Create an Account
Create an account for powerful AI tools, award-winning courses, and access to our vibrant community.
or
Already have an account?
Create an account for powerful AI tools, award-winning courses, and access to our vibrant community.
Already have an account?
Join 250,000+ professionals and teams at Microsoft, Shopify, and even NASA. đ
Already have an account? Login
Find the best remote jobs. Answer a few questions and we'll deploy a powerful assistant to help you search, create alerts, and more.
1 What roles are you open to?
2 Experience level
3 Work style
Did you know? If memory is enabled, Writing.io can remember your job search preferences and help you to improve your resume, craft customized outreach and more.
Category
Establishes and governs the organization's technology risk management framework, providing independent oversight of technology risks, digital transformation, and data assets.
Welcome to TAL. As a leading life insurer, weâve been protecting Australians for over 150 years. Backed by Daiichi Life, weâre driven by big ambitions and empower to create better products and services.
Together with our Partners, weâre helping millions of Australians live a life filled with choices, options, and freedoms. See the direct impact you make delivering support and financial security with care and expertise. Grow beyond expectations with diverse roles, global connections, and exclusive learning opportunities.
Work with passionate, bright and capable colleagues. Feel inspired by supportive leaders. Collaborate with heart, where flexibility, wellbeing and inclusivity is valued. Together, weâre reimagining insurance.
So, bring a curious mind and an ambition to help us become the progressive, digitally enabled leading insurer.
The Head of Technology Risk is responsible for establishing and governing TALâs Technology Risk Management framework, providing independent oversight of the risks arising from the organisationâs technology landscape, digital transformation programs, and data assets. This role ensures that TALâs technology risk profile is clearly understood, actively managed, and reported within the Boardâs approved risk appetite, and that TAL meets its obligations under APRA CPS 230, CPS 234, and CPS 220.
This is a critical first-line-of-defence leadership role within the Technology function, working in close partnership with the CIO, the broader Technology Leadership Team, Enterprise Risk, and the CISO to embed a strong risk management culture across all technology domains. The Head of Technology Risk is accountable for ensuring that technology risk is identified, assessed, and governed with rigour and transparency, and for providing the CIO and Board with the assurance needed to make confident, risk-informed decisions about TALâs technology investment and operations.
In this role you will:
TAL is one of Australiaâs leading life insurers, committed to inclusion, and supporting the career growth of our diverse workforce. Weâre proud to be:
YouâreâŻalwaysâŻaccountable for your actions. You never give up. You strive to find the best outcomes for customers and partners.âŻAndâŻyou valueâŻworking together to find the best solutions for problems.
As part of the recruitment process, there are several checks which may be conducted to demonstrate your eligibility for a role at TAL including Criminal History, Bankruptcy, Entitlement to Work, Regulatory and Reference Checks.
#LI-Hybrid
Everyone at TAL has a responsibility to do the right thing and is accountable for the way they conduct themselves. Our expectations are that you follow the principles set out in our Code of Conduct when you come to work every day. Risk management is everyoneâs responsibility.
If you are already a TAL employee please apply via the SmartRecruiters button in Workday and navigate to the Employee Portal. This is important to ensure that your application is recorded accurately.
Staff-level threat intelligence analyst leading a research team to investigate threats, produce intelligence reports, and advocate for product improvements across customer networks.
Reports to: Sr. Director of Adversary Tactics
Location: Remote US
Compensation Range: $190,000.00 to $210,000.00Â base plus bonus and equity
What We Do:
Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.
Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. Thatâs why we build our technology in-house and back it with a 24â7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customersâ protection.
Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.
What Youâll Do:
The Huntress Adversary Tactics team has the unique honor of waking up every morning knowing weâre going to make hackers regret targeting our partners and customers. Weâre looking for someone who wants to pour their creativity into researching, hunting, and uncovering threats in our customer networks. Competitive candidates have experience leading a team of researchers across the threat intelligence cycle. Candidates should also have experience creating Threat Intelligence reports, advocating for product enhancements, and public speaking.
Threat Intelligence Analysts aggregate threat data from the previous month and build out reports for our customers. These reports may also be used for marketing and help illustrate the value of what Huntress provides to customers and the community. Threat Intelligence Analysts are also responsible for writing blog posts and marketing materials regarding emerging threat trends. They also work closely with Security Researchers and Analysts to obtain more context about threat data.
Familiarity with product management, scripting/development, incident response, malware analysis, configuration management, and antivirus technologies is an additional way to differentiate yourself.
As you can imagine, success doesnât happen in a vacuum. An effective hunter fosters highly collaborative environments between the Product, Marketing, and Security Operations Center teams to accelerate our mission and secure the 99% of businesses that fall below the enterprise poverty line. This collaboration is needed to produce and prioritize a unified technical vision, ultimately delivering our most impactful features and capabilities.
We defend over 5 million endpoints and 11 million identities, and that number continues to grow each month, across tens of thousands of mid-sized and small business customers. Given this marketâs tighter budgets, itâs impossible to assign human analysts to each client. The Adversary Tactics team addresses this challenge head-on by providing input to build and scale highly automated efficienciesâoften lightly augmented by our Security Operations Analystsâthat make intruders earn every inch of their access while maintaining affordability and healthy gross margins.
Responsibilities:
What You Bring To The Team:
What We Offer:
Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are.
We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.
We do discriminate against hackers who try to exploit businesses of all sizes.
Accommodations:
If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com . Please note that non-accommodation requests to this inbox will not receive a response.
Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process, but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.
#BI-Remote
Design and build automated network security pipelines, tooling, and real-time monitoring systems for cloud-native infrastructure protecting sensitive financial data.
Basic Function
Lumin Digital is standing up a dedicated Network Security function within its Risk Engineering group to protect a growing product suite that handles sensitive financial data across multiple product lines. This role exists because the landscape has shifted: in a cloud-native, infrastructure-as-code environment, network security is no longer about managing router ACLsâit is about designing identity-aware policy enforcement, automating end-to-end change management, and building real-time visibility into network activity across both workforce and hosted contexts.
As the Network Security Software Engineer, you will be a domain authority who breaks network security out of the existing Security Engineering and SOC functions, building the specialization from the ground up. You will architect and deliver automated, lights-off pipelinesâusing agentic development practices and tools like Claude Codeâthat turn around security changes faster, go deeper than port and protocol in our defense-in-depth story, and extend coverage to the agents our teams create, not just the people who create them.
We are looking for a senior practitioner who will teach us what great network security looks like in a modern, highly-automated fintech environmentânot someone who needs to be taught.
Essential Functions and Responsibilities:
Own the architecture, implementation, and continuous improvement of Luminâs network security program across cloud, SD-WAN, and ZTNA layersâdesigning identity-aware, policy-driven controls that secure both human and machine (agent) identities.
Design and deliver fully automated, end-to-end network security change management pipelines that eliminate manual toil, accelerate change velocity, and maintain audit-ready evidence at every step.
Build and operate real-time network telemetry, monitoring, and alerting systems that provide deep visibility into network activity â integrating threat intelligence feeds, cloud connectivity data, and asset inventories into a unified, automated network defense posture.
Engineer production-grade tooling and servicesâincluding firewall rule lifecycle management, policy drift detection, configuration compliance validation, and telemetry enrichmentâusing modern backend languages (Python strongly preferred) and infrastructure-as-code.
Manage and tune network-layer detection capabilities â including IDS/IPS signatures, firewall rules, and WAF configuration â to ensure high-fidelity signals for SOC consumption.
Operate at the leading edge of AI-assisted development: write precise engineering specifications, direct AI coding agents (e.g., Claude Code, Cursor), and review/validate generated output to build secure, lights-off agentic pipelines that the broader team can learn from.
Build and maintain API integrations across the network security technology stack (e.g., Cloudflare, Zscaler, cloud-native controls) with reliability, observability, and audit-readiness designed in from day one.
Support compliance audit and assessment activities â including evidence collection, control testing, and auditor walkthroughs for network security domains; maintain an accurate network diagram inventory documenting topology, segmentation boundaries, and data flows.
Partner with the Security Operations Center, SRE, and IT to ensure network security controls integrate cleanly with existing infrastructure pipelines, CI/CD workflows, and incident response processes; participate in security architecture reviews and contribute to runbook development and operational documentationâraising the network security bar across the engineering organization.
Perform other duties as assigned.
Physical Demands:
While performing the duties of this job, the employee is regularly required to sit; use hands to type, handle, or feel and talk or hear.
Specific vision abilities required by this job include close vision.
Ability to occasionally lift/move up to 25 pounds.
Individuals with a disability who are otherwise able to perform the essential functions of the job may request reasonable accommodation through the Human Resources department.
