Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Staff Product Security Engineer, Secure Design (Kernel and Virtualization)

$175k - $190k

DigitalOcean

Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and bold, and are energized by the fast-paced environment of a true industry disruptor, you’ll find your place here. We value winning together—while learning, having fun, and making a profound difference for the dreamers and builders in the world. We’re looking for a Senior Product Security Engineer who is passionate about partnering with engineers to assess and mitigate the security risk of our virtualization stack. You’ll own the security risk posture for our virtualization stack. You’ll build the frameworks the organization uses to reason about hypervisor risk—systematic threat models that surface risks, shared rubrics for assessing their impact and likelihood, and clear ways of communicating them to security, kernel, virtualization, and provisioning teams. From there, you’ll own the response: designing and proposing defense‑in‑depth mitigations and driving their implementation. As a member of the Product Security team, you will report to the Manager of Secure Design. Our Secure Design team enables DigitalOcean to build secure‑by‑design products. We leverage strong relationships with both product teams and the rest of security engineering to be successful. The team’s scope is primarily focused on reviewing early‑stage decisions, developing threat models, scaling impact via automation, curating security patterns, authoring security guidance, training, and championing security initiatives. What You’ll Do Propose and implement mitigations and defense‑in‑depth to threats discovered through threat modeling the virtualization stack (90%) Provide deep technical expertise in systems architecture, kernel security features and network architecture to build out a threat model for our virtualization stack Identify the trade‑offs of different solutions and recommend the efficient design to achieve both functional goals and security requirements. We do not deliver mandates; we work alongside cross‑functional partners to find mutually beneficial solutions. Collaborate with development teams to implement remediations and defense in depth to protect DigitalOcean’s customers’ workloads. Cultivate and promote a security culture (10%) Mentor software engineering teams in security best practices. Help oversee our vulnerability management program (we call it security debt). Help DigitalOcean engineers understand how security events impact them. Do they need to worry about the next Redfish or Copy Fail CVEs? How does RetBleed impact DigitalOcean’s fleet? Required Qualifications Deep familiarity with at least one kernel security feature (ex: AppArmor, SELinux, Landlock, etc.) Capable of assessing and understanding the performance implications of code changes to virtualization stacks (especially in Qemu and KVM), built from hands‑on experience. A record of partnering with internal engineering teams to tackle security problems across an entire stack with empathy and creativity. Engineering teams are our partners, not our adversaries. Ability to clearly communicate security topics and vulnerability classes (e.g. memory corruption, privilege escalation, TOCTOU, etc.) and ability to provide actionable direction to product teams. Working knowledge of modern development concepts (virtualized environments, containerization, continuous integration + delivery). Preferred Qualifications 5+ years of writing systems level code (embedded systems, kernel, assembly or similar). Experience guiding software teams on secure architecture design. Written code for an embedded system (raspberry pi, arduino, etc). Experience building or reviewing threat models and ability to craft malicious user, attacker, and abuse/misuse cases. An understanding of patches and mitigations for hardware side‑channel attacks. Familiarity with object oriented and functional programming concepts, particularly with languages such as Go, Rust, or C. Compensation Range $175,000 - $190,000 This is a hybrid role Why You’ll Like Working for DigitalOcean We innovate with purpose. You’ll be a part of a cutting‑edge technology company with an upward trajectory, who are proud to simplify cloud and AI so builders can spend more time creating software that changes the world. As a member of the team, you will be a Shark who thinks big, bold, and scrappy, like an owner with a bias for action and a powerful sense of responsibility for customers, products, employees, and decisions. We prioritize career development. At DO, you’ll do the best work of your career. You will work with some of the smartest and most interesting people in the industry. We are a high‑performance organization that will always challenge you to think big. Our organizational development team will provide you with resources to ensure you keep growing. We provide employees with reimbursement for relevant conferences, training, and education. All employees have access to LinkedIn Learning’s 10,000+ courses to support your continued growth and development. We care about your well‑being. Regardless of your location, we will provide you with a competitive array of benefits to support you from our Employee Assistance Program to Local Employee Meetups to flexible time off policy, to name a few. While the philosophy around our benefits is the same worldwide, specific benefits may vary based on local regulations and preferences. We reward our employees. The salary range for this position is based on market data, relevant years of experience, and skills. You may qualify for a bonus in addition to base salary; bonus amounts are determined based on company and individual performance. We also provide equity compensation to eligible employees, including equity grants upon hire and the option to participate in our Employee Stock Purchase Program. DigitalOcean is an equal‑opportunity employer. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service. #J-18808-Ljbffr DigitalOcean

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Staff Product Security Engineer, Secure Design (Kernel and Virtualization) in Seattle, WA vacancy
  • DigitalOcean is seeking a Senior Product Security Engineer who is passionate about partnering with engineers...  ...mitigate the security risk of our virtualization stack. You will own the security risk...  ...in systems architecture and kernel security features. You will collaborate... 
    Suggested

