Mozilla
Feel good about your work again.
Staff Security Engineer, Product Security
Security EngineerSecurity EngineerFull TimeRemoteTeam 501-1,000Since 1998H1B SponsorCompany SiteLinkedIn
Location
United States
Posted
85 days ago
Salary
$138K - $217K / year
5 yrs expEnglishJavaJava ScriptPythonSDLCGo
Job Description
• Safeguard millions of users by embedding security into Firefox, Mozilla VPN, and other mission-critical products.
• Ensure software products are secure by embedding security into the full Software Development Life Cycle (SDLC).
• Anticipate, prioritize and mitigate risks through proactive threat modeling, security assessments, security testing, and automation.
• Perform security code reviews
• Lead penetration testing on web, mobile, and embedded applications, then guide remediation efforts.
• Develop and maintain automated security tests within CI/CD pipelines to catch vulnerabilities early.
• Partner with engineers to integrate security throughout the software development lifecycle—not as an afterthought, but as a core design principle. Provide security guidance, develop secure solutions, and facilitate secure releases.
• Help define and enforce security policies and provide security guidance to development teams.
• Help shape Mozilla's security culture through collaboration, guidance, and education.
Job Requirements
- 5+ years of relevant hands-on experience in product and application security.
- 5+ years of experience and proficiency in secure coding practices, application security testing (SAST, DAST), threat modeling, and vulnerability assessment.
- Experience in one or more languages like Python, Go, Java, or JavaScript, required for automation and code review.
- Familiarity with security tools like Burp Suite, Nessus, and tools for CI/CD automation.
- Strong communication, collaboration, and problem-solving skills, with the ability to influence and guide cross-functional teams.
- Formal credentials are great, but real-world experience, curiosity, passion and a builder’s mindset matter more.
Benefits
- Generous performance-based bonus plans to all eligible employees - we share in our success as one team
- Rich medical, dental, and vision coverage
- Generous retirement contributions with 100% immediate vesting (regardless of whether you contribute)
- Quarterly all-company wellness days where everyone takes a pause together
- Country specific holidays plus a day off for your birthday
- One-time home office stipend
- Annual professional development budget
- Quarterly well-being stipend
- Considerable paid parental leave
- Employee referral bonus program
- Other benefits (life/AD&D, disability, EAP, etc. - varies by country)
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Security Engineer85 days ago
Full TimeRemoteTeam 201-500H1B No Sponsor
Cybersecurity Engineer ensuring client IT security against threats at Stambaugh Ness
CloudCyber SecurityDNSFirewallsTCP/IP
Principal Data and AI Security Architect
FICOFICO is an analytics company helping businesses make better decisions that drive higher levels of growth and success.
Security Engineer85 days ago
Full TimeRemoteTeam 1,001-5,000Since 1956H1B No Sponsor
Principal Data and AI Security Architect defining security strategies for AI/ML at FICO
AWSAzureCloudGoogle Cloud PlatformJavaJenkinsOraclePythonTerraform
Senior Security Engineer
Included HealthAccess. Answers. Advocacy. We're raising the standard of healthcare for everyone.
Security Engineer85 days ago
Full TimeRemoteTeam 1,001-5,000
Senior Security Engineer designing security controls for robust application and cloud environments.
AWSCloudDockerGoogle Cloud PlatformKubernetesLinuxMacOSPythonSDLCTerraformGo
Staff Security Engineer, Blue Team
OloOlo is a leading open SaaS platform for restaurants that enables hospitality at every touchpoint.
Security Engineer85 days ago
Full TimeRemoteTeam 501-1,000Since 2005H1B No Sponsor
Staff Security Engineer leading Olo's Security Blue Team
AWSCloudCyber SecurityFirewallsKubernetesLinuxMacOS
New York
