Sr. Product Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Navan · 1 day ago

Sr. Product Security Engineer

positionNew York, NY
timeFull-time
remoteHybrid
seniorityMid, Senior Level
money$128K/yr - $230K/yr
date6+ years exp

Navan is seeking a Senior Product Security Engineer responsible for securing their products by identifying risks early in the software development lifecycle. The role involves developing application security tooling and processes, conducting security assessments, and ensuring the continuous security of customer-facing products and internal tools.

Business TravelFinancial ServicesPaymentsSoftware
check
H1B Sponsor Likelynote

Responsibilities

Act as the tech lead for high-priority product security initiatives, and ensure timely delivery of impactful initiatives
Be a key advisor to the overall strategy and roadmap of the Product Security Program
Participate in expanding/maturing the Navan S-SDLC program
Review product designs for security defects, perform threat modeling and recommend remediations
Work with engineers to identify the tradeoffs of different solutions and recommend the ideal design to meet security requirements
Design and develop security tools and processes to be leveraged by development teams
Work closely with engineering to sustain processes and/or convert manual integrations to automated pipeline activities
Assist in developing custom Security as Code solutions
Provide training, guidance, and assistance to development teams early in the SSDLC
Cultivate security ownership in the product teams
Bring visibility to product/application vulnerabilities in a consistent manner to enable appropriate prioritization and remediation
Help build the Red Team and PSIRT functions

Qualification

Threat modelingApplication security testingCloud securitySecurity as CodeJava Spring FrameworkInfrastructure as codeContinuous integrationSecurity testing toolsAgile developmentCommunication skillsTeam collaboration

Required

Proven experience performing threat modeling and architecture reviews for complex applications
Proven experience delivering critical org-wide product security initiatives
Proven experience performing application, cloud and mobile penetration testing in high risk environments like financial or healthcare companies
6-8 years of Technical Product Security related experience around SSDLC tooling, automation, remediation advisory, security testing, threat modeling/attack surface analysis
Ability to execute in multifaceted and highly technical organizations
Ability to provide pragmatic security advice for web applications, mobile applications, and cloud software
Experience working in Agile development with experience in technologies such as: Cloud environment (AWS, or similar), Application security testing tools (SAST, DAST, IAST, SCA, or similar.), Infrastructure as code (Terraform, or similar), Java Spring Framework (3+ years), Hibernate or similar ORM technologies, JavaScript/CSS, and Angular, Containers (Docker, Kubernetes, or similar), Continuous integration (Jenkins, Github Actions or similar), Integration of Security testing tools into CI pipelines, Defect tracking (Jira, or similar.), Source code management (GitHub, or similar.)
In-depth knowledge of common application & network protocols, cryptographic primitives, authentication & authorization protocols, and common security threats, such as attack techniques, evasive techniques, and preventative & defensive methods
Deep knowledge of cloud operational models and secure SaaS architecture in a containerized microservices world

Preferred

Published contributions to the security community
Deep understanding of browser security and modern JavaScript frameworks
Knowledge of compliance requirements for industry-standard certifications like PCI DSS, SOC2, HIPAA, and FedRAMP
Experience working in small teams and delivering outsized impact

Company

Navan

twittertwittertwitter
Glassdoor3.1
company-logo
Navan provides travel, expense, and corporate card management to automate manual processes and drive spend visibility.
dateFounded in 2015
location
Palo Alto, California, USA
people-size1001-5000 employees
web-link
https://navan.com

H1B Sponsorship

Navan has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (45)
2024 (22)
2023 (38)

Funding

Current Stage
Public Company
Total Funding
$2.25B
Key Investors
Goldman Sachs Bank USACoatueGreenoaks
2025-10-30IPO
2025-04-07Convertible Note
2022-12-08Debt Financing· $400M

Leadership Team

leader-logo
Ariel Cohen
CEO and Co-Founder
linkedin
leader-logo
Carlos Avelar
Account Executive

Recent News

Morningstar.com
Navan, Inc. INVESTIGATION: Kirby McInerney LLP Announces Investigation Into Potential Securities Fraud on behalf of Investors (NAVN)
2026-01-16
Benzinga.com
12 Consumer Discretionary Stocks Moving In Wednesday's Intraday Session
2026-01-16
GlobeNewswire
NAVAN ALERT: Bragar Eagel & Squire, P.C. is Investigating Navan, Inc. on Behalf of Navan Stockholders and Encourages Investors to Contact the Firm
2026-01-16
Company data provided by crunchbase