    DigitalOcean

    Seattle, WA
    1 day ago
  • $173.4k - $234.6k

     ...with us. The Boeing Company is looking for a Senior Product Security Engineer to join the Enterprise Product Security organization in Seattle...  ...professional, and government standards to ensure security design integrity, availability, confidentiality, and regulatory... 
    Suggested
    Permanent employment
    Work experience placement
    Relocation
    Visa sponsorship
    Work visa
    Flexible hours
    Shift work
    Day shift

    The Boeing Company

    Seattle, WA
    1 day ago
  • $122.9k - $216.3k

     ...The Opportunity Adobe's Security Partnership Product Engineering (SPPE) team is hiring a mid-level engineer to build the AI-powered platforms that...  ...risk hotspots across Adobe's product portfolio. You will design AI-driven features, partner with security and engineering... 
    Suggested
    Temporary work
    Local area
    Worldwide

    Adobe

    Seattle, WA
    4 days ago
  • $137.7k - $186.3k

     ...seeking a Mid-Level (Level 3) or Senior (Level 4 or Level 5) Product Security Engineer - Public Key Infrastructure (PKI) and Cloud Architect to...  ...product security and resiliency throughout the requirements, design, build, test, production, operations, and support lifecycle... 
    Suggested
    Permanent employment
    Work experience placement
    Currently hiring
    Relocation
    Visa sponsorship
    Work visa
    Flexible hours
    Shift work
    Day shift

    ApplyMint

    Seattle, WA
    2 days ago
  • Responsibilities Develops, implements, and sustains product security and resiliency throughout the requirements, design, build, test, production, operations, and...  .... Requirements Bachelor of Science degree in Engineering, Engineering Technology (including Manufacturing... 
    Suggested
    Work experience placement

    Jobtailor

    Seattle, WA
    3 days ago
  •  ...Staff Security Engineer Location: Hybrid in one of these places 2 days a week...  ...only) Mode of interview: 2 Virtual Interviews Job...  ...advanced defense technology products. Responsibilities...  ...ability to translate system design requirements into clean, maintainable... 
    2 days per week

    InterSources

    Seattle, WA
    2 days ago
  • Anthropic is seeking an Operating Systems Security Engineer to harden the OS layer of our infrastructure. You will design and implement kernel‑level security controls, from hardening to runtime protection, balancing security with AI training performance. You will work... 

    Anthropic

    Seattle, WA
    1 day ago
  •  ...You'll be part of the Apple Product Security Team at the forefront of Apple's security impacting the breadth of Apple's ecosystem by working...  ...Apple's customers. Working with some of the best security engineers in the world, you’ll have a direct positive impact on the... 
    Immediate start

    Women Veterans Interactive

    Seattle, WA
    3 hours ago
  • $234.4k - $385k

     ...About the Team Security is at the foundation of OpenAI's mission...  ...'s technology, people, and products. We are technical in what we...  ...the Role As a Security Engineer, Application Security you will...  ...Implement Security Tools : Design, develop, and implement security... 
    Work at office
    Remote work
    Relocation package

    OpenAI

    Seattle, WA
    2 days ago
  • $180k - $247k

     ...Secure Every Identity, from AI to Human Identity is the key to unlocking the potential...  ...Identity belongs to you. The Staff Product Security Engineer Opportunity The Security team's...  ...based system security approach at the design level. The ideal candidate thinks... 
    Local area
    Remote work
    Worldwide
    Flexible hours

    Okta, Inc.

    Bellevue, WA
    1 day ago
  •  ...generative AI, and enables leaders to secure their AI assets. Organizations...  ...DataRobot is seeking an experienced Staff Product Security Engineer to drive security innovation while ensuring...  ...security tooling and implement "Secure-by-Design" processes in the CI/CD pipeline... 
    Local area
    Worldwide
    Flexible hours

    DataRobot

    Seattle, WA
    3 days ago
  • $71 - $76 per hour

     ...the successful candidate will be joining the growing BT&E Product Security Engineering Capability. They will be joining a team of advanced Product...  ...Integrate RESTful APIs and backend microservices Design reusable UI components and manage application state effectively... 
    Hourly pay
    Full time
    Contract work

    Boeing

    Seattle, WA
    1 day ago
  • $170k - $200k

     ...success. Role Summary We are looking for a mission-driven Product Security Engineer to embed security into the entire lifecycle of our robotic...  ...every component—from firmware to command interfaces—is designed, implemented, and validated with security at its core. You... 
    Contract work

    Overland AI

    Seattle, WA
    1 day ago
  • Boeing is seeking a Senior Product Security Engineer to support Secure Software Distribution and Ground Support Equipment and Information Systems. The role is based in Seattle, WA or Everett, WA and is 100% onsite, reporting to the Enterprise Product Security organization... 

    Boeing

    Seattle, WA
    1 day ago
  •  ...across the globe to create, secure, and run applications...  ...protect the F5 enterprise and product environment. The Security Engineer position will execute...  ...enterprise cloud hosted, virtual, and on-premise systems including...  ...practices and secure design principles. Review... 
    Full time
    Work at office
    Local area
    Remote work
    Work from home

    F5

    Seattle, WA
    8 hours ago
  • $117.2k - $176.7k

    Product Security Engineer - Product Security Services & Tooling Infrastructure Team We're hiring a Product Security Engineer who will engineer automated...  ...a shared system context - an explicit repository of system designs, constraints, and standards that enables AI to operate... 

    salesforce.com, inc.

