Staff Product Security Engineer #4612 jobs in United States
cer-icon
Apply on Employer Site
company-logo

GRAIL · 6 hours ago

Staff Product Security Engineer #4612

positionMenlo Park, CA
timeFull-time
remoteHybrid
seniorityLead/Staff
date8+ years exp

GRAIL is a healthcare company focused on early cancer detection through innovative technologies. They are seeking a Staff Product Security Engineer to lead product security initiatives, ensuring secure and resilient products while collaborating with Engineering and Product teams.

BiotechnologyHealth CareHealth DiagnosticsMedicalMedical Device
check
H1B Sponsor Likelynote

Responsibilities

Lead product security architecture and security-by-design practices across the full product lifecycle, from concept through post‑market support
Embed security into the Secure Software Development Lifecycle (SSDLC) and DevSecOps pipelines, establishing guardrails that balance risk reduction with engineering velocity
Perform and guide threat modeling, security risk assessments, and architecture reviews across products and enterprise‑connected systems
Define and enforce security controls for AI- and ML-enabled products, including data protection, model integrity, access controls, and secure pipelines
Manage, and operate Product Security post-market surveillance activities across GRAIL products and services, from intake through remediation and closure
Influence secure solution architectures for GRAIL ecosystems, considering system integration, access control (IAM), key management (KMS), secure data flows, resilience, patch management, and recovery
Scope, oversee, and review penetration testing and advanced security testing activities across software, systems, and infrastructure
Serve as a product security subject matter expert during incident response, root cause analysis, and post‑incident improvements
Partner with Product, Engineering, Quality, Legal, and other stakeholders to ensure alignment with regulatory and industry cybersecurity requirements
Define, track, and report product security metrics and KPIs to provide visibility into security posture and risk trends
Mentor and coach engineers, contributing to the growth of product security capabilities and future technical leaders at GRAIL

Qualification

Product securityCybersecurityApplication securityThreat modelingSecurity risk assessmentsDevSecOps practicesIncident responseVulnerability managementAI/ML securityProfessional security certificationsRegulated environmentsCross-functional collaborationMentoringCommunication skills

Required

8+ years of experience in product security, cybersecurity, application security, or related technical security roles
Hands-on experience leading threat modeling, security risk assessments, and vulnerability management for complex software products
Experience embedding security into modern software development environments, including CI/CD and DevSecOps practices
Experience supporting security incident response and conducting root cause analysis in production environments
Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or a related field, or equivalent practical experience

Preferred

Experience working in regulated environments, including medical devices, healthcare, life sciences, or similarly regulated industries
Knowledge of relevant standards and frameworks such as IEC 62304, ISO 14971, ISO 80001-2, NIST, and FDA pre‑ and post‑market cybersecurity guidance
Experience securing AI/ML systems, including mitigating risks such as data poisoning, model manipulation, and unauthorized access
Demonstrated experience delivering cybersecurity programs, including tabletop exercises and cross‑functional incident simulations
Professional security certifications such as OSCP, GPEN, GCIH, GWAPT, or equivalent
Strong ability to translate technical security risks into business and patient-impact considerations for senior stakeholders
Experience working with globally distributed teams or international stakeholders

Benefits

Flexible time-off or vacation
A 401(k) retirement plan with employer match
Medical, dental, and vision coverage
Carefully selected mindfulness programs

Company

GRAIL

twittertwittertwitter
Glassdoor3.5
company-logo
Grail is a healthcare company that develops pan-cancer screening tests designed to detect cancers at an early stage.
dateFounded in 2016
location
Menlo Park, California, USA
people-size1001-5000 employees
web-link
https://www.grail.com

H1B Sponsorship

GRAIL has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (21)
2024 (26)
2023 (23)
2022 (46)
2021 (25)
2020 (9)

Funding

Current Stage
Public Company
Total Funding
$2.44B
Key Investors
ARCH Venture PartnersIllumina
2025-10-20Post Ipo Equity· $325M
2025-10-16Post Ipo Equity· $110M
2024-06-13IPO

Leadership Team

leader-logo
Satnam Alag
Senior Vice President Software Engineering and Chief Security Officer
linkedin
leader-logo
Joshua J. Ofman
President
linkedin

Recent News

The Motley Fool
Here's Why This Exciting Healthcare Stock Popped 13% Today
2026-01-23
GenomeWeb
Grail Reports Preliminary FY2025 Revenue Growth at JPM Healthcare Conference
2026-01-16
GenomeWeb
At JP Morgan, Grail Projects 18 Percent Growth in FY25 Revenue
2026-01-14
Company data provided by crunchbase