RE

Product Security Architect

replit· 46 open roles

Remote RemoteFullTime1 months ago
Salary
Undisclosed
Experience
Mid
Job Type
FullTime
Posted
1 months ago
Apply Now

Get more other jobs in your inbox

Verified daily — no ghost listings.

About This RoleAI processing…

Replit is the agentic software creation platform that enables anyone to build applications using natural language. With millions of users worldwide, Replit is democratizing software development by removing traditional barriers to application creation.

Key Responsibilities

  • 1
    Security Mentorship: Serve as the primary security mentor and subject matter expert for engineering teams, fostering a culture of technical excellence and rigorous security design.
  • 2
    Product Vision: Define the product security vision, ensuring consistency across complex application architecture projects.
  • 3
    Project Execution: Lead the security implementation of new product features from initial design to final production deployment.
  • 4
    Threat Modeling: Conduct proactive threat modeling for new product features and major architectural changes.
  • 5
    Application Security Design: Define and enforce best practices around application security, including audit/application logging, configuration, tenant separation, encryption, customer BYOK, RBAC design, API design, and Session/cookie/token management.
  • 6
    Identity & Access: Define and implement secure Authentication/Authorization protocols (mTLS/OIDC/OAuth/SAML) for multi-tenant SaaS products.
  • 7
    Third-Party Risk: Assess and mitigate risks associated with application third-party integrations such as payment, AI models, code repositories, etc.
  • 8
    Code Review: Apply a strong programming background (Python/Go/JavaScript) to perform hands-on code reviews when needed to validate security controls.

Requirements

  • 8+ years of experience in product security engineering or architecture, specifically with Multi-tenant SaaS products.
  • Experience with AI Agent-based Saas products is a plus.
  • Deep expertise in common product security practices (e.g., tenant separation, RBAC, BYOK, secure API design, session/token management).
  • Expertise in Authentication/Authorization protocols (mTLS/OIDC/OAuth/SAML) in a multi-tenant SaaS environment.
  • Strong programming background (Python/Go/JavaScript) with proven ability to conduct code review.
  • Experience writing and maintaining Architecture documents.
  • Exceptional ability to communicate technical risk to both engineering and executive audiences.
  • Strong track record of contributing to Cybersecurity Risk Register .

Perks & BenefitsTypical for this role

Competitive compensation aligned with experience and market rate
Health, dental, and vision coverage
Paid time off and company holidays
Remote-friendly or hybrid working arrangements where applicable
Learning and professional development support
Modern tools and equipment to do your best work

Apply to This Job in Minutes

Generate ATS-optimized resume + cover letter + interview prep with Jobease.ca AI. Complete your application faster.

Get Started Free

Similar Jobs

AF

AI Solutions Engineer

affirmRemote
View
AF

AI Solutions Engineer

affirmRemote
View
WA

Sustainability data advisor

watershedRemote
View