Security Engineer • Staff

Who you are

You have extensive experience in application security, with a strong understanding of security principles and practices — you've successfully implemented security measures in complex systems and understand the balance between security and innovation. Your background includes working closely with engineering teams to integrate security into the development lifecycle, ensuring that security is a fundamental aspect of system design.

You are familiar with OWASP guidelines and have a proven track record of identifying and mitigating security vulnerabilities in applications — your analytical skills allow you to assess risks effectively and propose actionable solutions. You thrive in collaborative environments, partnering with product and engineering teams to foster a culture of security awareness and best practices.

You possess strong communication skills, enabling you to articulate security concepts to both technical and non-technical stakeholders — you understand the importance of building trust and ensuring that security is seen as an enabler rather than a blocker. Your proactive approach to security challenges helps teams innovate while maintaining a robust security posture.

Desirable

Experience with AI-powered features and understanding their security implications would be a plus — you are eager to stay updated on the latest security trends and technologies, continuously improving your skills and knowledge in the field.

What you'll do

As a Staff Application Security Engineer at Thumbtack, you will lead efforts to enhance the security of our applications while supporting rapid innovation — you will work closely with cross-functional teams to integrate security into the development process from the outset. Your role will involve conducting security assessments, identifying vulnerabilities, and implementing effective remediation strategies to protect our systems and data.

You will guide architectural decisions, ensuring that security considerations are embedded in system design — your expertise will help shape the security posture of Thumbtack as we scale and incorporate new technologies. You will also develop and maintain security policies and procedures, ensuring compliance with industry standards and regulations.

Collaboration is key in this role; you will partner with product, engineering, and data teams to foster a culture of security awareness — you will provide training and resources to help teams understand security best practices and the importance of secure coding. Your contributions will directly impact Thumbtack's ability to innovate confidently while maintaining customer trust.

What we offer

At Thumbtack, we value the contributions of our team members and offer a supportive environment where you can grow your skills and make a meaningful impact — we encourage you to apply even if your experience doesn't match every requirement. Join us in shaping the future of home improvement and making a difference in the lives of millions of homeowners across the U.S.