replit
Product Security Engineer (PSIRT - Product Security Incident Response Team)
Foster City, CA (Remote)$180k–$325kfulltimemidAdded 2 days ago
About this role
Replit is seeking a Product Security Engineer to manage its vulnerability response program for a cloud-native AI platform. This role involves overseeing vulnerabilities from initial intake to public disclosure while collaborating with various teams to ensure prompt remediation.
What you'll do
- Manage vulnerability intake from multiple sources
- Validate and document vulnerabilities
- Coordinate remediation with engineering and security teams
- Design and manage the bug bounty program
- Lead coordinated vulnerability disclosure processes
- Negotiate with researchers on disclosure timelines
What they're looking for
- Experience with bug bounty programs
- Ability to triage and reproduce vulnerabilities
- Knowledge of OWASP and vulnerability classes
- Familiarity with cloud platforms and SaaS
- Understanding of CI/CD workflows
- Scripting or automation skills
- Exposure to pentesting
- Experience with compliance frameworks
Benefits
- Competitive Salary & Equity
- 401(k) with 4% match
- Health, Dental, Vision and Life Insurance
- Short and Long Term Disability
- Flexible Time Off and Holidays
- Monthly Wellness Stipend
Opens the official application on the employer’s site. No login required.