RE
Salary
Undisclosed
Experience
Mid
Job Type
FullTime
Posted
1 months ago
Get more other jobs in your inbox
Verified daily — no ghost listings.
About This RoleAI processing…
Replit is the agentic software creation platform that enables anyone to build applications using natural language. With millions of users worldwide, Replit is democratizing software development by removing traditional barriers to application creation.
Key Responsibilities
- 1Security Mentorship: Serve as the primary security mentor and subject matter expert for engineering teams, fostering a culture of technical excellence and rigorous security design.
- 2Product Vision: Define the product security vision, ensuring consistency across complex application architecture projects.
- 3Project Execution: Lead the security implementation of new product features from initial design to final production deployment.
- 4Threat Modeling: Conduct proactive threat modeling for new product features and major architectural changes.
- 5Application Security Design: Define and enforce best practices around application security, including audit/application logging, configuration, tenant separation, encryption, customer BYOK, RBAC design, API design, and Session/cookie/token management.
- 6Identity & Access: Define and implement secure Authentication/Authorization protocols (mTLS/OIDC/OAuth/SAML) for multi-tenant SaaS products.
- 7Third-Party Risk: Assess and mitigate risks associated with application third-party integrations such as payment, AI models, code repositories, etc.
- 8Code Review: Apply a strong programming background (Python/Go/JavaScript) to perform hands-on code reviews when needed to validate security controls.
Requirements
- 8+ years of experience in product security engineering or architecture, specifically with Multi-tenant SaaS products.
- Experience with AI Agent-based Saas products is a plus.
- Deep expertise in common product security practices (e.g., tenant separation, RBAC, BYOK, secure API design, session/token management).
- Expertise in Authentication/Authorization protocols (mTLS/OIDC/OAuth/SAML) in a multi-tenant SaaS environment.
- Strong programming background (Python/Go/JavaScript) with proven ability to conduct code review.
- Experience writing and maintaining Architecture documents.
- Exceptional ability to communicate technical risk to both engineering and executive audiences.
- Strong track record of contributing to Cybersecurity Risk Register .
Perks & BenefitsTypical for this role
Competitive compensation aligned with experience and market rate
Health, dental, and vision coverage
Paid time off and company holidays
Remote-friendly or hybrid working arrangements where applicable
Learning and professional development support
Modern tools and equipment to do your best work
Apply to This Job in Minutes
Generate ATS-optimized resume + cover letter + interview prep with Jobease.ca AI. Complete your application faster.
75% of AI Resumes Get Rejected
Beat the ATS with Jobease.ca's AI Resume Builder. Optimized for real hiring systems.
Build My ResumeProfile Match
Loading…Checking your profile against this job…
Posted
1 months ago
Job Overview
SalaryUndisclosed
Job TypeFullTime
Work ModelRemote
ExperienceMid
LocationRemote
Categoryother
Share This Job
Track All Your Applications
Never lose track again. Jobease.ca organizes every application, interview, and follow-up.
Organize My Search