Greenlight Financial Technology06.05.2026
Senior Staff Product Security Engineer
Full TimeAtlanta (Remote Friendly)
Обязанности
- 01Define and lead the long-term product security strategy, roadmap, and vision in alignment with company goals, risk appetite, and regulatory requirements
- 02Serve as the internal authority on application and product security, providing expert guidance to engineering, product, and executive leadership
- 03Drive a company-wide culture of security ownership embedding security thinking deeply into the habits of every engineering team
- 04Architect and continuously evolve a best-in-class Product Security program, spanning threat modeling, SAST, DAST, IAST, SCA, runtime protection, and API security
- 05Lead the design and enforcement of secure development standards across web, mobile, and cloud including secure coding guidelines, IaC policies, and API security frameworks
- 06Identify and drive resolution of systemic, high-impact vulnerabilities and architectural security gaps across Greenlight's platform
- 07Lead and mature Greenlight's penetration testing program, both through internal efforts and external vendor partnerships
- 08Partner with engineering and platform teams to build security-enhancing product features that protect our customers' financial data
- 09Establish and lead incident response processes for product-level security events, including root cause analysis and systemic remediation
- 10Evaluate and introduce emerging security tooling, techniques, and frameworks to keep Greenlight ahead of the threat landscape
- 11Mentor staff and senior engineers across the security and engineering organizations, raising the overall security engineering capability of the company
Требования
- 0112+ years of experience in product security, application security, or a related engineering discipline
- 02Proven track record of defining and driving security programs at scale across complex, multi-platform environments
- 03Hands-on experience architecting and implementing security solutions and processes in production environments, enabling engineering teams to build and ship securely at scale
- 04Expert-level knowledge of web and mobile application security, including OWASP Top 10, API security, and mobile threat vectors (iOS and Android)
- 05Deep hands-on experience with the full AppSec toolchain: SAST, DAST, IAST, SCA, secrets scanning, and runtime protection
- 06Strong command of cloud security architecture and controls, particularly in AWS environments
- 07Experience leading or heavily influencing the security architecture of distributed, microservices-based systems
- 08Experience in developing and implementing security solutions
- 09Demonstrated ability to build strong cross-functional relationships and influence engineering culture without direct authority
- 10Exceptional communication skills — ability to distill complex security risk into clear, actionable language for engineers, executives, and non-technical stakeholders
- 11Experience operating in regulated industries (e.g. financial services, fintech, healthcare)
- 12Hands-on certifications such as OSCP, GWAPT, GPEN, CISSP, or equivalent — and/or public code/research
- 13Experience building or scaling Product Security programs in high-growth startup environments
- 14Familiarity with security tools including Burp Suite or Kali Linux
Условия
- 01Medical, dental, vision, and HSA match
- 02Paid life insurance, AD&D, and disability benefits
- 03Traditional 401k with company match
- 04Unlimited PTO
- 05Paid company holidays and pop-up bonus holidays
- 06Professional development stipends
- 07Mental health resources
- 081:1 financial planners
- 09Fertility healthcare
- 10100% paid parental and caregiving leave, plus cleaning service and meals during your leave
- 11Flexible WFH, both remote and in-office opportunities
- 12Fully stocked kitchen, catered lunches, and occasional in-office happy hours
- 13Employee resource groups
- 14Competitive compensation package with market-based approach to pay
- 15Total compensation includes discretionary performance bonus, equity rewards, medical benefits, 401K match