• AI Vendor & Technology Evaluation • Secure AI Implementation Guidance for Development Teams • AI Risk Management & Compliance • Security Integration Reviews • Training , Awareness & Policy

• Own and deliver security revenue targets across new and existing customers • Identify, qualify, and progress cybersecurity opportunities within the pipeline • Lead complex sales cycles, from discovery through to negotiation and closure • Develop and execute account-level security growth plans with Account Managers • Engage senior stakeholders (CIO, CTO, CISO) on cybersecurity strategy and risk • Conduct consultative discovery to uncover business risks, compliance needs, and technical gaps • Position tailored solutions aligned to customer outcomes (risk reduction, compliance, resilience) • Present and demonstrate cybersecurity solutions in a clear, business-relevant manner • Maintain deep knowledge of cybersecurity domains, including: Managed Security Services (SOC, MDR, SIEM), Endpoint and network security, Identity and access management, Cloud security and zero trust architectures, Governance, risk, and compliance (GRC) • Collaborate with pre-sales and technical teams to design high-quality solutions • Work closely with Account Managers to drive joint opportunities, Marketing on campaigns, events, and go-to-market initiatives, and delivery teams to ensure smooth transition from sale to implementation. • Build strong relationships with strategic security vendors • Leverage partner programmes, incentives, and technical resources • Stay current on vendor roadmaps and emerging technologies

• You design prompt injection scenarios in YAML, run them against frontier models, validate success rates, and submit passing tasks. • 5 high-quality tasks per week (full-time equivalent).

Role Description We are seeking an experienced and motivated Staff Product Security Engineer to join our growing Security team. This individual will be responsible for the end-to-end security of our consumer products, digital platform, and an emerging hardware device line. The Staff Product Security Engineer will: - Drive security review, threat modeling programs, lead penetration testing, manage PSIRT operations, champion secure AI adoption, and establish security guardrails for AI-powered products and AI-assisted development workflows within a highly regulated financial services environment. - Report to the Senior Manager of Product Security. Your day-to-day: - Lead security architecture/design review and threat modeling sessions with product and engineering teams using STRIDE, PASTA, and attack tree methodologies. - Translate threats into actionable, risk-rated engineering remediations prioritized by severity. - Conduct hands-on penetration testing and security assessments across our full product stack producing actionable reports for engineering and leadership. - Red-Team our AI-powered products and development tools to test for prompt injection, data exfiltration, MCP server exploitation, and tool misuse. - Probe AI guardrails to ensure they hold. - Experience with product security tools such as Burp Suite, Metasploit, Kali Linux, Postman, etc. - Drive PSIRT Operations by triaging incoming vulnerability reports, leading technical investigations, coordinating remediation with engineering, scoring severity (CVSS), managing coordinated disclosure with external researchers and on-call incidents. - Manage zero-day findings, driving remediation, collaborating with engineering to patch or mitigate with compensating controls. - Shape the posture of our AI-assisted development environment defining and enforcing enterprise policies for Claude and Cursor. - Partner across the organization, sitting in design review with architects, advising product managers and engineering teams on security and compliance implications of new features. - Brief executives on emerging AI threats, mentor junior security engineers, and collaborate with the AI team on securing ML pipelines. - Champion Security Culture by running developer training on secure coding with AI assistants, evangelizing security by design for products, and ensuring every engineer understands that product security is an enabler and not a gate. Qualifications - 10+ years of product security experience spanning application security, cloud security, and secure SDLC. - Expert level Threat Modeling using STRIDE, PASTA or equivalent across web, mobile, cloud, embedded, and AI systems. - Hands-on penetration testing skills across applications, API, cloud infrastructure, and hardware/firmware. - PSIRT operational experience from vulnerability intake and triage. - Deep hands-on AI security expertise and expert level understanding of OWASP Top 10 for LLM, API, Web, Mobile. - Strong hands-on experience in security tools SAST, DAST, SCA, and securing AI development tools specifically Claude and Cursor. - Strong programming ability and capability to review code, build security tools, automate workflows. - Deep technical knowledge of CI/CD pipeline and relevant tools for web and mobile applications. - Strong knowledge of programming languages & frameworks (i.e. Node.js, Java/Kotlin, React, Redux, Swift, SwiftUI), cloud technologies and infrastructure (i.e. AWS, GCP, Kubernetes, Ambassador, Helm), and databases (i.e. MySQL, DynamoDB, Redis). - Ability to influence without authority, mentor without managing, and communicate complex risks in a language that resonates with engineers, product managers, legal and compliance, and executives alike. Requirements - Hardware and embedded security experience with knowledge of secure boot, firmware integrity, hardware root of trust, and IoT threat modeling experience. - Experience in the Financial industry, knowledge of PCI DSS, COPPA or demonstrated ability to learn regulated domains quickly. Benefits - Medical, dental, vision, and HSA match. - Paid life insurance, AD&D, and disability benefits. - Traditional 401k with company match. - Unlimited PTO. - Paid company holidays and pop-up bonus holidays. - Professional development stipends. - Mental health resources. - 1:1 financial planners. - Fertility healthcare. - 100% paid parental and caregiving leave, plus cleaning service and meals during your leave. - Flexible WFH, both remote and in-office opportunities. - Fully stocked kitchen, catered lunches, and occasional in-office happy hours. - Employee resource groups.