Supervisory Responsibility:
None.
Position Specifications
Education:
Bachelorâs degree in Computer Science, Information Security, Network Engineering, or a related technical field, or equivalent combination of education and experience.
Preferred certifications: CCNP Security, PCNSE (Palo Alto), AWS Solutions Architect, Cloudflare certifications, or equivalent. Relevant certifications are valued but not required if depth of hands-on experience is demonstrated.
Experience:
5+ years of progressive experience in network security engineering, with a demonstrated track record of designing, automating, and operating network security controls in cloud-native or hybrid environments.
Substantive hands-on engineering experience: you write production code, build integrations, and ship toolingânot just policies and diagrams.
Direct experience with network security platforms such as Cloudflare (WAF, Workers, Rulesets, Terraform provider), Zscaler (ZIA, ZPA), Palo Alto, or equivalent tier-one solutions.
Experience in fintech, banking, payments, or other regulated financial services environments (PCI-DSS, SOC 2, ISO 27001) strongly preferred.
Experience with infrastructure-as-code (Terraform, CloudFormation) and CI/CD-driven infrastructure provisioning.
Knowledge, Skills, & Abilities:
Required:
Deep expertise in network security fundamentals: firewall policy design, micro-segmentation, ZTNA, SD-WAN, DDoS mitigation, traffic analysis, DNS security, and certificate/PKI management.
Hands-on experience with agentic coding tools and workflows (Claude Code, Cursor, or equivalent)âor demonstrated eagerness and aptitude to adopt them as a primary development methodology.
Strong proficiency in at least one backend language (Python strongly preferred; Go or similar considered) with the ability to design and build production-grade APIs, automation frameworks, and integration platforms.
Thorough understanding of identity-aware network securityâdesigning controls that authenticate and authorize not just users but services, workloads, and autonomous agents.
Demonstrated ability to write clear, precise engineering specifications and technical documentation; comfortable operating on a distributed, async-first team where written clarity drives outcomes.
Sound engineering judgment: able to evaluate AI-generated code for correctness, security implications, and maintainability; able to architect systems for reliability and observability.
Strong cross-functional communication skills: able to translate network security requirements into actionable engineering work and influence peers across Security, SRE, and Platform teams.
Preferred:
Experience building real-time telemetry, monitoring, and threat detection pipelines for network traffic.
Familiarity with agent-to-agent authentication, service mesh architectures, and securing AI/ML workload communications.
Experience integrating threat intelligence feeds and automating indicator-of-compromise enrichment into network defense workflows.
Travel:
$145,000 - $175,000 a year
LIFE AT LUMIN DIGITAL
Lumin Digital is a trailblazer in digital banking solutions, driven by a unique approach to technology, service, and people. We empower credit unions and banks by creating cutting-edge digital experiences that continuously serve, engage, and grow their membership base â and as a 100% cloud-native company, weâre purpose-built to unlock the full advantages of the cloud for financial institutions and their users.
At Lumin, we thrive on curiosity and innovation. Our culture is built on trust in our expertise and decisions, respect for diverse perspectives and talents, and boldness in pursuing new ideas. These values shape a workplace where collaboration thrives, ideas flourish, and new possibilities are discovered every day. We encourage our team to explore, experiment, and challenge the status quo â because continuous improvement isnât just a goal, itâs how we operate.
Benefits Include We take care of our people with medical, dental, and vision insurance, a 401(k) with company match, flexible PTO plus 12 paid holidays, paid sick leave, and paid parental and family leave. We also offer a lifestyle spending account, tuition reimbursement, and a cell phone stipend. Additional details are provided during the interview process.
Lumin Digital is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender identity, or any other legally protected basis. For more information, visit lumindigital.com.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Staff analyst leads threat intelligence research, writes customer reports and blog posts on emerging threats, and collaborates with security teams to uncover and document adversary tactics.
Reports to: Sr. Director of Adversary Tactics
Location: Remote US
Compensation Range: $190,000.00 to $210,000.00Â base plus bonus and equity
What We Do:
Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.
Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. Thatâs why we build our technology in-house and back it with a 24â7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customersâ protection.
Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.
What Youâll Do:
The Huntress Adversary Tactics team has the unique honor of waking up every morning knowing weâre going to make hackers regret targeting our partners and customers. Weâre looking for someone who wants to pour their creativity into researching, hunting, and uncovering threats in our customer networks. Competitive candidates have experience leading a team of researchers across the threat intelligence cycle. Candidates should also have experience creating Threat Intelligence reports, advocating for product enhancements, and public speaking.
Threat Intelligence Analysts aggregate threat data from the previous month and build out reports for our customers. These reports may also be used for marketing and help illustrate the value of what Huntress provides to customers and the community. Threat Intelligence Analysts are also responsible for writing blog posts and marketing materials regarding emerging threat trends. They also work closely with Security Researchers and Analysts to obtain more context about threat data.
Familiarity with product management, scripting/development, incident response, malware analysis, configuration management, and antivirus technologies is an additional way to differentiate yourself.
As you can imagine, success doesnât happen in a vacuum. An effective hunter fosters highly collaborative environments between the Product, Marketing, and Security Operations Center teams to accelerate our mission and secure the 99% of businesses that fall below the enterprise poverty line. This collaboration is needed to produce and prioritize a unified technical vision, ultimately delivering our most impactful features and capabilities.
We defend over 5 million endpoints and 11 million identities, and that number continues to grow each month, across tens of thousands of mid-sized and small business customers. Given this marketâs tighter budgets, itâs impossible to assign human analysts to each client. The Adversary Tactics team addresses this challenge head-on by providing input to build and scale highly automated efficienciesâoften lightly augmented by our Security Operations Analystsâthat make intruders earn every inch of their access while maintaining affordability and healthy gross margins.
Responsibilities:
What You Bring To The Team:
What We Offer:
Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are.
We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.
We do discriminate against hackers who try to exploit businesses of all sizes.
Accommodations:
If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com . Please note that non-accommodation requests to this inbox will not receive a response.
Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process, but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.
#BI-Remote
Establishes and governs technology risk management frameworks, provides independent oversight of technology risks, and ensures compliance with regulatory requirements.
Welcome to TAL. As a leading life insurer, weâve been protecting Australians for over 150 years. Backed by Daiichi Life, weâre driven by big ambitions and empower to create better products and services.
Together with our Partners, weâre helping millions of Australians live a life filled with choices, options, and freedoms. See the direct impact you make delivering support and financial security with care and expertise. Grow beyond expectations with diverse roles, global connections, and exclusive learning opportunities.
Work with passionate, bright and capable colleagues. Feel inspired by supportive leaders. Collaborate with heart, where flexibility, wellbeing and inclusivity is valued. Together, weâre reimagining insurance.
So, bring a curious mind and an ambition to help us become the progressive, digitally enabled leading insurer.
The Head of Technology Risk is responsible for establishing and governing TALâs Technology Risk Management framework, providing independent oversight of the risks arising from the organisationâs technology landscape, digital transformation programs, and data assets. This role ensures that TALâs technology risk profile is clearly understood, actively managed, and reported within the Boardâs approved risk appetite, and that TAL meets its obligations under APRA CPS 230, CPS 234, and CPS 220.
This is a critical first-line-of-defence leadership role within the Technology function, working in close partnership with the CIO, the broader Technology Leadership Team, Enterprise Risk, and the CISO to embed a strong risk management culture across all technology domains. The Head of Technology Risk is accountable for ensuring that technology risk is identified, assessed, and governed with rigour and transparency, and for providing the CIO and Board with the assurance needed to make confident, risk-informed decisions about TALâs technology investment and operations.
In this role you will:
TAL is one of Australiaâs leading life insurers, committed to inclusion, and supporting the career growth of our diverse workforce. Weâre proud to be:
YouâreâŻalwaysâŻaccountable for your actions. You never give up. You strive to find the best outcomes for customers and partners.âŻAndâŻyou valueâŻworking together to find the best solutions for problems.
As part of the recruitment process, there are several checks which may be conducted to demonstrate your eligibility for a role at TAL including Criminal History, Bankruptcy, Entitlement to Work, Regulatory and Reference Checks.
#LI-Hybrid
Everyone at TAL has a responsibility to do the right thing and is accountable for the way they conduct themselves. Our expectations are that you follow the principles set out in our Code of Conduct when you come to work every day. Risk management is everyoneâs responsibility.
If you are already a TAL employee please apply via the SmartRecruiters button in Workday and navigate to the Employee Portal. This is important to ensure that your application is recorded accurately.
Leads threat intelligence research, creates customer threat reports, and writes content on emerging security threats and adversary tactics.
