Security Engineer (Product)

Coder is looking for a Security Engineer focused on product security. In this role, you will help make secure development the default for our engineering teams and our customers.

You will partner closely with Engineering to shape secure design, improve delivery workflows, and reduce product risk. You will turn findings into fixes, patterns into defaults, and security requirements into work teams that can ship.

• →

  Partner with Engineering to build security into the software development lifecycle, including threat modeling, secure design reviews, and security requirements.

• →

  Triage findings from application security tooling, then guide remediation through clear priorities and practical fixes.

• →

  Define and maintain secure-by-default patterns for developers, including libraries, templates, and CI checks.

• →

  Improve supply chain security across build and release workflows, including signing, provenance, and policy enforcement.

• →

  Help teams ship secure changes quickly by making security guidance clear, repeatable, and easy to use.

• 3+ years of professional experience in product security, application security, or a similar engineering security role.

• Strong application security fundamentals and familiarity with common vulnerability classes.

• Hands-on experience securing CI/CD workflows, such as GitHub Actions, GitLab CI, or similar systems.

• Familiarity with modern security tooling, including SAST, SCA, dependency scanning, and secret scanning.

• Ability to collaborate effectively with engineers, explain tradeoffs clearly, and move secure changes through delivery.

• (Tacos? If you need an ice-breaker, ask how we say thanks by giving tacos!)

• Experience using AI tools to improve security workflows, developer productivity, or engineering velocity.

• Ability to program in a general-purpose language, especially Go or Python.

Coder is an AI software development company leading the future of autonomous coding. We empower teams to build software faster, more securely, and at scale through the collaboration of AI coding agents and human developers. Our mission is to make agentic AI a safe, trusted, and integral part of every software development lifecycle.

Our self-hosted AI Development Environment is the foundation for deploying agentic AI in the enterprise. It provides a secure, standardized, and governed workspace to deploy autonomous coding agents alongside human developers, accelerating innovation while maintaining control and compliance. Coder's isolated, policy-driven environments improve productivity, cut cloud costs, and reduce data risks. Developers transition to AI at their own pace using their own tools. Platform and security teams can govern, audit, and manage a great developer experience at scale.

We believe that the interview process should be transparent, consistent, and enjoyable. We value your time and hope to complete the interview process in two to four weeks, if schedules allow. Through your interviews, you will meet a mix of individual contributors, managers, and senior leaders.

As an AI company, Coder embraces the use of AI tools, and we want to be transparent about our expectations as you navigate our interview process.

Not permitted: Using AI assistance during conversational interviews.

Permitted: Using AI tooling for take-home assessments. Please flag where and to what extent it was used in your take-home. Your submission will not be penalized for using AI as long as it is done honestly.

We use AI tools to help manage our recruitment process efficiently and fairly. Specifically:

• Ashby helps us review inbound applications by surfacing candidates who best match the role requirements we've defined. This tool does not make hiring decisions - it helps our team prioritize which applications to review first.

• Granola takes notes during our interview calls so our team can focus on the conversation with you.

All hiring decisions are made by humans. Our team reviews applications, conducts interviews, and makes final selections. AI tools assist us but never replace human judgment, and these practices are conducted in compliance with applicable data protection, AI governance, and labor laws. Your data is not used to train AI models.

In accordance with New York City Local Law 144, an independent bias audit has been conducted on "Automated Employment Decision Tools"; results are available for Ashby.

If you're applying for a role at Coder and have questions about how we use AI in our process, or if you'd like to request information about the data we collect, please contact careers@coder.com.

We are committed to providing equal employment opportunities to qualified applicants and do not discriminate on the basis of race, color, ancestry, religion, sex, pregnancy, gender, gender identity, gender expression, sexual orientation, national origin, age, marital status, genetic information, disability, protected veteran status or any other characteristic protected by federal, state, or local laws.