Software Engineer, Product Security
About the Role
As a Security Engineer on our Engineering team, you will play a key role in building and scaling secure systems across our product and infrastructure. You’ll collaborate closely with software engineers, cloud operations, and product teams to embed security into everything we build—from design and development to deployment and operations. You’ll help identify risks early, propose pragmatic mitigations, and champion secure practices across the engineering organization.
This is a hands-on, engineering-focused role where your work will directly impact the safety and resilience of the systems our customers rely on every day. This is a fully remote role open to candidates based in Latin America, South America, or the Caribbean.
Responsibilities
- Design and implement security controls and best practices across the software development lifecycle, infrastructure, and deployment pipelines
- Collaborate with engineering teams to identify, assess, and mitigate security risks in applications, services, and infrastructure
- Conduct threat modeling, code reviews, and architectural reviews to ensure secure design and implementation of systems
- Monitor logs and telemetry from cloud systems to detect suspicious activity and support incident response
- Lead or contribute to security incident investigations, root cause analysis, and postmortems
- Build and maintain automated tools to detect vulnerabilities in code, dependencies, and cloud infrastructure
- Champion security improvements in CI/CD pipelines and deployment practices, ensuring secure-by-default environments
- Partner with DevOps/Cloud Operations to improve secrets management, access controls, and infrastructure hardening
- Maintain and evolve incident response and disaster recovery plans, ensuring preparedness and resilience
- Provide mentorship, training, and guidance to engineers on secure coding and architectural patterns
- Stay current with evolving security threats, tools, and industry trends, and proactively propose improvements to protect systems and data
- Communicate security risks and trade-offs to technical and non-technical stakeholders
- All other duties as assigned
Skills & Qualifications
- Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or a related field preferred
- 5+ years of experience in a Security Engineer, DevSecOps, or Software Engineering role with security responsibilities
- Strong understanding of secure software development practices and infrastructure security in cloud-native environments including Kubernetes (e.g., AWS, GCP, or Azure)
- Familiarity with modern web and API security concepts (e.g., OWASP Top 10, authentication, authorization, input validation)
- Experience with application scanning tools, static/dynamic analysis, and/or container security
- Proficiency with scripting or programming languages (e.g., Python, Go, JavaScript)
- Preferred certifications include CISSP, OSCP, or relevant cloud security credentials (e.g., Certified Kubernetes Security Specialist (CKS) )
- Familiarity with SaaS environments and tools such as Okta, Google Workspace, Slack, and GitHub
- Acceptable background check