Responsibilities
- Guide product security from concept to production by leading threat modeling and design review processes.
- Perform advanced threat modeling and evaluate security architecture for complex systems, new products, and platform-wide initiatives, delivering expert recommendations aligned with organizational security objectives.
- Shape and execute the technical direction of the Application Security program with an emphasis on scalable assurance, proactive defenses, and well-defined security standards.
- Serve as a trusted technical advisor to engineering and product teams, offering guidance on secure design, coding practices, vulnerability mitigation, and product-level security features.
- Create educational resources to strengthen security knowledge and best practices across engineering teams.
- Lead comprehensive secure code reviews using both manual techniques and automated tools to detect critical vulnerabilities, including logic flaws and authorization issues.
- Evaluate AI models, agents, and system architectures from a security perspective.
- Manage internal penetration testing efforts for new and legacy systems to uncover potential security exposures.
- Improve the end-to-end vulnerability management lifecycle, ensuring critical issues are identified, prioritized, and resolved efficiently with minimal friction for developers.
- Support incident response by providing deep expertise on product and application security during investigations of security events.
Work Arrangement
Hybrid — San Francisco, New York, Pittsburgh
Other
- The company will not request financial information, payments, or personal details such as bank account numbers or social security numbers during the hiring process.
- All communication from the recruiting team will originate from an email address ending in @abridge.com.
- Accommodations are available upon request during the interview process for candidates who need them.