Reports to: Sr. Director of Adversary Tactics
Location: Remote US
Compensation Range: $190,000.00 to $210,000.00Â base plus bonus and equity
What We Do:
Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.
Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. Thatâs why we build our technology in-house and back it with a 24â7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customersâ protection.
Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.
What Youâll Do:
The Huntress Adversary Tactics team has the unique honor of waking up every morning knowing weâre going to make hackers regret targeting our partners and customers. Weâre looking for someone who wants to pour their creativity into researching, hunting, and uncovering threats in our customer networks. Competitive candidates have experience leading a team of researchers across the threat intelligence cycle. Candidates should also have experience creating Threat Intelligence reports, advocating for product enhancements, and public speaking.
Threat Intelligence Analysts aggregate threat data from the previous month and build out reports for our customers. These reports may also be used for marketing and help illustrate the value of what Huntress provides to customers and the community. Threat Intelligence Analysts are also responsible for writing blog posts and marketing materials regarding emerging threat trends. They also work closely with Security Researchers and Analysts to obtain more context about threat data.
Familiarity with product management, scripting/development, incident response, malware analysis, configuration management, and antivirus technologies is an additional way to differentiate yourself.
As you can imagine, success doesnât happen in a vacuum. An effective hunter fosters highly collaborative environments between the Product, Marketing, and Security Operations Center teams to accelerate our mission and secure the 99% of businesses that fall below the enterprise poverty line. This collaboration is needed to produce and prioritize a unified technical vision, ultimately delivering our most impactful features and capabilities.
We defend over 5 million endpoints and 11 million identities, and that number continues to grow each month, across tens of thousands of mid-sized and small business customers. Given this marketâs tighter budgets, itâs impossible to assign human analysts to each client. The Adversary Tactics team addresses this challenge head-on by providing input to build and scale highly automated efficienciesâoften lightly augmented by our Security Operations Analystsâthat make intruders earn every inch of their access while maintaining affordability and healthy gross margins.
Responsibilities:
What You Bring To The Team:
What We Offer:
Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are.
We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.
We do discriminate against hackers who try to exploit businesses of all sizes.
Accommodations:
If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com . Please note that non-accommodation requests to this inbox will not receive a response.
Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process, but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.
#BI-Remote
Conducts advanced security research to identify vulnerabilities, develop threat intelligence, and strengthen cybersecurity defenses for a global organization.
Design and develop software solutions for cloud infrastructure security, including DevSecOps automation, access controls, detection systems, and vulnerability management.
All roles at JumpCloudÂŽ are Remote unless otherwise specified in the Job Description.
JumpCloudÂŽ is the AI-powered unified IT management platform designed to secure the modern workforce. By consolidating identity, device, and access management, JumpCloud provides intelligent, secure IT that scales from human users to autonomous AI agents. We help organizations around the globe eliminate complexity and turn AI risk into an optimized advantage, ensuring the right people and agents have secure access to the right resources at all times.
As a Security Engineer on the DevSecOps Team, you will be responsible for designing and developing software solutions for protecting data and infrastructure deployed into the cloud. The Security organization is composed of SecOps, GRC, and DevSecOps functions, but all functions work closely together so you will be exposed to many different security areas.
Infrastructure & Automation: Build and maintain infrastructure, including custom software and vendor integrations, to support Engineeringâs Security needs (Product Security and Infrastructure Security).
Cloud Access Engineering: Design and implement secure, automated self-service workflows for cloud infrastructure access and privilege escalation (AWS/GCP).
Detection & Logging: Manage security infrastructure and SIEM configurations via Infrastructure as Code (Terraform) to ensure a highly auditable detection environment. Build and manage high-volume security data pipelines to ensure forensic logs are retained efficiently and cost-effectively.
Vulnerability & Posture Management: Help design, overhaul, and improve custom vulnerability aggregation systems to streamline remediation efforts. Manage and tune Cloud Security Posture Management (CSPM) and container security platforms to ensure optimal coverage and reduce alert fatigue.
Software Supply Chain & AppSec: Integrate and manage Software Supply Chain Security tooling to protect our developer ecosystem. Partner with Engineering to scale our threat modeling program, including developing automated and AI-assisted threat modeling pipelines built directly into the developer workflow.
4 years of software engineering experience with a strong interest or background in security engineering
Proficient in writing Golang or Python (more than simple scripts)
Experience with either AWS or GCP
Experience with Terraform
Experience with GitHub Actions
Excellent written and oral communication
Views security as an enabler, not an inhibitor to innovation
Results oriented and self driven
High level of integrity
Ownership and accountability
Clear communication
Creative problem solver
Passionate about security
You must be available for on-call (after hours) duties for any internal tools/services this team owns
Serve as a responder in the on-call rotation for security incidents and alert triage.
Where youâll be working/Location:
JumpCloud is committed to being Remote First, meaning that you are able to work remotely within the country noted in the Job Description.
You must be located in and authorized to work in the country noted in the job description to be considered for this role.
Please note: There is an expectation that our engineers participate in on-call shifts. You will be expected commit to being ready and able to respond during your assigned shift, so that alerts donât go unaddressed.
Language:
JumpCloud has teams in 15+ countries around the world and conducts our internal business in English. The interview and any additional screening process will take place primarily in English. To be considered for a role at JumpCloud, you will be required to speak and write in English fluently. Any additional language requirements will be included in the details of the job description.
Why JumpCloud?
If you thrive working in a fast, SaaS-based environment and you are passionate about solving challenging technical problems, we look forward to hearing from you! JumpCloud is an incredible place to share and grow your expertise! Youâll work with amazing talent across each department who are passionate about our mission. Weâre out of the box thinkers, so your unique ideas and approaches for conceiving a product and/or feature will be welcome. Youâll have a voice in the organization as you work with a seasoned executive team, a supportive board and in a proven market that our customers are excited about.
One of JumpCloudâs three core values is to âBuild Connections.â To us that means creating â human connection with each other regardless of our backgrounds, orientations, geographies, religions, languages, gender, race, etc. We care deeply about the people that we work with and want to see everyone succeed.â - Rajat Bhargava, CEO
Please submit your rÊsumÊ and brief explanation about yourself and why you would be a good fit for JumpCloud. Please note JumpCloud is not accepting third party resumes at this time.
JumpCloud is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.
Scam Notice:
Please be aware that there are individuals and organizations that may attempt to scam job seekers by offering fraudulent employment opportunities in the name of JumpCloud. These scams may involve fake job postings, unsolicited emails, or messages claiming to be from our recruiters or hiring managers. Please note that JumpCloud will never ask for any personal account information, such as credit card details or bank account numbers, during the recruitment process. Additionally, JumpCloud will never send you a check for any equipment prior to employment.
All communication related to interviews and offers from our recruiters and hiring managers will come from official company email addresses (@jumpcloud.com) and will never ask for any payment, fee to be paid or purchases to be made by the job seeker. If you are contacted by anyone claiming to represent JumpCloud and you are unsure of their authenticity, please do not provide any personal/financial information and contact us immediately at [email protected] with the subject line âScam Noticeâ
#LI-Remote #BI-Remote
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, transcribing or summarizing interviews, and assessing responses. These tools assist our recruitment team but do not replace human judgment in hiring decisions, which are ultimately made by humans. Please see our Privacy Policy (https://jumpcloud.com/privacy) for more information about our personal data practices.
Leads application security architecture, develops secure coding standards, designs security posture management capabilities, and uses AI tools to automate vulnerability detection and remediation across the full software development lifecycle.
Basic Function
The Senior Application Security Engineer is a hands-on technical leader responsible for securing Lumin Digitalâs B2B2C SaaS platform across the full software development lifecycle. This role exists at the intersection of application security and AI-augmented engineering: the ideal candidate actively uses AI-powered tools such as Claude Code and Claude Security in their daily workflow to find vulnerabilities faster, automate remediation, and scale security coverage beyond what traditional approaches allow. As AI rapidly transforms how code is written, reviewed, and deployed, this engineer will lead the effort to secure AI-integrated applications, harden CI/CD pipelines, and establish governance for responsible AI adoption across product and engineering teams. Success in this role requires deep technical fluency, a bias toward building and doing over advising, and the ability to operate independently in a fast-moving, remote-first environment.
Essential Functions and Responsibilities:
Lead security architecture reviews for new and existing applications, ensuring secure-by-design principles are embedded from initial design through deployment and ongoing operation.
Develop, enforce, and continuously refine secure coding standards across engineering teams through a combination of automated security scans (SAST, DAST, SCA), AI-assisted code review using tools such as Claude Code, periodic manual code audits, and targeted secure development training.
