Product Security Engineer
Supabase
About Supabase: Supabase is the open-source Firebase alternative, built from the ground up to provide developers with enterprise-grade backend capabilities. Born-remote and open-source-first, our globally distributed team of over 280 members across 55+ countries supports a scaling global community of more than 500,000 developers. With over $500M raised from elite technology investors, we build in public, contribute deeply to the open-source ecosystem, and engineer highly scalable tools that developers love. We use what we ship every single day, maintaining a fast-paced, asynchronous workplace focused on absolute technical excellence and speed.
Position Overview
We are seeking a highly analytical, systems-minded Product Security Engineer to join our core Security team and help strengthen how security is built directly into Supabase’s products, platform layers, and cloud engineering workflows. In this critical, high-trust engineering seat, you will partner closely with distributed software engineers, infrastructure squads, and technical leadership to proactively reduce vulnerability risk earlier in the software development lifecycle (SDLC). Your goal is to design and ship secure-by-default systems, balancing sharp technical judgment with pragmatism to improve product defenses without becoming a bottleneck to engineering velocity, deployment speed, or developer autonomy.
Key Responsibilities
- Threat Modeling & Secure Design: Conduct deep-dive threat modeling, secure architecture reviews, and automated code audits to identify and mitigate practical vulnerability vectors.
- Scalable Security Mechanisms: Build, scale, and maintain automated security guardrails, scanning tools, and developer-friendly guardrails that enable rather than restrict velocity.
- Vulnerability & Bug Bounty Management: Manage, expand, and mature our public bug bounty and responsible vulnerability disclosure processes, leading triage, technical validation, and engineering prioritization loops.
- Incident Response & On-Call: Participate in asynchronous security on-call rotations, responding to urgent platform events with clear judgment, rapid technical remediation, and calm execution.
- Risk Prioritization: Analyze complex architectural flaws, distinguishing clearly between purely theoretical exploits and material business risks to map engineering priorities effectively.
- Core Fundamentals Hardening: Harden application security parameters across the platform, with a focus on advanced authentication (Auth), session tracking, API routing, and secure secrets handling.
Required Skills & Qualifications
- Proven professional history operating in application security, product security, or cloud security engineering roles within fast-scaling software environments.
- Demonstrated experience working comfortably across cloud-native developer tools, SaaS frameworks, distributed platforms, or containerized infrastructure products.
- Deep conceptual and hands-on grounding in web application security fundamentals, including modern authentication loops, session management, secure API construction, and secrets isolation.
- Practical exposure running vulnerability triage pipelines, responsible disclosure programs, or production security incident response frameworks.
- Outstanding written communication and interpersonal mechanics, optimized to drive technical clarity and align goals inside a highly collaborative, asynchronous environment.
- Location Context: 100% remote-first full-time operational flexibility open to qualified security engineers operating globally from any country.
Preferred Strategic Indicators (Nice to Have)
- Technical familiarity with or strong operational interest in **Postgres database architectures, Kubernetes container orchestration, or open-source software maintenance**.
- Prior history contributing to open-source security primitives or designing secure defaults inside multi-tenant database-as-a-service (DBaaS) networks.
What We Offer
- The exceptional technical canvas to directly shape, mature, and anchor the core product security posture for a platform scaling to millions of developers worldwide.
- ESOP Participation: Every single team member receives equity ownership allocations, ensuring a shared stake in our long-term commercial success.
- Complete work-from-home remote parameters supported by a dedicated **Tech Allowance** to configure your ideal workspace hardware.
- Comprehensive health insurance covering 100% of the employee’s premium and 80% for direct dependents globally.
- Annual dedicated education allowances to fund your professional development, advanced courses, books, and conference tracking.
- Profound asynchronous schedule flexibility matched with premium **WeWork memberships** anywhere in the world and an epic, annual company-wide off-site week.
