Security Engineer – Product Security

About the role

Coder is seeking a Security Engineer focused on product security. You will work closely with engineering teams to embed security throughout the software development lifecycle and help customers ship safer software.

Key responsibilities

• Partner with engineering to integrate security into the SDLC, including threat modeling, secure design reviews, and defining security requirements.
• Triage findings from application‑security tooling and guide remediation with clear priorities and practical fixes.
• Define and maintain secure‑by‑default patterns, libraries, templates, and CI checks for developers.
• Improve supply‑chain security across build and release pipelines, covering signing, provenance, and policy enforcement.
• Enable teams to ship secure changes quickly by providing clear, repeatable security guidance.

Required profile

• 3+ years of professional experience in product security, application security, or a similar engineering security role.
• Strong fundamentals in application security and familiarity with common vulnerability classes.
• Hands‑on experience securing CI/CD workflows (e.g., GitHub Actions, GitLab CI).
• Experience with modern security tooling such as SAST, SCA, dependency scanning, and secret scanning.
• Ability to collaborate effectively with engineers, explain trade‑offs, and drive secure changes through delivery.

Required skills

• Go
• Python
• GitHub Actions
• GitLab CI
• SAST
• SCA
• Dependency scanning
• Secret scanning
• Threat modeling
• Secure design reviews