Own the design, implementation, and evolution of Application Security Posture Management (ASPM) capabilities, integrating signals from static analysis, dynamic testing, software composition analysis, and runtime telemetry to build risk-scoring models that balance exploitability, data sensitivity, and business impact.
Continuously improve threat modeling frameworks across application components, third-party integrations, cloud-native architectures, and AI/LLM-powered features, leveraging tools such as Claude Security for accelerated threat model generation and scenario analysis.
Develop custom security automation tools and scripts to improve detection and response capabilities across cloud environments, including AI-assisted vulnerability auto-fix workflows and integration of AI-powered security tooling into CI/CD pipelines.
Own and operate the companyâs bug bounty program end-to-end: define program strategy and scope, triage and validate external researcher submissions, assess severity, and maintain productive engagement with the security research community.
Manage vulnerability triage and prioritization processes, ensuring vulnerabilities are assessed based on exploitability, business impact, and compliance requirements, and that remediation timelines align with organizational risk tolerance.
Influence product roadmaps by identifying and advocating for security enhancements aligned with evolving regulatory requirements, industry best practices, and the emerging threat landscape for AI-integrated applications.
Mentor security engineers and developers through hands-on guidance in secure coding, vulnerability remediation, and effective use of AI-augmented security workflows.
Present security findings, risk assessments, and program metrics to senior leadership, clients, auditors, and regulators in a clear, actionable manner.
Perform other duties as assigned.
Physical Demands:
While performing the duties of this job, the employee is regularly required to sit; use hands to type, handle, or feel and talk or hear.
Specific vision abilities required by this job include close vision.
Ability to occasionally lift/move up to 25 pounds.
Individuals with a disability who are otherwise able to perform the essential functions of the job may request reasonable accommodation through the Human Resources department.
Supervisory Responsibility:
None
Position Specifications
Education:
Bachelorâs in Computer Science, Cybersecurity, Information Assurance, Software Engineering, or a related field, or an equivalent combination of education and experience.
Preferred certifications: CSSLP, OSCP, GWEB, or GWAPT.
Experience:
Seven (7+) years of progressive experience in application security, software security engineering, or a closely related domain within production SaaS environments.
Extensive hands-on experience in secure software development, DevSecOps pipeline design, and security testing methodologies (SAST, DAST, SCA, penetration testing).
Demonstrated experience securing large-scale cloud-native applications, APIs, and microservices architectures.
Experience leading application security initiatives, defining program strategy, and mentoring engineering teams on secure development practices.
Demonstrated, regular hands-on use of AI-powered security and development tools (e.g., Claude Code, Claude Security, or comparable coding/security assistants) as part of daily security engineering workflows, not solely in an evaluative, advisory, or training capacity.
Experience assessing AI-specific attack surfaces in LLM-integrated applications, including prompt injection, context leakage, insecure tool use, and model denial-of-service.
Knowledge, Skills, & Abilities:
Required:
Deep expertise in AWS security, Kubernetes security, and cloud-native application security best practices.
Strong programming proficiency with the ability to review and assess security risks in one or more of: Java, C#, JavaScript/TypeScript, Python, Swift, or Kotlin.
Expertise in secure authentication and authorization mechanisms, including OAuth 2.0, OIDC, SAML, JWT, WebAuthn, and Zero Trust principles.
Hands-on proficiency with AI-augmented security workflows, including daily use of AI tools (e.g., Claude Code, Claude Security) for vulnerability discovery, remediation assistance, threat modeling, and security automation across the SDLC.
Strong understanding of OWASP Top 10, OWASP Top 10 for LLM Applications, SANS 25, CVSS/EPSS scoring, and MITRE ATT&CK framework.
Ability to identify, assess, and mitigate prompt injection vulnerabilities (direct and indirect) in LLM-integrated applications through input validation, output sanitization, instruction hierarchy enforcement, and adversarial prompt testing.
Experience with secure context window management in AI-powered products, including preventing sensitive data leakage, enforcing context isolation boundaries, and defining data classification policies for AI model inputs.
Hands-on experience with security automation and scripting (Python, Bash, or equivalent).
Proficiency in penetration testing methodologies, including automated and manual security testing of web applications, APIs, and mobile platforms.
Strong knowledge of encryption standards, cryptographic best practices, and secrets management.
Ability to communicate complex security concepts to both technical and non-technical audiences, and to present risk assessments to senior leadership and external stakeholders.
Demonstrated ability to work independently in a remote setting while maintaining high performance and accountability.
Preferred:
Experience evaluating the security posture of AI providers (API security reviews, data residency assessments, vendor risk questionnaires, and contractual security requirements).
Familiarity with AI model access controls and secrets hygiene in AI pipelines, including least-privilege principles for LLM tool integrations and securing model inference endpoints.
Experience with SIEM, WAF, and security monitoring tools.
Familiarity with cloud security controls in AWS, including IAM, security groups, KMS, Lambda security, and cloud monitoring.
Strong project management abilities and experience collaborating across product, engineering, and compliance teams.
Travel:
$155,000 - $175,000 a year
LIFE AT LUMIN DIGITAL
Lumin Digital is a trailblazer in digital banking solutions, driven by a unique approach to technology, service, and people. We empower credit unions and banks by creating cutting-edge digital experiences that continuously serve, engage, and grow their membership base â and as a 100% cloud-native company, weâre purpose-built to unlock the full advantages of the cloud for financial institutions and their users.
At Lumin, we thrive on curiosity and innovation. Our culture is built on trust in our expertise and decisions, respect for diverse perspectives and talents, and boldness in pursuing new ideas. These values shape a workplace where collaboration thrives, ideas flourish, and new possibilities are discovered every day. We encourage our team to explore, experiment, and challenge the status quo â because continuous improvement isnât just a goal, itâs how we operate.
Benefits Include We take care of our people with medical, dental, and vision insurance, a 401(k) with company match, flexible PTO plus 12 paid holidays, paid sick leave, and paid parental and family leave. We also offer a lifestyle spending account, tuition reimbursement, and a cell phone stipend. Additional details are provided during the interview process.
Lumin Digital is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender identity, or any other legally protected basis.
For more information, visit lumindigital.com.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Senior intelligence analyst supports cybersecurity operations by analyzing threats, monitoring security data, and providing actionable intelligence to prevent breaches.
Design and develop security infrastructure, automation, and cloud access controls while managing SIEM configurations, vulnerability systems, and security tooling across cloud platforms.
All roles at JumpCloudÂŽ are Remote unless otherwise specified in the Job Description.
JumpCloudÂŽ is the AI-powered unified IT management platform designed to secure the modern workforce. By consolidating identity, device, and access management, JumpCloud provides intelligent, secure IT that scales from human users to autonomous AI agents. We help organizations around the globe eliminate complexity and turn AI risk into an optimized advantage, ensuring the right people and agents have secure access to the right resources at all times.
As a Security Engineer on the DevSecOps Team, you will be responsible for designing and developing software solutions for protecting data and infrastructure deployed into the cloud. The Security organization is composed of SecOps, GRC, and DevSecOps functions, but all functions work closely together so you will be exposed to many different security areas.
Infrastructure & Automation: Build and maintain infrastructure, including custom software and vendor integrations, to support Engineeringâs Security needs (Product Security and Infrastructure Security).
Cloud Access Engineering: Design and implement secure, automated self-service workflows for cloud infrastructure access and privilege escalation (AWS/GCP).
Detection & Logging: Manage security infrastructure and SIEM configurations via Infrastructure as Code (Terraform) to ensure a highly auditable detection environment. Build and manage high-volume security data pipelines to ensure forensic logs are retained efficiently and cost-effectively.
Vulnerability & Posture Management: Help design, overhaul, and improve custom vulnerability aggregation systems to streamline remediation efforts. Manage and tune Cloud Security Posture Management (CSPM) and container security platforms to ensure optimal coverage and reduce alert fatigue.
Software Supply Chain & AppSec: Integrate and manage Software Supply Chain Security tooling to protect our developer ecosystem. Partner with Engineering to scale our threat modeling program, including developing automated and AI-assisted threat modeling pipelines built directly into the developer workflow.
4 years of software engineering experience with a strong interest or background in security engineering
Proficient in writing Golang or Python (more than simple scripts)
Experience with either AWS or GCP
Experience with Terraform
Experience with GitHub Actions
Excellent written and oral communication
Views security as an enabler, not an inhibitor to innovation
Results oriented and self driven
High level of integrity
Ownership and accountability
Clear communication
Creative problem solver
Passionate about security
You must be available for on-call (after hours) duties for any internal tools/services this team owns
Serve as a responder in the on-call rotation for security incidents and alert triage.