- Role Description Serve as a senior security engineering resource supporting multiple product and development teams. Lead application and platform security assessments for new features, services, and emerging technologies, including AI-driven solutions. Conduct security...SuggestedFull time
$140k - $175k
Role Description We’re looking for a Senior Product Security Engineer who is passionate about partnering with engineers to assess and mitigate the security risk of our virtualization stack. You'll own the security risk posture for our virtualization stack by: ~Building...SuggestedFull timeLocal areaFlexible hours$107.7k - $285.9k
Role Description GitHub is transforming how the world builds secure software, and we are looking for a Product Security Engineer III to join our Product Security Engineering team. This is a hands-on engineering role focused on building internal security platforms, tooling...SuggestedFull time- ...nutshell: ~You are a deeply technical engineer who gets restless when pipelines aren't... ...locked down. ~You care about shipping secure software! ~This is an individual-contributor... ...that catch issues before they reach production. ~Systematically, consistently and...SuggestedFull timeRemote workFlexible hours
- ...comfortable operating directly within the product development lifecycle—understanding how... ...applying that understanding to product security decisions, acceptance criteria, and release... .... ~Serve as advisor to product and engineering on security risk, architectural trade-...SuggestedMinimum wageFull timeLocal area
$218k - $235k
Role Description We're seeking a Senior Product Security Engineer who is passionate about building and scaling robust security programs in an AI-forward engineering environment. Reporting to our Head of IT Operations & Information Security, you'll lead efforts to mature...Full timeRemote work$156k - $214.5k
Role Description At Bose, sound isn’t just a product — it’s part of how people experience the world. From music and entertainment... ...moments that matter every day. We’re looking for a Senior Product Security Engineer to help protect the systems and services behind those...Full time$127k - $165k
Role Description We are seeking a Senior Product Security Engineer with medical device experience who will ensure robust protection of patient data, device integrity, and regulatory compliance. In this role, you will partner with engineering, product management, regulatory...Full timeRemote work$187k - $260k
...organizations, including 80% of the Fortune 100, rely on Airtable to transform how work gets done. Join Airtable as a Product Security Engineer and play a pivotal role in shaping the security of our rapidly evolving platform as we expand our AI and LLM-powered offerings...For contractorsLive inRemote work- ...Senior Product Security Engineer At StackAI, security is how we earn the trust of the enterprises building AI assistants on our platform. We're hiring a hands-on (Senior) Product Security Engineer to design, build, and harden the secure architecture at the core of the...Remote work
$137.86k - $250k
...time - safely creating abundance for all. About the Team The Security Engineering team is responsible for protecting our robots,... ...into how we build and operate humanoid robotics systems. The Product Security team focuses on the end-to-end security of NEO itself...Temporary workLocal areaRemote workWork from homeFlexible hours$130k - $180k
...About the role We are looking for an early-career Security Engineer to join our Product Security team, someone who has a builder's mindset, is eager to learn, and is excited to contribute to both planned initiatives and dynamic, real-time security needs with enough...Full timeWork at officeLocal areaRemote workNight shift- ...identity verification infrastructure where security isn't a layer we add later, it's core to... .... As AI tooling expands what engineers can build and how fast they can build it... .... What you'll work on This is a product security role embedded in a generalist security...Full timeFor contractorsInternshipRelocation package
$108.24k - $151.48k
...your work location, balancing what your work requires. What's in it for you: The Residential HVAC team is adding a Product Security Engineering position to focus on embedded systems, services, applications and the associated product development processes used in...Hourly payLocal areaWork from home$150k - $184k
...corps Work can be performed in Chicago, San Francisco, Phoenix, or New York **Salary depends on location*** Job Title: Senior Product Security Engineer Location: Scottsdale, AZ | San Francisco, CA | Chicago, IL | New York, NY (Hybrid Work Model) Salary Range: $160,000 – $18...Full timeWork at officeRemote work- ...the workplace. The Role Maintaining the security and privacy of our users is paramount. As... ...role offers an opportunity to apply engineering and security skills to make a direct impact... ...compliance posture. This role is part of the Product Security (ProdSec) team, reports to the...Full timeRemote workFlexible hours
