Product Security Engineer Remote Jobs

3 Results


Principal Product Security Engineer

TideUnited Kingdom, Remote

Tide is hiring a Remote Principal Product Security Engineer

Who are Tide:

At Tide, we’re on a mission to save businesses time and money. We’re the leading provider of UK SME business accounts and one of the fastest-growing FinTechs in the UK. Using the latest tech, we design solutions with SMEs in mind and our member-driven financial platform is  transforming the business banking market. Not only do we offer our members business accounts and related banking services, but also a comprehensive set of highly connected admin tools for businesses. 

Tide is about doing what you love. We’re looking for someone to join us on our exciting scale up journey and be a part of something special. We are wanting passionate Tideans to drive innovation and help build a best-in-class platform to support our members. You will be comfortable in ambiguous situations and will be able to navigate the evolving FinTech environment. Imagine shaping how millions of Tide members discover and engage with business banking platforms and building this on a global scale. 

What we’re looking for:

First and foremost you will be passionate about security and secure application design. You will love helping engineers create more secure web and mobile applications. You will be comfortable explaining security issues and concerns to product owners, engineers, area VPs and executives and love the feeling you get when this results in them releasing a more resilient product. You will be a keen proponent of using automation in software build and deployment pipelines to ensure that any new release is tested for security bugs and bug classes before it hits production. You will be a keen follower of all things Infosec and constantly be on the lookout for ways to apply new industry trends and tools to your day-to-day role.

As a Principal Product Security Engineer you’ll be:

  • Lead the Product Security team by example
  • Defining the Product Security team roadmap and long term strategy 
  • Nurturing and developing other engineers in the team
  • Building security into our CI\CD pipeline
  • Owning and defining Tide’s threat modelling methodology, and embedding this across Tide’s engineering community
  • Building on and improving Tide’s bug bounty program
  • Performing productsecurity design evaluations and code reviews, and providing subject matter expertise around these topics
  • Owning and nurturing the relationship between Information Security and Engineering, and developing good working practices between the two teams
  • Improving Tide’s engineering standards in line with industry best practices by embedding a secure by default approach into all stages of the development lifecycle
  • Evaluating, implementing and managing 3rd party application security tools that complement Tide’s existing technology stack
  • Developing a repository of tailored productsecurity training content for consumption by Tide’s engineering community
  • Balancing information security risk with product feature advancement, and incorporating the use of best-practice risk management methodology within the development process

What makes you a great fit: 

  • You have software engineering experience in an agile environment
  • You are able to intuitively find flaws in software and can effectively communicate how to fix them
  • You have the ability to think like an attacker and use that context to develop threat models
  • You can enable other engineering teams to find flaws before they are introduced into production
  • You have technical knowledge in one of the following: cloud security, web application security, mobile security
  • You have knowledge of secure coding and best practices
  • You have a hands-on attitude and the ability to drive solutions to completion
  • You have experience with OWASP frameworks, static & dynamic analysis, and common exploitation methods
  • You may have knowledge of OWASP SAMM
  • You may have experience working within the Fintech sector
  • You may have worked within a fast scaling business
  • You may have familiarity with fuzzing as a way to find bugs

What you’ll get in return: 

  • Competitive salary 
  • Group Life Insurance 
  • Vitality Health Insurance, with a proactive focus on mental and physical wellbeing
  • 24/7 Employee Assistance Programme
  • 25 days holiday with the ability to buy extra days
  • We invest in your development with a £1,000 professional L&D budget per year
  • Access to ‘salary sacrifice’ benefits such as Cycle to Work scheme and pension contribution
  • Spacious brand-new office in Liverpool street with an all-day snacks bar
  • Enhanced family-friendly leave
  • 3 days for L&D or volunteering time off per year
  • Flexible working options
  • Sabbatical leave 
  • Share options

Tidean Ways of Working 

At Tide, we’re Member First and Data Driven, but above all, we’re One Team. Our Working Out of Office (WOO) policy allows you to work from anywhere in the world for up to 90 days a year. We are remote first, but when you do want to meet new people, collaborate with your team or simply hang out with your colleagues, our offices are always available and equipped to the highest standard. We offer flexible working hours and trust our employees to do their work well, at times that suit them and their team.

Tide is a place for everyone

At Tide, we believe that we can only succeed if we let our differences enrich our culture. Our Tideans come from a variety of backgrounds and experience levels. We consider everyone irrespective of their ethnicity, religion, sexual orientation, gender identity, family or parental status, national origin, veteran, neurodiversity status or disability status. We believe it’s what makes us awesome at solving problems! We are One Team and foster a transparent and inclusive environment, where everyone’s voice is heard.




See more jobs at Tide

Apply for this job


Staff / Senior Product Security Engineer

LatticeSF, NYC, Remote

Lattice is hiring a Remote Staff / Senior Product Security Engineer

This is Engineering at Lattice

Lattice’s Engineering team is continuously working to better both our product and our craft. We use a modern, cutting-edge tech stack and love experimenting with new technologies. We strive for maintainable, robust, and performant code. We’re highly collaborative and continuously iterative and work closely with designers and product managers. We prioritize not only great technical architecture but also an amazing product experience.