Where youâll be working/Location:
JumpCloud is committed to being Remote First, meaning that you are able to work remotely within the country noted in the Job Description.
You must be located in and authorized to work in the country noted in the job description to be considered for this role.
Please note: There is an expectation that our engineers participate in on-call shifts. You will be expected commit to being ready and able to respond during your assigned shift, so that alerts donât go unaddressed.
Language:
JumpCloud has teams in 15+ countries around the world and conducts our internal business in English. The interview and any additional screening process will take place primarily in English. To be considered for a role at JumpCloud, you will be required to speak and write in English fluently. Any additional language requirements will be included in the details of the job description.
Why JumpCloud?
If you thrive working in a fast, SaaS-based environment and you are passionate about solving challenging technical problems, we look forward to hearing from you! JumpCloud is an incredible place to share and grow your expertise! Youâll work with amazing talent across each department who are passionate about our mission. Weâre out of the box thinkers, so your unique ideas and approaches for conceiving a product and/or feature will be welcome. Youâll have a voice in the organization as you work with a seasoned executive team, a supportive board and in a proven market that our customers are excited about.
One of JumpCloudâs three core values is to âBuild Connections.â To us that means creating â human connection with each other regardless of our backgrounds, orientations, geographies, religions, languages, gender, race, etc. We care deeply about the people that we work with and want to see everyone succeed.â - Rajat Bhargava, CEO
Please submit your rÊsumÊ and brief explanation about yourself and why you would be a good fit for JumpCloud. Please note JumpCloud is not accepting third party resumes at this time.
JumpCloud is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.
Scam Notice:
Please be aware that there are individuals and organizations that may attempt to scam job seekers by offering fraudulent employment opportunities in the name of JumpCloud. These scams may involve fake job postings, unsolicited emails, or messages claiming to be from our recruiters or hiring managers. Please note that JumpCloud will never ask for any personal account information, such as credit card details or bank account numbers, during the recruitment process. Additionally, JumpCloud will never send you a check for any equipment prior to employment.
All communication related to interviews and offers from our recruiters and hiring managers will come from official company email addresses (@jumpcloud.com) and will never ask for any payment, fee to be paid or purchases to be made by the job seeker. If you are contacted by anyone claiming to represent JumpCloud and you are unsure of their authenticity, please do not provide any personal/financial information and contact us immediately at [email protected] with the subject line âScam Noticeâ
#LI-Remote #BI-Remote
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, transcribing or summarizing interviews, and assessing responses. These tools assist our recruitment team but do not replace human judgment in hiring decisions, which are ultimately made by humans. Please see our Privacy Policy (https://jumpcloud.com/privacy) for more information about our personal data practices.
Leads application security architecture, threat modeling, and secure coding practices across the SDLC while leveraging AI tools to automate vulnerability detection and remediation.
Basic Function
The Senior Application Security Engineer is a hands-on technical leader responsible for securing Lumin Digitalâs B2B2C SaaS platform across the full software development lifecycle. This role exists at the intersection of application security and AI-augmented engineering: the ideal candidate actively uses AI-powered tools such as Claude Code and Claude Security in their daily workflow to find vulnerabilities faster, automate remediation, and scale security coverage beyond what traditional approaches allow. As AI rapidly transforms how code is written, reviewed, and deployed, this engineer will lead the effort to secure AI-integrated applications, harden CI/CD pipelines, and establish governance for responsible AI adoption across product and engineering teams. Success in this role requires deep technical fluency, a bias toward building and doing over advising, and the ability to operate independently in a fast-moving, remote-first environment.
Essential Functions and Responsibilities:
Lead security architecture reviews for new and existing applications, ensuring secure-by-design principles are embedded from initial design through deployment and ongoing operation.
Develop, enforce, and continuously refine secure coding standards across engineering teams through a combination of automated security scans (SAST, DAST, SCA), AI-assisted code review using tools such as Claude Code, periodic manual code audits, and targeted secure development training.
Own the design, implementation, and evolution of Application Security Posture Management (ASPM) capabilities, integrating signals from static analysis, dynamic testing, software composition analysis, and runtime telemetry to build risk-scoring models that balance exploitability, data sensitivity, and business impact.
Continuously improve threat modeling frameworks across application components, third-party integrations, cloud-native architectures, and AI/LLM-powered features, leveraging tools such as Claude Security for accelerated threat model generation and scenario analysis.
Develop custom security automation tools and scripts to improve detection and response capabilities across cloud environments, including AI-assisted vulnerability auto-fix workflows and integration of AI-powered security tooling into CI/CD pipelines.
Own and operate the companyâs bug bounty program end-to-end: define program strategy and scope, triage and validate external researcher submissions, assess severity, and maintain productive engagement with the security research community.
Manage vulnerability triage and prioritization processes, ensuring vulnerabilities are assessed based on exploitability, business impact, and compliance requirements, and that remediation timelines align with organizational risk tolerance.
Influence product roadmaps by identifying and advocating for security enhancements aligned with evolving regulatory requirements, industry best practices, and the emerging threat landscape for AI-integrated applications.
Mentor security engineers and developers through hands-on guidance in secure coding, vulnerability remediation, and effective use of AI-augmented security workflows.
Present security findings, risk assessments, and program metrics to senior leadership, clients, auditors, and regulators in a clear, actionable manner.
Perform other duties as assigned.
Physical Demands:
While performing the duties of this job, the employee is regularly required to sit; use hands to type, handle, or feel and talk or hear.
Specific vision abilities required by this job include close vision.
Ability to occasionally lift/move up to 25 pounds.
Individuals with a disability who are otherwise able to perform the essential functions of the job may request reasonable accommodation through the Human Resources department.
Supervisory Responsibility:
None
Position Specifications
Education:
Bachelorâs in Computer Science, Cybersecurity, Information Assurance, Software Engineering, or a related field, or an equivalent combination of education and experience.
Preferred certifications: CSSLP, OSCP, GWEB, or GWAPT.
Experience:
Seven (7+) years of progressive experience in application security, software security engineering, or a closely related domain within production SaaS environments.
Extensive hands-on experience in secure software development, DevSecOps pipeline design, and security testing methodologies (SAST, DAST, SCA, penetration testing).
Demonstrated experience securing large-scale cloud-native applications, APIs, and microservices architectures.
Experience leading application security initiatives, defining program strategy, and mentoring engineering teams on secure development practices.
Demonstrated, regular hands-on use of AI-powered security and development tools (e.g., Claude Code, Claude Security, or comparable coding/security assistants) as part of daily security engineering workflows, not solely in an evaluative, advisory, or training capacity.
Experience assessing AI-specific attack surfaces in LLM-integrated applications, including prompt injection, context leakage, insecure tool use, and model denial-of-service.
Knowledge, Skills, & Abilities:
Required:
Deep expertise in AWS security, Kubernetes security, and cloud-native application security best practices.
Strong programming proficiency with the ability to review and assess security risks in one or more of: Java, C#, JavaScript/TypeScript, Python, Swift, or Kotlin.
Expertise in secure authentication and authorization mechanisms, including OAuth 2.0, OIDC, SAML, JWT, WebAuthn, and Zero Trust principles.
Hands-on proficiency with AI-augmented security workflows, including daily use of AI tools (e.g., Claude Code, Claude Security) for vulnerability discovery, remediation assistance, threat modeling, and security automation across the SDLC.
Strong understanding of OWASP Top 10, OWASP Top 10 for LLM Applications, SANS 25, CVSS/EPSS scoring, and MITRE ATT&CK framework.
Ability to identify, assess, and mitigate prompt injection vulnerabilities (direct and indirect) in LLM-integrated applications through input validation, output sanitization, instruction hierarchy enforcement, and adversarial prompt testing.
Experience with secure context window management in AI-powered products, including preventing sensitive data leakage, enforcing context isolation boundaries, and defining data classification policies for AI model inputs.
Hands-on experience with security automation and scripting (Python, Bash, or equivalent).
Proficiency in penetration testing methodologies, including automated and manual security testing of web applications, APIs, and mobile platforms.
Strong knowledge of encryption standards, cryptographic best practices, and secrets management.
Ability to communicate complex security concepts to both technical and non-technical audiences, and to present risk assessments to senior leadership and external stakeholders.
Demonstrated ability to work independently in a remote setting while maintaining high performance and accountability.
Preferred:
Experience evaluating the security posture of AI providers (API security reviews, data residency assessments, vendor risk questionnaires, and contractual security requirements).
Familiarity with AI model access controls and secrets hygiene in AI pipelines, including least-privilege principles for LLM tool integrations and securing model inference endpoints.
