Staff Product Security Engineer (Reviews)

Requirements

• This role is not suited for individuals who rely solely on automated vulnerability scanning. Instead, you must possess a deep technical understanding of web applications, backend services, penetration testing methodologies, and secure design principles
• A successful candidate will have expertise in authentication protocols (SAML, OAuth, OIDC), threat modeling, and a strong desire to automate security processes by building tools that proactively identify vulnerabilities
• The ideal candidate will also demonstrate a deep technical background in assessing AI-integrated software architectures and securing Large Language Models (LLMs) against emerging threats and modern vulnerability classes
• The ideal candidate will have an attacker mindset—the ability to think critically, creatively, and like an adversary when solving security challenges
• Expertise in identifying OWASP Top 10 / CWE Top 25 vulnerabilities through manual code r...