Product Security Engineer

Movableink

Remote
Base: $170,000-$200,000pyear; bonus/equity: + bonu...
Remote
Implement sast with semgrep
Configure sca with dependabot
Manage secrets detection
Movable Ink is hiring a Product Security Engineer to help secure codebases, CI/CD pipelines, and development practices

Job Summary

  • Movable Ink is hiring a Product Security Engineer to help secure codebases, CI/CD pipelines, and development practices.
  • This role is critical to staying ahead of vulnerabilities before they reach production, especially with increasing AI coding tools and supply chain attacks.
  • The company is committed to building a diverse and inclusive culture where all Inkers can thrive.

Matching Summary

Movable Ink is hiring a Product Security Engineer to help secure codebases, CI/CD pipelines, and development practices.

Salary

Base: $170,000-$200,000/year; Bonus/Equity: additional bonus depending on the position ultimately offered; Benefits: full range of medical, financial, and/or other benefits

Skills & Requirements

Must-have

  • Implement SAST with Semgrep
  • Configure SCA with Dependabot
  • Manage secrets detection
  • Integrate security scanning into CI/CD
  • Triage and prioritize vulnerabilities
  • Support DAST efforts
  • Contribute to ASPM platform

Nice-to-have

  • Secure coding guidelines
  • Educate developers on best practices
  • Evaluate new security tools

Key Requirements

  • 2+ years of experience in application security, DevSecOps, or security-focused software engineering
  • Hands-on experience with SAST, SCA, or secrets scanning tools
  • Familiarity with CI/CD pipelines and GitHub Actions
  • Understanding of OWASP Top 10
  • Experience reading and reviewing code in Ruby, Python, JavaScript, or Go
  • Comfortable navigating codebases and working with engineering teams

Work Rights

Not specified

Tailored Resume

Cover Letter