Application Security Engineer - Product jobs in United States
cer-icon
Apply on Employer Site
company-logo

Audit Data Search, Inc. ยท 23 hours ago

Application Security Engineer - Product

positionNYC Metro Area
timeFull-time
remoteHybrid
seniorityLead/Staff
date10+ years exp

Audit Data Search, Inc. is a Fortune-level consumer technology company seeking a Principal Product Security Engineer to partner with engineering teams to ensure secure design practices for complex applications. This hands-on senior level role involves influencing architecture, implementation, and security strategy while mentoring junior team members.

Hiring Manager
Rachel Stevens
linkedin

Responsibilities

Lead secure architecture reviews and threat modeling for complex client-side applications
Partner directly with engineers on design decisions, code reviews, and remediation, including guidance on secure implementation
Guide product developers in crafting products to be robust against misuse and abuse - with the lowest friction possible
Drive security for desktop and mobile applications across modern OS environments (Windows, macOS, Linux, iOS, Android)
Advise on OS-level security controls, including sandboxing, privilege separation, IPC, and secure local storage
Embed security into the SDLC through tooling, secure patterns, and developer education
Support vulnerability remediation and incident response in thick client environments
Influence security strategy across a high-impact product area
Oversee, coach and mentor more junior members of the team

Qualification

Application SecurityOS Security ModelsGenAI SecuritySecure Coding PracticesIncident ResponseStatic/Dynamic AnalysisCross-team CommunicationMentoring

Required

10+ years of experience in product or application security, with demonstrated ownership at the system or product level
Bachelor's Degree in a related field
Deep, hands-on experience securing thick client / native applications (desktop and/or mobile)
Strong understanding of OS security models, including sandboxing, IPC, local storage protections, and secure use of platform APIs
Proficiency in GenAI security, modern cryptography, certificate management, secure authentication (OAuth, WebAuthn, FIDO2), and secure session handling
Hands-on experience with secure coding practices in at least one systems language (C++, Rust, Go) and one application language (Kotlin, Swift, C#)
Familiarity with static/dynamic analysis tools, fuzzing, penetration testing, and reverse engineering for client applications
Experience embedding security into the SDLC (threat modeling, code reviews, secure design patterns)
Ability to manage incident response and vulnerability remediation for thick client environments
Strong cross-team communication skills and ability to write clear developer-facing security guidelines
Ability to work directly with engineers and provide practical, actionable remediation guidance and clearly communicate ideas and solutions

Preferred

Experience securing large-scale consumer products
Background in systems-level or client-side security research

Company

Audit Data Search, Inc.

twitter
company-logo
Since its inception in 1981, Audit Data Search, Inc.
dateFounded in 1981
location
Tampa/ St. Petersburg, Florida , US
people-size2-10 employees
web-link
http://www.auditdatasearch.com

Funding

Current Stage
Early Stage
Company data provided by crunchbase