Lead Software Engineer (Product Security)

We are looking for a Lead Software Engineer with specific expertise in Software Product Security for a client (a cutting edge genAI stealth startup) out of Boston, USA.

The candidate has to have expertise in Fullstack product development, microservice architectures, and product security for securing products with microservice architectures and cloud applications and technical depth and desire (and preferably experience) for working on genAI solutions and AI Agent implementations.

Responsibilities:

• Leverage genAI/LLMs to automate secure coding life cycle for product architectures and implementations..
• Complete ownership and delivery of e2e features, production infra or ci/cd initiatives
• Write well designed, testable, readable & efficient code in Python
• Write automated unit and integration tests
• Team player: Delivers effectively with teams; interpersonal skills, communication skills, risk management skills
• Guide QA teams towards efficient validation of high risk functional & system tests
• CI/CD deployments on Amazon AWS & MS Azure Cloud Platforms
• Optimize applications for maximum reliability, performance & scalability
• Drive feature implementations independently to completion
• Participate in requirement analysis, solution design, project planning & tracking activities
• Understand, contribute & evolve Numino's best practices for design & coding best practices

Qualifications:

7-15 years of experience in full stack software development on Python or Java or Golang and ReactJs stack.

Experience on server based, microservices and serverless architectures and implementation of CI/CD pipelines.

3-7y of experience on software product delivery on Cloud Platforms: AWS, Azure or GCP

(desirable) Experience in delivery of genAI based solutions, vector dbs, embeddings..

Minimum 3-5 years work experience in product security, application security, cloud security, or software development of security features.

Expertise on secure software design and code security scanning tools

Threat modeling, risk assessment, controls review

Assisted teams with the mitigation of findings: assess the impacts, propose possible solutions, and provide technical guidance for implementation.

Provided expertise and advice on cloud application and infrastructure security design patterns.

In depth understanding of authentication and authorization technology, TLS and PKI, OS, network and cloud security. Reviewed and improved implementations of authentication, authorization, data access and other security layers of our product stack.

Strong analysis skills, detail oriented, strategic thinking

Strong verbal and written communication skills, collaborative and solution-driven

Security or cloud certifications