Experience with SIEM, WAF, and security monitoring tools.
Familiarity with cloud security controls in AWS, including IAM, security groups, KMS, Lambda security, and cloud monitoring.
Strong project management abilities and experience collaborating across product, engineering, and compliance teams.
Travel:
$155,000 - $175,000 a year
LIFE AT LUMIN DIGITAL
Lumin Digital is a trailblazer in digital banking solutions, driven by a unique approach to technology, service, and people. We empower credit unions and banks by creating cutting-edge digital experiences that continuously serve, engage, and grow their membership base â and as a 100% cloud-native company, weâre purpose-built to unlock the full advantages of the cloud for financial institutions and their users.
At Lumin, we thrive on curiosity and innovation. Our culture is built on trust in our expertise and decisions, respect for diverse perspectives and talents, and boldness in pursuing new ideas. These values shape a workplace where collaboration thrives, ideas flourish, and new possibilities are discovered every day. We encourage our team to explore, experiment, and challenge the status quo â because continuous improvement isnât just a goal, itâs how we operate.
Benefits Include We take care of our people with medical, dental, and vision insurance, a 401(k) with company match, flexible PTO plus 12 paid holidays, paid sick leave, and paid parental and family leave. We also offer a lifestyle spending account, tuition reimbursement, and a cell phone stipend. Additional details are provided during the interview process.
Lumin Digital is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender identity, or any other legally protected basis.
For more information, visit lumindigital.com.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Designs and implements security governance, risk, and compliance automation solutions for enterprise customers.
Leads security and compliance strategy for a fintech fare payment platform, managing risk frameworks and regulatory adherence.
Designs and operationalizes cybersecurity control frameworks for AI and GenAI systems, managing governance and risk mitigation across agentic AI use cases.
Leads threat modeling, manages cloud security findings, and partners with engineering teams to secure platform infrastructure while exploring AI-driven security automation.
LaunchDarklyâs Product Security team is hiring a Product Security Engineer II to strengthen how we secure the platform engineers build with every day. Youâll bring depth in security fundamentals and program design as a member of a small, high-leverage team with strong engineering instincts.
LaunchDarkly is critical infrastructure. Our security team keeps it safe for the global systems that depend on us. Youâll spend most of your time on threat modeling and cloud security posture, with rotating exposure to the rest of the ProdSec surface area. Your work will help developers move fast without sacrificing security, through automation, guidance, and the kind of partnership that makes the secure path the easy one.
Youâll report to the Director of Security and work closely with software engineers, product managers, and other security engineers. We expect you to bring a sharp point of view on where AI can take work off the teamâs plate and make our coverage deeper.
Lead threat modeling engagements on the features and services where the risk warrants it.
Partner with the ProdSec lead to evolve the practice from on-request to repeatable, with clear criteria for when an engagement is worth running.
Own day-to-day triage of CNAPP findings end to end. Investigate, prioritize, route to service owners, and close the loop. Look for patterns that point to systemic fixes instead of one-off cleanup.
Contribute to SDLC tooling, SAST/SCA workflows, and bug bounty triage as the teamâs work demands.
Partner with product engineering teams as a trusted reviewer. Catch issues early, explain the why, propose paths forward. Say no when needed, with reasons and alternatives.
Bring AI to the work. Use it to accelerate triage, summarize findings, draft threat models, scan code, and reduce toil. Help the team build durable patterns for safe and effective use, not one-off prompts.
Push the security floor up over time through documentation, office hours, small tooling improvements, and the kind of compounding work that prevents incidents rather than responds to them.
Youâre proactive by default. Youâd rather spot drift early and fix the cause than chase symptoms after an incident.
You believe security is a craft of habits and systems. Small consistent improvements beat heroic one-offs.
You invest in relationships with the engineering, product, and leadership teams you work with.
You know security work moves at the speed of trust.
Youâre a good partner. Youâre helpful and direct, you say no with reasons and alternatives, and you donât mistake gatekeeping for rigor.
Youâre security-first by background but engineering-curious by nature. You want to understand how the systems work, not just whatâs wrong with them.
You treat AI as part of the toolkit. Youâre skeptical where you should be, aggressive where it pays off, and you want to work somewhere thatâs serious about both.
2 to 4 years of full-time experience in a security-focused role. AppSec, ProdSec, or cloud security preferred.
Comfortable reading and critiquing pull requests in a modern stack. You donât need to ship production services, but you should follow the code, ask sharp questions, and write small tools when it helps.
Experience participating in or leading threat modeling exercises. Familiar with at least one structured approach (STRIDE, attack trees, or equivalent).
Working knowledge of cloud security posture. Exposure to a CNAPP is a strong plus.
Strong fundamentals: OWASP Top 10, authentication and authorization patterns, secrets management, common cloud misconfigurations.
Hands-on experience applying AI tooling to security or engineering work. You can point to specific examples where it changed how you operated.
Nice to Haves:
Experience with developer tools, SaaS platforms, or feature management
Bug bounty triage experience (HackerOne, Bugcrowd)
Familiarity with Go, Python, or TypeScript
Contributions to internal security tooling or open-source security projects
Pay:
Target pay ranges based on Geographic Zones* for Level 2:
LaunchDarkly operates from a place of high trust and transparency; we are happy to state the pay range for our open roles to best align with your needs. Exact compensation may vary based on skills, experience, and location.
*Within the United States, our geographic pay zones are defined by counties surrounding major metropolitan areas.
**Restricted Stock Units (RSUs), health, vision, and dental insurance, and mental health benefits in addition to salary.
Modern software delivery was supposed to be the foundation for a thriving digital business but reality has proven otherwise. Slow, inefficient development cycles, costly outages, and fragmented customer experiences are preventing developers from building their best software. The LaunchDarkly platform helps developers innovate on new features faster while protecting them with a safety valve to instantly rewind when things go wrong. Developers can target product experiences to any customer segment and maximize the business impact of every feature. And by gradually rolling out new application components, they escape nightmare âbig-bangâ technology migrations.
The LaunchDarkly platform was built to guide engineers to the next frontier of DevOps by:
At LaunchDarkly, we believe in the power of teams. Weâre building a team that is humble, open, collaborative, respectful and kind. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, gender identity, sexual orientation, age, marital status, veteran status, or disability status. LD invites any applicant to review our written Affirmative Action Plan. To do so, contact People Ops at hr@launchdarkly.com.
Do you need a disability accommodation?
Fill out this accommodations request form and someone from our People Operations team will contact you for assistance.
Your safety matters to us. To protect yourself from potential scams, LaunchDarkly recruiters will only contact you from @LaunchDarkly.com email addresses or via LinkedIn from âVerified Recruiterâ accounts.Be cautious of emails from other domains. Legitimate LaunchDarkly recruiters will never ask for money, fees, or banking information before making a job offer. LaunchDarkly will never make a job offer without conducting a formal interview process. Our interview process does not involve asking detailed questions by email. If you are ever unsure about a communication that you receive, donât click any linksâvisit Careers | LaunchDarkly directly for confirmed job openings and links to apply.
Please notify us of any fraudulent representation by sending an email to careers@launchdarkly.com.
Designs and implements security controls for AI-powered healthcare applications, threat-models LLM features, and establishes secure development practices.
ABOUT ARTERA
Our Mission:Â Make healthcare #1 in customer service.
What We Deliver:Â Artera, a SaaS leader in digital health, transforms patient experience with AI-powered virtual agents (voice and text) for every step of the patient journey. Trusted by 1,000+ provider organizations â including specialty groups, FQHCs, large IDNs and federal agencies â engaging 100 million patients annually. Arteraâs virtual agents support front desk staff to improve patient access including self-scheduling, intake, forms, billing and more. Whether augmenting a team or unleashing a fully autonomous digital workforce, Artera offers multiple virtual agent options to meet healthcare organizations where they are in their AI journey. Artera helps support 2B communications in 109 languages across voice, text and web. A decade of healthcare expertise, powered by AI.
Our Impact: Trusted by 1,000+ provider organizations â including specialty groups, FQHCs, large IDNs and federal agencies â engaging 100 million patients annually. Hear from our CEO, Guillaume de Zwirek, about why we are standing at the edge of the biggest technological shift in healthcareâs history!
Our award-winning culture: Our award-winning culture: Since founding in 2015, Artera has consistently been recognized for its innovative technology, business growth, and named a top place to work. Examples of these accolades include: Inc. 5000 Fastest Growing Private Companies (2020, 2021, 2022, 2023, 2024); Deloitte Technology Fast 500 (2021, 2022, 2023, 2024, 2025); Built In Best Companies to Work For (2021, 2022, 2023, 2024, 2025, 2026). Artera has also been recognized by Forbes as one of âAmericaâs Best Startup Employers,â Newsweek as one of the âWorldâs Best Digital Health Companies,â and named one of the top â44 Startups to Bet your Career on in 2024â by Business Insider.
