Security Engineer • Mid-Level

Who you are

You have 4–7 years of experience building scalable software systems, with a strong emphasis on security engineering. Your excellent programming skills in Python are complemented by familiarity with Go or similar languages, allowing you to develop robust security solutions. You possess strong judgment in translating abstract risks into concrete engineering controls, and you have a proven track record of influencing architecture across product, infrastructure, and reliability teams.

You are comfortable owning ambiguous, high-impact security problems end to end. Your experience includes integrating security into CI/CD pipelines and developer workflows, ensuring that security is a fundamental aspect of the development process. You thrive in cross-functional environments, collaborating effectively with Product, Engineering, and Infrastructure teams to enhance security measures.

Desirable

Experience with penetration testing and vulnerability management is a plus, as is familiarity with security tools and frameworks. You are proactive in identifying potential security risks and have a keen eye for detail when conducting secure design and code reviews. Your ability to communicate complex security concepts to non-technical stakeholders is a valuable asset in your role.

What you'll do

As a Product Security Engineer at Ema, you will design, build, and maintain internal security tools and platforms that improve the overall security posture of the company. You will implement and enhance security controls directly into product and platform workflows, ensuring that security is integrated into every aspect of the development lifecycle. Your role will involve influencing engineering architecture to ensure secure-by-design implementations, which is critical for protecting real production workloads.

You will own and scale application security programs, including Static Application Security Testing (SAST), Software Composition Analysis (SCA), and custom detection logic. Supporting penetration testing efforts will be part of your responsibilities, where you will validate findings and engineer durable fixes to identified vulnerabilities. You will also perform threat modeling for new features and systems, translating risks into actionable engineering solutions that enhance the security of Ema's platform.

In addition, you will develop automation to reduce manual security efforts across vulnerability management, access reviews, and incident response. Conducting secure design and code reviews will be a key part of your role, with a strong focus on identifying exploitable logic flaws and systemic risks. You will build tooling to surface security signals from production systems and development workflows, ensuring that security remains a priority throughout the development process.

What we offer

Ema offers a collaborative and innovative work environment where you can make a significant impact on the security of our platform. You will have the opportunity to work with a talented team of engineers and security professionals who are dedicated to building secure systems. We encourage you to apply even if your experience doesn't match every requirement, as we value diverse perspectives and backgrounds.

We provide competitive compensation and benefits, along with opportunities for professional growth and development. Join us in our mission to enhance product security and protect our users' data while working in a fully remote setting.