    Bellevue, WA
    1 day ago
  • DataRobot seeks an experienced Staff Product Security Engineer to drive security innovation and ensure FedRAMP High/DoD IL5 compliance. You will work...  ...building automation with Python/Go and guiding secure-by-design practices. You will lead federal security initiatives,... 

    DataRobot

    Seattle, WA
    1 day ago
  •  ...generative AI, and enables leaders to secure their AI assets. Organizations...  ...DataRobot is seeking an experienced Staff Product Security Engineer to drive security innovation while ensuring...  ...security tooling and implement "Secure-by-Design" processes in the CI/CD pipeline... 
    Local area
    Worldwide
    Flexible hours

    DataRobot

    Seattle, WA
    1 day ago
  • Boeing Commercial Airplanes is seeking an Associate (Level 2) Product Security Engineer to join our Cybersecurity Innovation team in Seattle, WA or Everett, WA. This role focuses on security, safety, and resiliency of digitally-connected in-service airplanes, supporting... 

    Boeing

    Seattle, WA
    1 day ago
  • $180k - $247.5k

    Secure Every Identity, from AI to Human Identity is the key to unlocking the potential...  .... If you are too, let's talk. The Staff Product Security Engineer Opportunity As a Staff Product...  ...penetration testing methodologies, and secure design principles. A successful candidate... 
    Local area
    Worldwide
    Flexible hours

    Okta

    Bellevue, WA
    1 day ago
  • $225k - $275k

     ...compounding interest. Affirm values information security as a critical part of the company’s...  ...to succeed in building honest financial products. The Security team posture increases...  ...understanding of web application architecture and design principles Experience using modern... 
    Work at office
    Remote work
    Flexible hours

    Affirm

    Seattle, WA
    2 days ago
  • A financial technology company is seeking an experienced security expert to enhance security throughout the product development lifecycle. This remote position requires a strong background in web application architecture, threat modeling, and cloud-based service development... 
    Remote job
    Flexible hours

    Affirm

    Seattle, WA
    1 day ago
  • Boeing is hiring an Experienced Product Security Engineer to join its Cybersecurity Innovation team in Seattle or Everett, WA. This role involves assessing vulnerabilities and ensuring the security of BCA airplanes while providing an opportunity for career growth in cybersecurity... 

    Boeing

    Seattle, WA
    1 day ago
  • $175k - $308.5k

     ...Services The Apple Services Engineering Security team is looking for an...  ...entire industries with our products. The same real passion for...  ...Description In this role, you will design, build, maintain and...  ...fundamentals with IPC, Sockets, Virtualization, etc. Experience developing... 
    Relocation

    Apple Inc.

    Seattle, WA
    2 days ago
  •  ...Solutions is a global staff augmentation firm providing...  .... Job Description Design and build prototypes...  ...with other experts in Security fields of IT (Cloud Computing...  ...of technical team, product management team and...  ...General understanding of virtualization technologies,... 
    Work experience placement

    US Tech Solutions

    Bellevue, WA
    1 day ago
  • Women Veterans Interactive seeks a motivated engineer for the Apple Product Security Team to investigate security issues and enhance the security of Apple’s ecosystem. As part of this role, you will collaborate with top security engineers, analyze vulnerabilities, and develop... 

    Women Veterans Interactive

    Seattle, WA
    1 day ago
  • $139.5k - $258.1k

     ...Senior Security Engineer - Red Team We are the Apple Services Engineering (ASE) Security Red...  ...InfoSec, privacy, SRE, detection, and design review teams to keep Apple's services secure...  ...benefits, a range of discounted products and free services, and for formal education... 
    Relocation
    Shift work

    Apple

    Seattle, WA
    1 day ago
  •  ...Tech Engineer We are an innovative performance apparel company for yoga,...  ...technical fabrics and functional design, we create transformational products and experiences that support people...  ...when necessary. A strong focus on security is essential for success in this role... 

    Software Technology Inc

    Seattle, WA
    14 hours ago
  • $158.8k - $238.2k

     ...Security Engineer Stripe is a financial infrastructure platform for businesses. Millions of companies - from the world's largest enterprises...  ...most important work of your career. What You'll Do Design and implement infrastructure security controls for the... 
    Work at office
    Local area
    Remote work

    Stripe

    Seattle, WA
    14 hours ago
  • $168k - $210k

     ...customers sending money globally, providing secure, simple, and reliable ways to manage...  ...re searching for an early career Security Engineer to join Remitly's Threat Detection & Response...  ...our users. You Will: Design and build logging and alerting systems to... 
    Work at office
    Worldwide
    Flexible hours
    3 days per week

    Remitly

    Seattle, WA
    14 hours ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Staff Product Security Engineer, Secure Design (Kernel and Virtualization). Be the first to apply!