Applicants must be currently authorized and have the ability to provide proof of full-time, long-term authorization to work in the United States. We are unable to provide visa sponsorship or support visa transfers now or in the future.
ABOUT THE OPPORTUNITY
Artera is seeking a hands-on Senior Application Security Engineer, AI & Product Security to work alongside our AI builders and Systems Engineers to threat-model agentic and LLM-powered features, harden PHI/PII-handling workflows, and ship the âpaved roadâ tooling (secure SDLC guardrails, prompt/agent-identity patterns, SAST/DAST/SCA in CI/CD) that keeps innovation fast and safe.
This is a frontier role. Youâll be operating where AI security is still being defined â translating policy into code, building guardrails for agent identity and prompt/output filtering, and giving our team the logging, scanning, and safe tool-use patterns. Artera Security finds the secure path and ships it with our AI Builders and System Engineers.
This role is based in our Seattle, WA office. In-person collaboration is intentional â youâll be working shoulder-to-shoulder with our AI builders, Systems Engineers, and security leadership as we build Arteraâs Seattle tech hub.
This role supports federal-facing systems and contributes to enterprise security functions. Candidates must meet eligibility for a government background check and follow strict data protection, access control, and incident response protocols. Familiarity with regulatory frameworks is expected. Ongoing compliance training and evidence-based documentation may be required.
$146,000 - $175,000 a year
The compensation for this role will be based on level of experience and the geographic tier in which you are located. This position also comes with equity and a variety of benefits.
OUR APPROACH TO WORK LOCATION
Artera has hybrid office locations in Santa Barbara, CA, and Philadelphia (Wayne), PA, where team members typically come in three days a week. Specific frequency can vary depending on your teamâs needs, manager expectations and/or role responsibilities.
In addition to our U.S. office locations, we are intentionally building geographically concentrated teams in several key metropolitan areas, which we call our âHiring Hubs.â We are currently hiring remote candidates located within the following hiring hubs:
- Boston Metro Area, MA
- Chicago Metro Area, IL
- Denver Metro Area, CO
- Kansas City Metro Area (KS/MO)
- Los Angeles Metro Area, CA
- San Francisco / Bay Area, CA
- Seattle Metro Area, WA
This hub-based model helps us cultivate strong local connections and team cohesion, even in a distributed environment.
To be eligible for employment at Artera, candidates must reside in one of our hybrid office cities or one of the designated hiring hubs. Specific roles may call out location preferences when relevant.
As our hubs grow, we may establish local offices to further enhance in-person connection and collaboration. While there are no current plans in place, should an office open in your area, we anticipate implementing a hybrid model. Any future attendance expectations would be developed thoughtfully, considering factors like typical commute times and access to public transit, to ensure they are fair and practical for the local team.
WORKING AT ARTERA
Company benefits - Full health benefits (medical, dental, and vision), flexible spending accounts, company paid life insurance, company paid short-term & long-term disability, company equity, voluntary benefits, 401(k) and more!
Career development - Manager development cohorts, employee development funds
Generous time off - Company holidays, Winter & Summer break, and flexible time off
Employee Resource Groups (ERGs)Â - We believe that everyone should belong at their workplace. Our ERGs are available for identifying employees or allies to join.
EQUAL EMPLOYMENT OPPORTUNITY (EEO) STATEMENT
Artera is an Equal Opportunity Employer and is committed to fair and equitable hiring practices. All hiring decisions at Artera are based on strategic business needs, job requirements, and individual qualifications. All candidates are considered without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, age, disability, genetics, protected veteran status, or any other protected status.
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.
Artera is committed to providing employees with a work environment free of discrimination and harassment; Artera will not tolerate discrimination or harassment of any kind. Artera provides reasonable accommodations for applicants and employees in compliance with state and federal laws. If you need an accommodation, please reach out to [email protected].
DATA PRIVACY
Artera values your privacy. By submitting your application, you consent to the processing of your personal information provided in conjunction with your application. For more information please refer to our Privacy Policy.
SECURITY REQUIREMENTS
All employees are responsible for protecting the confidentiality, integrity, and availability of the organizationâs systems and data, including safeguarding Arteraâs sensitive information such as, Personal identifiable Information (PII) and Protected Health Information (PHI). Those with specific security or privacy responsibilities must ensure compliance with organizational policies, regulatory requirements, and applicable standards and frameworks by implementing safeguards, monitoring for threats, reporting incidents, and addressing data handling risks or breaches.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Security engineer maintains custody systems, hardens signing infrastructure, builds anti-scam tooling, and conducts security reviews for blockchain protocols and systems.
Mysten Labs believes that decentralized and open protocols are the bedrock of the internet of value. This is why at Mysten Labs, we are creating foundational infrastructure to accelerate the adoption of decentralized protocols based on blockchain technologies.
Security engineers own the operational and software security of the Sui blockchain, wallet, Move language, and other Mysten systems.
Security engineers support and work closely with the engineers working on the sensitive components of these systems. In addition, they are the key points of contact for audit engagements and bug bounty reports.
We are hiring security engineers now as we expand the ecosystem and production services. We have a strong team in protocol security, but we need experts in operational and software security who can help us navigate the challenges of running world class infrastructure.
Responsibilities
Maintain and improve the custody systems that hold validator keys, operational keys, and important objects for Mysten-run smart contracts and general on-chain operations, including key generation, storage, access controls, signing workflows, aggregation, rotation, and recovery procedures
Harden the signing path end-to-end: review and improve the code, infrastructure, and operational practices around how transactions are authorized, reviewed, and submitted on-chain
Build and improve anti-scam and anti-abuse tooling for the Sui ecosystem, detecting phishing sites, malicious dApps, drainer contracts, and other threats that target Sui users, and partnering with wallet ecosystem teams on mitigations.
Conduct code and design reviews of components that interact with sensitive keys or handle on-chain assets, with a focus on cryptographic correctness, access control, and operational safety
Participate in investigation and response for security issues and incidents that touch custody or ecosystem abuse, and drive concrete fixes that prevent the same class of issue from recurring
Preferred Qualifications
3+ years of hands-on experience in security engineering, application security, or product security.
Knowledge relevant to key management in production, for example HSMs, cloud KMS, MPC or threshold-signature systems, hardware wallets, or comparable custody infrastructure.
Proficiency in one or more of: Rust, TypeScript, Python, or Move, and experience reviewing and writing security-sensitive code.
Solid understanding of applied cryptography fundamentals and the common ways cryptographic systems are misused in practice.
A builder mentality: comfortable operating with ambiguity, diving into unfamiliar codebases, and shipping the fix yourself rather than handing it off.
Strong written and verbal communication: you can explain a finding or an issue clearly to the engineer who needs to fix it and to a non-technical stakeholder who needs to understand the risk.
Interest in the web3 space is required; prior experience shipping in crypto, fintech, or other regulated/high-stakes environments is a plus.
Employment is contingent upon the successful completion of a background check, which may include verification of employment history, education credentials, criminal history, and other relevant information.
Regarding the recent rash of technology job scams: Be aware that emails from genuine Mysten Labs group recruiters will always come from the @ mystenlabs.com domain or related subdomains (e.g., mystenlabs.com/careers ). Remember: you can always verify positions on our job boards at www.mystenlabs.com/careers .
To support an efficient and fair hiring process, we may use technology-assisted tools, including artificial intelligence (AI), to help identify and evaluate candidates. All hiring decisions are ultimately made by human reviewers.
Our team is remote first and we are hiring across the world. Here at Mysten Labs, youâll be joining a world-class team with tremendous growth potential as we bring the next billion users to web3. We raised a $300M Series B round from top Silicon Valley led venture funds like Jump Crypto, Andreessen Horowitz (a16z), Binance Labs, Redpoint, Lightspeed, Coinbase Ventures, Electric Capital, Standard Crypto, NFX, Slow Ventures, Scribble Ventures, Samsung Next, Lux Capital, among other investment firms and strategic partners. Come join us and build the future of web3!
Product Security Engineer II leads threat modeling, investigates cloud security findings, and partners with engineering teams to secure platform infrastructure while leveraging AI for triage and automation.
LaunchDarklyâs Product Security team is hiring a Product Security Engineer II to strengthen how we secure the platform engineers build with every day. Youâll bring depth in security fundamentals and program design as a member of a small, high-leverage team with strong engineering instincts.
