Gusto, Inc.
Security Engineering role at Gusto, designing safe features with safety & privacy in mind, building security tools & services, 12+ yrs info sec exp reqd.
GuidePoint Security
As an Application Security Engineer, you will work with tools like Burp Suite Pro and Invicti to identify and remediate vulnerabilities, integrate security tools into CI/CD pipelines, and collaborate with teams to enhance application security practices. You'll need strong technical skills in secure development lifecycles and excellent communication abilities.
Binance
Application Security Engineer at Binance: Collaborate on mobile security, blockchain security, and AI tools
ExtraHop
Senior Product Security Engineer with experience in modern software development practices and securing web applications, APIs, and software systems.
GuidePoint Security
Assist in delivering Application Security services at GuidePoint Security by performing DevSecOps assessments, architecture reviews, threat modeling, and designing secure pipelines. Contribute to client engagements, deliver comprehensive reports, and strengthen application security capabilities while staying updated with industry trends and tools.
Binance
Mobile Application Security Engineer - Penetration Test at Binance: design, develop & maintain mobile apps with security functionality.
Wealthsimple
Join Wealthsimple as an Application Security Engineer and help secure our applications with your expertise in tooling, architecture, and offensive security testing. Collaborate with teams to mitigate risks and enhance security practices while enjoying top-tier benefits and a supportive remote-first culture.
WorkOS
Join WorkOS as a Security Engineer to enhance our security infrastructure, ensuring the safety of authentication and identity solutions for thousands of SaaS customers. Lead security projects, mentor teams, and implement best practices using tools like SCA, SAST, DAST, and CNAPP.
Wealthfront
Join Wealthfront's Security Engineering team as a security-minded engineer to build and mature security solutions in a fast-growing fintech organization.
Gitlab
Enhance security posture by developing features for GitLab's products like Dependency Scanning and Container Scanning. Collaborate with cross-functional teams to maintain high quality in a fast-paced environment. Enjoy remote work and comprehensive benefits including equity compensation and home office support.
CoinsPaid
Join CoinsPaid as Security Infrastructure Engineer and enhance secure development practices with logging systems, Hashicorp Vault, and DevSecOps tools.
GuidePoint Security
Security Engineer for medium to very large environments with expertise in firewalls, IDS/IPS solutions, malware prevention, routing & switching architectures, cloud edge security, and more.
Gitlab
Enhance GitLab's security capabilities by researching vulnerabilities, developing proofs of concept, curating databases, and improving detection products. Collaborate with teams to build secure solutions.
Gitlab
Enhance GitLab's security detection capabilities by conducting vulnerability research, improving SAST/DAST tools, curating advisory databases, and collaborating on product development in an all-remote environment.
Curai
Lead Security Engineer at Curai Health: Drive security initiatives, implement frameworks like ISO 27001/2 and NIST CSF, ensure HIPAA/SOC-2 compliance. Collaborate with engineering teams to maintain secure infrastructure in a remote-first environment.
Gradient AI
Staff Security Engineer at Gradient AI: Manage overall security posture, lead risk assessments, cloud security, and implement best practices.
Cyderes
Cybersecurity Principal Security Analyst - Delivering security solutions and exceptional client experiences for managed service customers.
Binance
Smart Contract Security Engineer (Security Audit) at Binance
Phantom
Join Phantom as a Security Engineer and contribute to the development of a secure self-custodial wallet for the crypto ecosystem.
Scribd
Senior Security Engineer at Scribd: Configure and integrate security tooling, analyze security findings, and perform incident response.
Gusto, Inc.
The Security Engineering role at Gusto involves designing products with safety and privacy in mind, working closely with product, engineering, infrastructure, legal, and privacy teams to protect customers. The team provides security guidance, threat modeling, and secure coding practices, while also building security tools and services. This is a long-term relationship-focused position that requires 12+ years of experience in information security and hands-on software development experience. Gusto offers competitive compensation, including $225,000-$285,000 per year, stock equity, and flexible remote work options. The role involves leading secure code training instruction and implementing application security tools.
About the role:
The Security Engineering role works with product and engineering leads to design products and features with the safety and privacy of our customers in mind. Candidates for this role will be joining a team focused on building long-term relationships between the Security team and internal stakeholders across the company, providing guidance on security risks and mitigation, and secure development architecture. More about Security Partners on the Gusto blog.
The Product Security group helps Gusto move faster, securely. We’re a team of engineers who work to enable other teams to build products as quickly as possible while continuing to protect our customers. We support developers in shipping secure code by building security tools and services, providing security training and expertise, and advocating for best practices in authentication, authorization, and safe data handling across the company.
Here’s what you’ll do day-to-day:
Work alongside product, engineering, infrastructure, legal, and privacy teams to design safe features to protect our customers.
Review and threat model new systems, products, and features.
Provide detailed security advice and risk assessments, including architectural direction.
Develop guidelines and recommendations for secure coding practices.
Lead and manage secure code training instruction.
Implement and deploy application security tools.
Develop long-term relationships with product development and engineering teams.
Here’s what we're looking for:
12+ years of experience in information security, especially application security, product security, and/or security partnership.
5+ years of hands on software development experience
Ability to work with engineers to balance security risks, customer privacy, and business requirements.
Experience building software. We primarily use Ruby, JavaScript, Python, and Kotlin.
Our cash compensation amount for this role is targeted at $225,000/yr to $245,000/yr in Denver & most remote locations, and $265,000/yr to $285,000/yr in New York & San Francisco Bay Area. Stock equity is additional. Final offer amounts are determined by multiple factors including candidate experience and expertise and may vary from the amounts listed above.
