Job Details

Job Title - Product Security Engineer - Design Reviews/Threat Modeling

Location: Hybrid in SF/Sunnyvale/Seattle/NYC Preferred

Duration - 6+ months

Job Description: Top Skills

We're looking for a senior security engineer who can review engineering designs/architecture documents at speed and translate them into clear, prioritized security requirements. This advisory role sits inside Engineering Security and steers secure decisions before code ships.

What you will do

• Review technical design docs (even partial drafts) and surface material risk early.

• Respond to ad hoc high-impact projects at a very early stage, where no clear architecture yet exists.

• Decide when a fast approval is enough vs. when to trigger a full threat model, focused pen-test, or deeper review.

• Help engineers understand threats while staying pragmatic and delivery-minded.

• Train security champions and help them conduct low-impact threat models

• Translate findings into specific security requirements and compensating controls.

• Use structured methods (CVSS, STRIDE, Owasp Top 10) to document & prioritize.

• Record issues in Jira and stay engaged until owners address blocking items.

• Provide quick-turn guidance so teams can keep shipping on schedule.

• Prototype lightweight internal review aids (GenAI-assisted data-flow diagrams, risk scoring, etc.).

Minimum Required Skills

• Deep threat-modeling & secure-SDLC expertise in large, distributed environments: event-streaming platforms (e.g., Kafka), API gateways, large-scale data platforms/warehouses, relational DBs, cloud-native microservices, and GenAI/LLM services

• Strong grasp of OWASP Top 10, AI/ML-specific risks, and CVSS scoring; able to balance precision with velocity in a high-volume pipeline.

• Passion for emerging AI-security research and defensive design patterns.

• Demonstrated threat-modeling and security requirements experience

• Ability to balance risk and efficiency.

• Comfortable advising tens to hundreds of engineers every week.

• Proven ability to work efficiently under high review volume without compromising decision quality; you know when “good enough” is enough and when to push deeper.

Preferred Skills

• Software Engineering Experience in a distributed/microservice environment (does not merely hold a CS degree)

• Prior success in an engineering-driven, large-scale product company that ships in agile cycles. (e.g. Stripe, Netflix, Airbnb, Databricks, Snowflake, Amazon, Meta, Google or AI/ML vendors - Anthropic, OpenAI)

What you will get

• Competitive hourly rate (contract)

• #SecureAI – Work on cutting-edge AI-security challenges at real-world scale.

• #SecureWithAI – Adopt and shape AI tooling to help us (and you) move faster.