Experience in application security, software development, or related areas with a strong understanding of secure coding practices and application security frameworks.

• Proficiency in programming languages (such as Python, Java, C++, etc.), knowledge of security tools (e.g., Burp Suite, OWASP ZAP), and familiarity with security protocols and encryption methods.

• Strong written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical audiences

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass

XML job scraping automation by YubHub

Microsoft AI are looking for a talented Director of Security to join their team in Redmond. This role sits at the heart of strategic decision-making, turning market data into actionable insights for a company that's revolutionising the AI industry. You'll work directly with leadership to shape the company's direction in the AI market.

About the Role

As the Director of Security, you will be responsible for managing the security posture of Microsoft AI's production estate. This includes protecting some of Microsoft's largest consumer services, including Bing, Copilot, Edge, MSN, and Microsoft Advertising, by driving secure-by-default infrastructure, rigorous operational security practices, and high-confidence vulnerability and configuration management at scale. You will lead a group of security engineers and program managers who partner directly with product engineering, SRE, and platform teams.

Accountabilities

• Assist in the development and implementation of comprehensive security strategies aligned with the Secure Future Initiative (SFI) and beyond.
• Manage a team to deliver technical execution with engineering, set policy and build tooling and automation to enforce Security by Default baselines within Microsoft AI environments.

The Candidate we're looking for

Experience:

• Bachelor's Degree AND 6+ years experience in engineering, product/technical program management, data analysis, or product development OR equivalent experience.

Technical skills:

• Minimum of 8 years of experience in cybersecurity, with a focus on planning and execution of security assurance programs (application and operational).
• 3+ years of experience managing cross-functional and/or cross-team projects.
• Certified Information Systems Security Professional (CISSP) Certification, Security+ Certification, or relevant certification.

Personal attributes:

• Outstanding collaboration and partnership skills, with proven ability to drive results across teams.
• Proficient communication and collaboration skills, with the ability to effectively interact with stakeholders at all levels of the organization.

Benefits

• Competitive salary and benefits package.
• Opportunities for professional growth and development.
• Collaborative and dynamic work environment.
• Access to cutting-edge technology and tools.
• Flexible work arrangements, including remote work options.

XML job scraping automation by YubHub

What you'll do

Design and implement scalable, developer-friendly security solutions that integrate directly into engineering workflows

What you need

• 8+ years of experience in Application Security, Product Security, or similar roles
• Deep understanding of secure software development practices, threat modeling, and common vulnerabilities (e.g., OWASP Top 10)

XML job scraping automation by YubHub

What you'll do

Design, build, and maintain software and automation that improves our detection and response program, including alert enrichment, triage workflows, and investigation tooling.

What you need

• Proficiency in at least one major programming language (such as Python, Go, or TypeScript) and experience building production services, CLIs, or internal tools.

XML job scraping automation by YubHub

What you'll do

You will work closely with Application Security and Red Team engineers, applying an attacker's mindset to AI systems while building scalable security testing, automation, and guardrails that meaningfully reduce risk.

• Perform security testing and reviews of AI-enabled applications, agents, and workflows, including architecture, design, and implementation analysis
• Identify and validate vulnerabilities in LLM-based systems such as data leakage, insecure tool use, authentication gaps, and abuse paths

What you need

• Strong background in application security, offensive security, or a combination of both
• Hands-on experience identifying and exploiting security weaknesses in modern applications and services

XML job scraping automation by YubHub

What you'll do

You search and analyze logs for Indicators of Compromise, create detections, and contribute to incident response investigations.

• You lead and conduct application security investigations across EA products (web, mobile, console, and PC), including static/dynamic testing and architectural review to identify vulnerabilities and validate bad actor activity.

What you need

• You have 5+ years of hands-on application security assessment experience across multiple platforms or programming languages.

XML job scraping automation by YubHub