Thumbtack · 2 hours ago
Security Engineer (App Sec and Cloud Infra)
United States
Full-time
Remote
Mid, Senior Level
$178K/yr - $230K/yr
4+ years expThumbtack is a company that helps millions of people confidently care for their homes. They are seeking a Security Engineer to own and deliver application security work, partner with engineering teams to identify and remediate security risks, and integrate security controls into cloud infrastructure.
Home ServicesLocalProfessional ServicesService Industry
Responsibilities
Own and deliver application security work within defined projects or domains
Contribute to cross-functional security initiatives, executing clearly scoped pieces of larger efforts
Identify, prioritize, and help remediate application security risks in partnership with engineering teams
Apply secure-by-default patterns and approved architectures when designing or reviewing systems
Support cloud infrastructure security by integrating security controls into CI/CD pipelines, IAM, networking, and runtime environments
Partner with product and engineering teams to assess risk and recommend practical, risk-informed security improvements
Participate in application security design reviews and threat modeling for new and existing systems
Write code, reviews, and documentation to address vulnerabilities and reduce recurring classes of issues
Participate in security incident response and contribute to post-incident analysis and remediation
Qualification
Required
4+ years of experience in software engineering, application security, or cloud infrastructure security
Practical experience with application security techniques such as threat modeling, secure design patterns, authentication and authorization, secrets management, and vulnerability remediation
Strong understanding of secure coding practices and common application security risks (e.g., OWASP Top 10)
Experience securing cloud-native systems in AWS and/or GCP
Ability to assess security risks and break down complex problems, reason about tradeoffs, make sound recommendations, and deliver practical, impactful solutions with guidance when needed
Strong sense of ownership over assigned work, with the ability to execute independently and follow through
Clear written and verbal communication skills, including the ability to explain security issues to engineers with varying levels of security expertise
A growth mindset and interest in learning from more senior engineers and expanding depth in both application and cloud infrastructure security over time
Company
Thumbtack
Thumbtack is a home services website connecting users with local service providers.
1001-5000 employees
H1B Sponsorship
Thumbtack has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (35)
2024 (48)
2023 (39)
2022 (53)
2021 (69)
2020 (47)
Funding
Current Stage
Late StageTotal Funding
$773.2MKey Investors
Qatar Investment AuthoritySequoia CapitalBaillie Gifford
2024-07-31Debt Financing· $75M
2021-06-15Series G· $275M
2019-07-22Series F· $150M
Leadership Team
Marco Zappacosta
Co-founder & CEO
Recent News
2025-12-02
Morningstar.com
2025-11-19
Company data provided by crunchbase