$217k - $303.9k
Role Description Reddit is hiring a Staff Product Security Engineer to make the secure path the easiest path for engineers and AI agents. You'll lead the design and delivery of secure frameworks, paved paths, and workflow-native controls that eliminate recurring vulnerability...Full timeFor contractors$151k - $196k
Role Description We are seeking a Staff Product Security Engineer with proven experience in the medical device industry. In this role, you will safeguard medical devices by identifying, assessing, and mitigating security risks unique to healthcare technology. You will collaborate...Full timeRemote workShift work$102k - $177.1k
Role Description Johnson & Johnson’s MedTech cybersecurity team is recruiting for an experienced Principal Product Security Engineer. The role can be remote-based or located onsite in Danvers, MA or Raritan, NJ. This role will require up to 10% travel. As the world’s...Full timeImmediate startRemote work- ...continuously evolve a suite of internal security tools and platforms — including: ~Vulnerability... ...The successful candidate will engineer scalable, well-tested, end-to-end web applications... ...engineering experience building production web applications end-to-end. ~Strong...Full time
$174.2k - $293.7k
Role Description SailPoint’s Cybersecurity organization is seeking a Staff Product Security Engineer with a passion for cybersecurity and protecting the organization. The ideal candidate combines strong application security expertise with practical software engineering...Full timeTemporary workRemote workFlexible hoursShift work$95k - $110k
...Description You’ll be responsible for helping secure PTC by providing cyber security expertise... ...and networks. Additionally, the Security Engineer assists in the development of cyber... ...years of experience in Application Security, Product Security, or Software Security...Full timeWork at officeFlexible hours$201.3k - $352.3k
Role Description The ServiceNow Security Organization (SSO) delivers world-class, innovative security solutions to reduce risk... ...positive impact. ServiceNow seeks a senior staff-level product security engineer to serve as a senior technical authority within the Product...Full timeFlexible hours$180k - $240k
Role Description We are seeking a seasoned and highly accomplished Senior Staff Product Security Engineer to join our security leadership team. This is a senior individual contributor role that carries significant organizational influence. You will define the technical...Full timeWork at officeLocal areaRemote workWork from homeFlexible hours$165k - $185k
Role Description We are seeking an experienced and motivated Staff Product Security Engineer to join our growing Security team. This individual will be responsible for the end-to-end security of our consumer products, digital platform, and an emerging hardware device...Full timeWork at officeRemote workWork from homeFlexible hours$136k - $187k
...Product Security Engineer Remote - US West About the Job: LaunchDarkly's Product Security team is hiring a Product Security Engineer to strengthen how we secure the platform engineers build with every day. You'll bring depth in security fundamentals and program...Full timeWork at officeRemote work- ...Senior Product Security Engineer DataRobot delivers AI that maximizes impact and minimizes business risk. Our platform and applications integrate into core business processes so teams can develop, deliver, and govern AI at scale. DataRobot empowers practitioners to...Local areaRemote workWorldwideFlexible hours
- ...Product Security Engineer We're looking for a Product Security Engineer to join our team and help strengthen how security is built into Supabase's products, platform, and engineering workflows as we continue to scale. You'll work closely with software engineers, infrastructure...Remote workFlexible hours
- ...the environment and civilization from the effects of infrastructure failure. Role at a Glance We are hiring an experienced Product Security Engineer to embed security deeply into how Gecko designs, builds, deploys, and operates software. This role goes far beyond...Work at officeLocal areaWork from homeFlexible hours
$113k - $125k
...code - testing, deployments, application security, reliability, compliance, and cost... ...move even faster. About the Role Product Security is responsible for ensuring the... ...practices, and developing partnerships with engineering and product teams to accelerate the release...Local areaImmediate startRemote workShift work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Product Security Engineer. Be the first to apply!
- digital design engineer Remote
- product design engineer Remote
- director of product engineering Remote
- senior software design engineer Remote
- sr. product engineer Remote
- cad design engineer solidworks Remote
- chief design engineer Remote
- senior physical design engineer Remote
- ic design engineer Remote
- staff design engineer Remote