Lattice is looking for someone to help our product developers build applications that our customers can use with confidence, knowing that at Lattice we work with strong security principles in mind. This role will be a leader on our security engineering team, with the opportunity to work across a breadth of areas including, corp-sec, legal, application security, infrastructure security, and software supply chain. In this role you will be acting as a consultant and partner for product developers. As such, it requires a balance of technical know-how and strong collaboration skills. As a leader on the team, you will also be involved in deciding how work is done and what tools and processes are appropriate, as well as guiding and mentoring other team members.

What You Will Do

  • Mentor and advise product development teams in the area of application security
  • Articulate risks to technical and non-technical audiences alike
  • Assist teams in reproducing, triaging, and addressing application security vulnerabilities
  • Assist in implementation of security processes and automated tooling that prevent classes of security issues
  • Evaluate tools, from SAST/DAST to cloud security analysis tooling, among others
  • Design and implement Typescript code libraries and patterns to improve application security
  • Perform security-focused code reviews
  • Develop best practices and insights with the security team to liaise with the rest of the organization

What You Will Bring to the Table

Experience it’s important for you to have at some level:

  • Software development experience, ideally with Javascript/Typescript, or another programming language such as Python or Ruby
  • Familiarity with secure coding practices
  • Clear communicator with the ability to manage your timelines, identify risks and communicate effectively with team members and management
  • Familiarity with security tools and libraries such as static/dynamic analysis tools and penetration testing tools
  • Familiarity with and ability to explain common security flaws and ways to address them (e.g. OWASP Top 10)
  • Strong understanding and experience with common security libraries, security controls, and common security flaws

Experience that would be helpful:

  • Familiarity with containerization (Docker, containerd, etc) and Kubernetes
  • Experience developing and operating cloud systems in AWS
  • Experience with GraphQL


The estimated annual cash salary for this role is $121,500 - $223,500. This position is also eligible for incentive stock options, subject to the terms of Lattice’s applicable plans

Benefits: The Company offers the following benefits for this position, subject to applicable eligibility requirements: Medical insurance; Dental insurance; Vision insurance; Life, AD&D, and Disability Insurance; Emergency Weather Support; Wellness Apps; Paid Parental Leave, Paid Time off inclusive of holidays and sick time; Commuter & Parking Accounts; Lunches in the Office; Workplace Amenities Stipend, Internet and Phone Stipend; One time WFH Office Set-Up Stipend; 401(k) retirement plan; Financial Planning; Learning & Development Budget; Sabbatical Program; and Invest in Your People Fund

*Note on Pay Transparency:

Lattice provides an estimate of the compensation for roles that may be hired as required by state regulations. Compensation may vary based on (a) location, as Lattice factors in specific location when benchmarking compensation for most roles; (b) individual candidate skills and qualifications; and (c) individual candidate experience.

Additionally, Lattice leverages current market data to determine compensation, so posted compensation figures are subject to change as new market data becomes available. The salary, other compensation, and benefits information is accurate as of the date of this posting. Lattice reserves the right to modify this information at any time, subject to applicable law.

About Lattice

Lattice is on a mission to build cultures where employees and their companies thrive ????. In an age where employees have more choices than ever before, businesses that put employees first are winning ????– and Lattice is building the tools to empower those people-centric companies. Lattice is a people success platform that offers performance reviews, employee engagement surveys, real-time feedback, weekly check-ins, goal setting, and career planning in a way that allows companies to focus on employee development, growth, and engagement – yielding stronger employee retention, performance, and impact to the bottom line ????. Since launching in 2016, we have grown to over 4,600+ customers globally, including brands like Slack, Pinterest, Reddit, and Asana. 

What else does Lattice have to offer? We’re so glad you asked! We invest in our people’s personal and professional growth because that sort of growth begets business impactandpersonal fulfillment ????. We believe in the value of continued learning investments ????and reimbursements. We offer a competitive salary (including equity????) and our benefits are thoughtful. We believe that taking the time for you is important and have a flexible vacation/time-off policy to prove it. We even incorporated Lattice “Recharge Days”????to ensure you’re getting a break every month. Lattice has also implemented a ???? remote-first hybrid model (team-dependent, you work from wherever makes you most comfortable). If that gets you excited, now is the perfect time to join; so bring your appetite for ownership and creation and help Lattice continue to grow! ????

Lattice is committed to equal treatment and opportunity in all aspects of recruitment, selection, and employment without regard to gender, race, religion, national origin, ethnicity, disability, gender identity/expression, sexual orientation, veteran or military status, or any other category protected under the law. Lattice is an equal opportunity employer; committed to a community of inclusion, and an environment free from discrimination, harassment, and retaliation.

By clicking the "Submit Application" button below, you consent to Lattice processing your personal information for the purpose of assessing your candidacy for this position in accordance withLattice's Job Applicant Privacy Policy.


