Security Engineer, Product Security
Chainlink LabsSalary not specified
Full Time
Mid-level (3 to 4 years), Senior (5 to 8 years)
$105,000 – $293,300Compensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Legal Tech, SaaSIndustries
Requirements
- 10+ years of implementation experience in a security-focused role with an emphasis on hands-on secure technical architecture and implementation work, and oversight in a team setting (e.g., conducting solution security reviews)
- Proven expertise in SAST/DAST, application security, and CI/CD pipeline integration
- Deep understanding of AI-specific threats — prompt injection, model poisoning, membership inference, adversarial perturbation, and output manipulation
- In-depth knowledge and implementation experience of information security principles, policy enforcement, operating systems, web application security, and a high-level of familiarity with malicious code uses, OWASP Top 10, and common techniques used by hackers
- Experience with designing and implementing next-generation security technologies, such as SASE, CASB, or RASP
- Hands-on experience with application patch management, software supply chain security, or artifact repositories like JFrog and Snyk
- Strong fluency in at least one programming or scripting language: Python, Ruby, NodeJs
- Cybersecurity certification (e.g. CISSP, CISM, CISA, CRISC, GIAC or other relevant certification)
- Up-to-date knowledge and regular monitoring of the evolution of technologies and vulnerabilities to identify the solutions and measures necessary to secure cloud computing applications and ecosystems
- Hands-on and in-depth experience with application and infrastructure-level design security including modern mitigation techniques and good practices (e.g., DNS-SEC, OWASP Top 10 mitigations, cryptographic fundamentals etc.)
- Strong hands-on skills with creating automations using Python
- Nice to haves: Fluency with a [programming language, incomplete in description]
Responsibilities
- Risk Management: Identify and address security risks through thorough assessments and mitigation strategies
- Code and Network Security: Ensure the secure coding of the platform and implement measures to protect against unauthorized access and data breaches
- Incident Response: Develop and execute plans to respond to security incidents, conducting forensic analysis and implementing preventive measures
- Compliance and Ethics: Ensure EvenUp systems comply with regulations and industry standards, addressing ethical concerns and promoting transparency
- Continuous Monitoring: Establish real-time monitoring systems to detect and respond to security threats, conducting regular assessments
- Vendor and Third-Party Security: Assess and secure third-party components integrated into our systems to prevent vulnerabilities
- Security Training: Provide training to enhance the team's security awareness and foster a security-conscious culture
- Documentation and Reporting: Maintain documentation of security protocols, incidents, and improvements, and communicate regular reports to stakeholders
- Work cross-functional and manage security within the infrastructure team
- Lead security efforts and drive growth
- Evaluate building vs buying security solutions
Skills
Risk Management
Secure Coding
Network Security
Incident Response
Forensic Analysis
Compliance
Continuous Monitoring
Vendor Security
Third-Party Risk Management
EvenUp
Legal services for personal injury cases
About EvenUp
EvenUp Law provides legal services focused on personal injury, trucking accidents, and medical malpractice. The firm operates in multiple states, including Texas, Pennsylvania, California, Indiana, and Georgia. Its business model is based on a contingency fee structure, meaning they only receive payment if they win a case, taking a percentage of the settlement or judgment. What sets EvenUp Law apart from its competitors is its detailed case preparation and the ability to analyze cases like an adjuster or defense attorney, which leads to higher settlement amounts and quicker resolutions for clients. The firm also maintains a database of similar injuries and their values, which helps in providing accurate damage estimates. The goal of EvenUp Law is to save clients time and stress while ensuring they receive fair compensation for their injuries.
San Francisco, CaliforniaHeadquarters
2019Year Founded
$214MTotal Funding
SERIES_DCompany Stage
LegalIndustries
201-500Employees
Risks
Increased competition from other legal tech startups could erode EvenUp's market share.
Reliance on a contingency fee model poses financial risks with unsuccessful cases.
Potential regulatory changes in AI use could impact EvenUp's operations.
Differentiation
EvenUp uses AI to automate legal document creation, reducing time and costs.
The company targets the $20 million insurance claim market with AI-driven solutions.
EvenUp's meticulous case preparation results in high settlement amounts and quick resolutions.
Upsides
Recent $135 million Series D funding shows strong investor confidence in EvenUp.
Launch of AI assistant Litty highlights growth in generative AI for legal automation.
Strategic board appointments could open new avenues for growth and partnerships.
Related Jobs
RemoteRemoteSenior Application Security Engineer
M&T BankSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSales Engineer - Federal
SpyCloudSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteSecurity Engineer, Cloud Security
Red Cell PartnersSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSr. Information Security Analyst
ValonSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Analyst
Qualified.com$130,000 - $145,000/year
- Full Time
- Junior (1 to 2 years)
RemoteCyber Threat Analyst
ArcadiaSalary not specified
RemoteSecurity Architect
EarnestSalary not specified
- Full Time
- Expert & Leadership (9+ years)