What is the salary for this Security Engineer, Product Security role?

Salary information is not publicly listed for this position. Apply directly to discuss compensation with Aircall.

Where is this Security Engineer, Product Security position located?

This is an on-site position at Aircall located in Seattle Office.

How do I apply for this Security Engineer, Product Security job at Aircall?

Click the 'Apply' button on this page to be redirected to Aircall's application portal. Make sure to have your resume ready and tailor your application to highlight relevant experience.

Aircall is actively hiring for Engineering roles. Visit the company page to see all open positions and learn more about working at Aircall.

Security Engineer, Product Security

Aircall Seattle Office Today

engineering

As a Security Engineer, Product Security, you will help Aircall build and ship secure products by working closely with engineering teams and product managers to identify risk early, reduce vulnerabilities, and improve security quality across the software development lifecycle. You’ll support secure-by-design practices and help ensure security is integrated into how teams design, build, test, and release software.

In this role, you’ll be hands-on across threat modeling, vulnerability detection and remediation, and security testing. You will partner with engineers to make security practical and actionable — helping teams move quickly while raising the security bar.

Responsibilities:

Partner with engineering teams to review designs and implementation plans, identifying security risks early and recommending mitigations.

Perform threat modeling for new features and major changes, helping teams document risks, assumptions, and security controls.

Identify and help remediate common vulnerability classes across services and APIs (e.g., auth/authz, injection, data exposure, logic flaws).

Triage and support remediation of vulnerabilities identified through SAST/DAST tools, internal testing, or third-party findings.

Conduct security testing and validation, including targeted manual testing for high-risk areas.

Help improve secure development practices by creating reusable guidance, checklists, and secure patterns for engineering teams.

Contribute to security tooling and automation that improves coverage, reduces false positives, and streamlines security reviews.

Assist with product security incidents by supporting investigation, impact analysis, and follow-up remediation.

Communicate security risks clearly and pragmatically, helping teams prioritize effectively and ship safely.

Document learnings and contribute to evolving product security processes and standards.

Should have:

2–5 years of experience in Product Security, Application Security, or software engineering with a strong security focus.

Strong understanding of web application and API security fundamentals and common vulnerability classes (OWASP Top 10).

Experience performing security reviews, threat modeling, or secure architecture assessments for software systems.

Familiarity with security testing tools and practices (SAST/DAST, dependency scanning, fuzzing, manual testing).

Comfort reading and reviewing production code in at least one language (e.g., Python, Go, Java, JavaScript/TypeScript).

Exposure to automated or AI-assisted security tools or workflows, and interest in applying them to improve developer experience and security outcomes.

Ability to work cross-functionally with engineering teams and communicate findings in a constructive, actionable way.

Proven ability to drive remediation efforts and follow through on risk reduction outcomes.