Product Security Engineer - Remote Work

At BairesDev, we've been leading the way in technology projects for over 15 years. We deliver cutting-edge solutions to giants like Google and the most innovative startups in Silicon Valley.

Our diverse 4,000+ team, composed of the world's Top 1% of tech talent, works remotely on roles that drive significant impact worldwide.

When you apply for this position, you're taking the first step in a process that goes beyond the ordinary. We aim to align your passions and skills with our vacancies, setting you on a path to exceptional career development and success.

Product Security Engineer at BairesDev

In this role, the defining skill is hands-on static analysis triage, not security architecture, not DevSecOps pipeline ownership, and not vulnerability program management. If your product security work means you personally read findings, trace data flow through code, and make evidence-based decisions on what is real, this role is built for you. This is your opportunity to apply deep static analysis expertise in a high-accountability environment where the quality of your triage directly shapes how risk is understood and remediated across the product.

What You'll Do:

- Perform hands-on SAST triage as the primary daily activity, not a secondary responsibility.

- Conduct source-to-sink analysis and secure code review across real codebases.

- Disposition findings with evidence-based documentation in a regulated environment.

- Tune static analysis tools and manage false positive rates across the product portfolio.

- Partner with engineering teams to validate and drive remediation of confirmed vulnerabilities.

What we are looking for:

- 5+ years of experience in product security, application security, or software engineering with a hands-on security focus.

- Proven track record of hands-on SAST triage, not just tool integration or pipeline configuration.

- Strong source-to-sink data flow analysis and secure code review skills.

- Experience operating SAST tools such as Checkmarx, Fortify, Veracode, or Coverity at the findings level.

- Ability to produce audit-traceable documentation of finding dispositions in compliance-driven environments.

- Advanced proficiency in English.

How we do make your work (and your life) easier:

- 100% remote work (from anywhere).

- Excellent compensation in USD or your local currency if preferred

- Hardware and software setup for you to work from home.

- Flexible hours: create your own schedule.

- Paid parental leaves, vacations, and holidays.

- Innovative and multicultural work environment: collaborate and learn from the global Top 1% of talent.

- Supportive environment with mentorship, promotions, skill development, and diverse growth opportunities.

Apply now and become part of a global team where your unique talents can truly thrive!