Product Security Engineer

Personio+10 more Munich, Madrid, Remote Germany, London, Dublin, Remote Spain, Remote Ireland, Amsterdam, Remote Netherlands, Remote, Remote UK, Berlin, Barcelona, Remote Berlin, Remote Barcelona

Personio is hiring a Remote Product Security Engineer

The Role

At Personio, your work transforms the way thousands of people experience work every day. Join our Security Team that protects our customer's data. Designing, developing and delivering innovative and high security controls and technology. Be empowered to take ownership of your areas and make an impact on your team, our product, and our internal customers.

Security is a first class priority in Personio, and we are looking for an experienced Security Engineer to join our Product & Engineering organization on the mission to implement best in class security controls and  automation practices. Personio processes highly sensitive data for thousands of customers, and security is a cornerstone of all processes, empowering us to build a fortified foundation for our customer success. Our Security Team is expanding to serve the needs of our customers and our internal engineering teams. You will partner with the engineering teams in a hands-on fashion to ensure that Personio platforms are designed and built securely by building security or advising on it.

You mission

  • Representing the Security team in Personio and developing a deep technical understanding of Personio services and architectures. 

  • Write efficient, maintainable and testable code.

  • Leverage your knowledge to conduct reviews, threat modeling and code reviews on applications and relevant supporting services and tools. 

  • Implement security services, automation, and monitoring tools to protect Personio services: ranging from CI pipelines and ending with security checks in production environments to production microservices that enforce security.

  • Mentor engineering team members on application of security best practices during conceptualization and implementation of new Personio features.

  • Communicate to stakeholders, providing advice on vulnerability remediation and risk mitigation.

  • Create relevant documentation and metrics for your stakeholders and business leaders, and deliver these in a clear, concise manner.

  • Develop innovative and scalable tools, solutions, and processes to detect security threats and threats to data security.

  • Participate in security operations, responding to security incidents and providing security expertise for Personio customers and internal stakeholders. 

What you need to succeed
  • BS in Computer Science, Information Security, or equivalent professional experience.

  • More than three years of experience in areas such as application security, offensive security, systems security, and/or incident response.

  • Strong debugging and problem-solving skills.

  • Clear understanding of the balance between security and user friction.

  • Understanding of security vulnerabilities, threat modeling, attacker exploit techniques, and methods for remediation.

  • Understanding of best practices in security engineering, including secure development, cryptography, security operations, systems security, policy, and incident response.

  • Excellent English written and verbal communication skills and the ability to adapt messaging to executive, technical, and non-technical audiences.

  • Ability to drive technical, security and architectural reviews. 

  • Ability to work with a high degree of autonomy.

  • Knowledge of at least one programming language and scripting skills (E.g: Go,Python, Kotlin, PHP, Bash, Ruby, etc.).

  • Experience with implementation of security tools and practices in modern, cloud-native environments for customer-facing web-based applications.

Why Personio

Aside from our people, culture, and mission, there are a variety of additional benefits that help make Personio a great place to work! Work with us and receive:

  • A competitive compensation package that includes salary, benefits, and pre-IPO equity

  • 28 days of paid vacation, plus another additional day after 2 and 4 years (because we love what we do, but we also love vacation!)

  • 2 Impact Days you can use to have an impact on the environment and society –  one for an individual project of your choice and one for a company-wide initiative! #SocialResponsibility

  • Find your best way to work with our office-led, remote-friendly PersonioFlex! We offer a roughly 50% remote, 50% in-office working framework to suit your needs

  • Annual personal development budget of €1,000 for conferences, courses, books, career coach, etc.

  • Regular company and team events

  • High-impact working environment with flat hierarchies and short decision-making processes

  • Receive generous family leave, child support, mental health support, and sabbatical opportunities with PersonioCares

  • Save money with corporate discounts across brands like Adidas, LG, Bosch, Apple, and more

  • Comprehensive healthcare and dental coverage for each permanent employee (excluding taxes)

  • Invest in your retirement via the Personio Pension Scheme, with a Personio match of up to 5%

  • Subsided Gym membership: Access multiple fitness studios and sports facilities (dependent on the location)

  • A vast choice of working locations: Munich, Berlin, Dublin, Madrid, Barcelona, Amsterdam… All with amenities like professional espresso machines, free drinks and snacks, and indoor and outdoor break spaces

About us
Bring your best. Make your mark. We’re using technology to revolutionize the way HR operates so that we can transform the way millions of people experience work every day. We move fast, challenge the status quo, and support our people as they shape their careers.  
With over 10,000 customers and a team of 1,800 in seven offices across Europe, now is the perfect time to join! We believe in hiring driven people who want to make an impact. So bring your best, and let’s build the future of HR technology together.  
Personio is an equal opportunities employer, committed to building an integrative culture where everyone feels welcomed and supported. We #EmbraceUniqueness and understand that our diverse, values-driven culture makes us stronger. We are proud to have an inclusive workplace environment that will foster your development no matter your gender, civil status, family status, sexual orientation, religion, age, disability, education level, or race.

See more jobs at Personio

Apply for this job