Senior Technical Product Security Engineer

Principal Technical Product Security Engineer

*Please apply ONLY if you meet the requirements listed in this job posting.*

About the Company

Our client, a leading digital media and technology company is seeking a Principal Technical Product Security Engineer in building a flagship product. This person will partner deeply with engineering and drive secure-by-design practices for complex, thick client applications at scale. This role offers long-term ownership, early architectural influence, and the opportunity to shape how secure products are built within a highly technical security organization.

About the Role

This is a hands-on senior level role for someone with demonstrated experience securing desktop and/or mobile software, not just reviewing web applications. You’ll work early in the SDLC to influence architecture, implementation, and long-term security strategy with minimal friction to developers.

Responsibilities

• Lead secure architecture reviews and threat modeling for complex client-side applications

Searching for Cyber Security roles that provide visa sponsorship? Connect with international employers through Cyber Security Jobs with Visa Sponsorship opportunities actively seeking talented professionals.

• Partner directly with engineers on design decisions, code reviews, and remediation, including guidance on secure implementation
• Guide product developers in crafting products to be robust against misuse and abuse - with the lowest friction possible.
• Drive security for desktop and mobile applications across modern OS environments (Windows, macOS, Linux, iOS, Android)
• Advise on OS-level security controls, including sandboxing, privilege separation, IPC, and secure local storage
• Embed security into the SDLC through tooling, secure patterns, and developer education
• Support vulnerability remediation and incident response in thick client environments
• Influence security strategy across a high-impact product area
• Oversee, coach and mentor more junior members of the team

Qualifications and Skills:

• 10+ years of experience in product / application security, with demonstrated ownership at the system or product level
• Bachelor's Degree in a related field, Master's Degree highly preferred
• Deep, hands-on experience securing thick client / native applications (desktop and/or mobile)
• Strong understanding of OS security models, including sandboxing, IPC, local storage protections, and secure use of platform APIs
• Proficiency in GenAI security, Agentic AI, modern cryptography, certificate management, secure authentication (OAuth, WebAuthn, FIDO2), and secure session handling
• Hands-on experience with secure coding practices in at least one systems language (C++, Rust, Go) and one application language (Kotlin, Swift, C#).
• Familiarity with static/dynamic analysis tools, fuzzing, penetration testing, and reverse engineering for client applications
• Experience embedding security into the SDLC (threat modeling, code reviews, secure design patterns)
• Ability to manage incident response and vulnerability remediation for thick client environments.
• Strong cross-team communication skills and ability to write clear developer-facing security guidelines.

Interested in opportunities specifically in United State? Discover our dedicated Visa Sponsorship Jobs in United State page featuring roles from top employers in this location.

• Ability to work directly with engineers and provide practical, actionable remediation guidance and clearly communicate ideas and solutions.

Preferred Skills

• Experience securing large-scale consumer products
• Background in systems-level or client-side security research

Location:

This role is open to remote candidates located in the US who are comfortable with quarterly trips to the NYC office.

Sponsorship:

Visa Sponsorship available for highly qualified candidates.