Senior Product Security Engineer – Customer Platform

🕒 Maio 15

🇺🇸 Estados Unidos – Remoto (EUA)

💵 $180.000 - $230.000 / ano

⏰ Tempo Integral

🟠 Sênior

👮‍♂️ Cibersegurança / Engenheiro de Segurança

🦅 Patrocina Visto H1B

Esta empresa já patrocinou vistos H1B no passado.

Candidatar-se

Encontrar Vagas Remotas Similares

Receber Emails de Vagas Remotas

📊 Verifique sua pontuação de currículo para esta vaga

Melhore suas chances de conseguir uma entrevista verificando sua pontuação de currículo antes de se candidatar.

Enviar Currículo

Valon

SiteLinkedInTodas as Vagas

51 - 200 funcionários

Fundada em 2019

💸 Finanças

💳 Fintech

🏠 Imobiliário

Finance • Fintech • Real Estate

A Valon é uma prestadora de serviços hipotecários residenciais, credora e agência de seguros focada em capacitar proprietários de imóveis. A empresa oferece uma ampla gama de serviços para gerenciar hipotecas, fornecer empréstimos e oferecer soluções de seguros para proprietários de imóveis. A Valon busca simplificar o processo de compra de imóveis por meio da facilidade, segurança e expertise financeira, utilizando tecnologia moderna para oferecer serviços personalizados e eficientes. Com a missão de transformar o setor tradicional de hipotecas, a Valon oferece plataformas convenientes e intuitivas para gerenciar hipotecas e acessar recursos financeiros, buscando um serviço ao cliente de alta qualidade e taxas competitivas.

Descrição

• Define and evolve product security architecture for Valon’s multi-tenant SaaS platform • Support secure implementation of customer-facing security capabilities in conjunction with Engineering (e.g., authentication / authorization models, identity integration, access controls, audit and logging, encryption / key management) • Build and maintain security reference architectures and standardized secure design patterns for product teams • Lead threat modeling, security design and code reviews for new features, services, and major architectural changes • Design and build AI-assisted workflows that automate and accelerate product security areas • Evaluate AI risks across internal and external applications • Collaborate with Product, Engineering, Data, Compliance, Legal, and other teams to identify and drive mitigation for product and data security risks • Support vulnerability triage, remediation strategy, and root cause analysis for product security issues • Support security compliance and regulatory needs (e.g., SOC 2, CCPA, NYDFS, FTC), including customer-facing security discussions and due diligence • Develop, implement, and enforce security policies, standards, and procedures • Support operational activities including security advisory and consultative reviews, incident response, issue remediation, and other security processes

🎯 Requisitos

• Focused experience in product security, application security, or security architecture roles, with ownership of security design for SaaS platforms including multi-tenancy and customer-facing security capabilities. • Strong background in cloud security and modern infrastructure, with hands-on experience securing cloud environments (GCP preferred). • Experience in SaaS IAM and tenant security (e.g., authentication/authorization, RBAC, SSO/SAML/OIDC, SCIM, MFA, audit logs). • Expertise in designing secure platform controls (e.g., APIs, service-to-service auth, encryption/KMS/CMEK, logging/monitoring) • Demonstrated ability to build and maintain security reference architectures. • Strong experience leading threat modeling and security design reviews including security-focused code reviews. • Applied knowledge with industry security and compliance frameworks (OWASP, NIST, CIS, SOC 2/ISO 27001 concepts) • Highly hands-on engineer with proven ability to operate autonomously, drive multiple complex cross-functional efforts, and influence independently. • Excellent communication and collaboration skills, including the ability to explain complex security concepts to both technical and non-technical stakeholders. • Prior software engineering experience and/or coding ability (Python) is preferred. • Experience working in high-growth or startup environments is a plus. • 5+ years in security engineering roles focused on product, application, and/or cloud security • Bachelor's degree in Information Security, Computer Science, Technology or related field • Relevant security certifications (e.g., CISSP, CISM, CCSK, CCSP or similar)

🏖️ Benefícios

• Competitive salary with a meaningful stake in the company via equity, and 401k plan • We’ll invest in your physical and mental well-being with comprehensive medical, dental, & vision benefits • We offer pre-tax deductions for public transportation, rideshare services, and parking expenses to make your commute more affordable and convenient • Company wide orientation for you to successfully onboard and other learning & development opportunities including regular review cycles that feature 360 degree feedback • Quarterly budgets for team and company outings. Use it for team swag, cooking classes, or team dinners! • Flexible paid time off, sick days, and 11 company holidays • 12 weeks off for both birthing and non-birthing parents - fully paid so you can focus your energy on your newest addition