LaunchDarkly is critical infrastructure. Our security team keeps it safe for the global systems that depend on us. Youâll spend most of your time on threat modeling and cloud security posture, with rotating exposure to the rest of the ProdSec surface area. Your work will help developers move fast without sacrificing security, through automation, guidance, and the kind of partnership that makes the secure path the easy one.
Youâll report to the Director of Security and work closely with software engineers, product managers, and other security engineers. We expect you to bring a sharp point of view on where AI can take work off the teamâs plate and make our coverage deeper.
Lead threat modeling engagements on the features and services where the risk warrants it.
Partner with the ProdSec lead to evolve the practice from on-request to repeatable, with clear criteria for when an engagement is worth running.
Own day-to-day triage of CNAPP findings end to end. Investigate, prioritize, route to service owners, and close the loop. Look for patterns that point to systemic fixes instead of one-off cleanup.
Contribute to SDLC tooling, SAST/SCA workflows, and bug bounty triage as the teamâs work demands.
Partner with product engineering teams as a trusted reviewer. Catch issues early, explain the why, propose paths forward. Say no when needed, with reasons and alternatives.
Bring AI to the work. Use it to accelerate triage, summarize findings, draft threat models, scan code, and reduce toil. Help the team build durable patterns for safe and effective use, not one-off prompts.
Push the security floor up over time through documentation, office hours, small tooling improvements, and the kind of compounding work that prevents incidents rather than responds to them.
Youâre proactive by default. Youâd rather spot drift early and fix the cause than chase symptoms after an incident.
You believe security is a craft of habits and systems. Small consistent improvements beat heroic one-offs.
You invest in relationships with the engineering, product, and leadership teams you work with.
You know security work moves at the speed of trust.
Youâre a good partner. Youâre helpful and direct, you say no with reasons and alternatives, and you donât mistake gatekeeping for rigor.
Youâre security-first by background but engineering-curious by nature. You want to understand how the systems work, not just whatâs wrong with them.
You treat AI as part of the toolkit. Youâre skeptical where you should be, aggressive where it pays off, and you want to work somewhere thatâs serious about both.
2 to 4 years of full-time experience in a security-focused role. AppSec, ProdSec, or cloud security preferred.
Comfortable reading and critiquing pull requests in a modern stack. You donât need to ship production services, but you should follow the code, ask sharp questions, and write small tools when it helps.
Experience participating in or leading threat modeling exercises. Familiar with at least one structured approach (STRIDE, attack trees, or equivalent).
Working knowledge of cloud security posture. Exposure to a CNAPP is a strong plus.
Strong fundamentals: OWASP Top 10, authentication and authorization patterns, secrets management, common cloud misconfigurations.
Hands-on experience applying AI tooling to security or engineering work. You can point to specific examples where it changed how you operated.
Nice to Haves:
Experience with developer tools, SaaS platforms, or feature management
Bug bounty triage experience (HackerOne, Bugcrowd)
Familiarity with Go, Python, or TypeScript
Contributions to internal security tooling or open-source security projects
Pay:
Target pay ranges based on Geographic Zones* for Level 2:
LaunchDarkly operates from a place of high trust and transparency; we are happy to state the pay range for our open roles to best align with your needs. Exact compensation may vary based on skills, experience, and location.
*Within the United States, our geographic pay zones are defined by counties surrounding major metropolitan areas.
**Restricted Stock Units (RSUs), health, vision, and dental insurance, and mental health benefits in addition to salary.
Modern software delivery was supposed to be the foundation for a thriving digital business but reality has proven otherwise. Slow, inefficient development cycles, costly outages, and fragmented customer experiences are preventing developers from building their best software. The LaunchDarkly platform helps developers innovate on new features faster while protecting them with a safety valve to instantly rewind when things go wrong. Developers can target product experiences to any customer segment and maximize the business impact of every feature. And by gradually rolling out new application components, they escape nightmare âbig-bangâ technology migrations.
The LaunchDarkly platform was built to guide engineers to the next frontier of DevOps by:
At LaunchDarkly, we believe in the power of teams. Weâre building a team that is humble, open, collaborative, respectful and kind. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, gender identity, sexual orientation, age, marital status, veteran status, or disability status. LD invites any applicant to review our written Affirmative Action Plan. To do so, contact People Ops at hr@launchdarkly.com.
Do you need a disability accommodation?
Fill out this accommodations request form and someone from our People Operations team will contact you for assistance.
Your safety matters to us. To protect yourself from potential scams, LaunchDarkly recruiters will only contact you from @LaunchDarkly.com email addresses or via LinkedIn from âVerified Recruiterâ accounts.Be cautious of emails from other domains. Legitimate LaunchDarkly recruiters will never ask for money, fees, or banking information before making a job offer. LaunchDarkly will never make a job offer without conducting a formal interview process. Our interview process does not involve asking detailed questions by email. If you are ever unsure about a communication that you receive, donât click any linksâvisit Careers | LaunchDarkly directly for confirmed job openings and links to apply.
Please notify us of any fraudulent representation by sending an email to careers@launchdarkly.com.
Security engineer owns operational and software security for Sui blockchain systems, manages custody infrastructure, hardens signing paths, and responds to security incidents.
Mysten Labs believes that decentralized and open protocols are the bedrock of the internet of value. This is why at Mysten Labs, we are creating foundational infrastructure to accelerate the adoption of decentralized protocols based on blockchain technologies.
Security engineers own the operational and software security of the Sui blockchain, wallet, Move language, and other Mysten systems.
Security engineers support and work closely with the engineers working on the sensitive components of these systems. In addition, they are the key points of contact for audit engagements and bug bounty reports.
We are hiring security engineers now as we expand the ecosystem and production services. We have a strong team in protocol security, but we need experts in operational and software security who can help us navigate the challenges of running world class infrastructure.
Responsibilities
Maintain and improve the custody systems that hold validator keys, operational keys, and important objects for Mysten-run smart contracts and general on-chain operations, including key generation, storage, access controls, signing workflows, aggregation, rotation, and recovery procedures
Harden the signing path end-to-end: review and improve the code, infrastructure, and operational practices around how transactions are authorized, reviewed, and submitted on-chain
Build and improve anti-scam and anti-abuse tooling for the Sui ecosystem, detecting phishing sites, malicious dApps, drainer contracts, and other threats that target Sui users, and partnering with wallet ecosystem teams on mitigations.
Conduct code and design reviews of components that interact with sensitive keys or handle on-chain assets, with a focus on cryptographic correctness, access control, and operational safety
Participate in investigation and response for security issues and incidents that touch custody or ecosystem abuse, and drive concrete fixes that prevent the same class of issue from recurring
Preferred Qualifications
3+ years of hands-on experience in security engineering, application security, or product security.
Knowledge relevant to key management in production, for example HSMs, cloud KMS, MPC or threshold-signature systems, hardware wallets, or comparable custody infrastructure.
Proficiency in one or more of: Rust, TypeScript, Python, or Move, and experience reviewing and writing security-sensitive code.
Solid understanding of applied cryptography fundamentals and the common ways cryptographic systems are misused in practice.
A builder mentality: comfortable operating with ambiguity, diving into unfamiliar codebases, and shipping the fix yourself rather than handing it off.
Strong written and verbal communication: you can explain a finding or an issue clearly to the engineer who needs to fix it and to a non-technical stakeholder who needs to understand the risk.
Interest in the web3 space is required; prior experience shipping in crypto, fintech, or other regulated/high-stakes environments is a plus.
Employment is contingent upon the successful completion of a background check, which may include verification of employment history, education credentials, criminal history, and other relevant information.
Regarding the recent rash of technology job scams: Be aware that emails from genuine Mysten Labs group recruiters will always come from the @ mystenlabs.com domain or related subdomains (e.g., mystenlabs.com/careers ). Remember: you can always verify positions on our job boards at www.mystenlabs.com/careers .
To support an efficient and fair hiring process, we may use technology-assisted tools, including artificial intelligence (AI), to help identify and evaluate candidates. All hiring decisions are ultimately made by human reviewers.
Our team is remote first and we are hiring across the world. Here at Mysten Labs, youâll be joining a world-class team with tremendous growth potential as we bring the next billion users to web3. We raised a $300M Series B round from top Silicon Valley led venture funds like Jump Crypto, Andreessen Horowitz (a16z), Binance Labs, Redpoint, Lightspeed, Coinbase Ventures, Electric Capital, Standard Crypto, NFX, Slow Ventures, Scribble Ventures, Samsung Next, Lux Capital, among other investment firms and strategic partners. Come join us and build the future of web3!
