All roles

Open role

[Remote] Principal Product Security Engineer

Remote · Philippines Full-time

Note: The job is a remote job and is open to candidates in USA. 365 Retail Markets is a company focused on enhancing product security, and they are seeking a Principal Product Security Engineer to lead their product security program. The role involves owning security review processes, mentoring engineers, and integrating security into the software development lifecycle across various platforms.

Responsibilities

  • Own and mature the product security program, including security review processes, secure development standards, risk prioritization, vulnerability remediation practices, and engineering enablement
  • Lead security architecture reviews and secure design initiatives across backend services, web applications, mobile applications, APIs, and remote devices
  • Review source code and application architecture to identify security vulnerabilities, insecure patterns, and operational risks
  • Partner closely with Engineering, DevOps, QA, Infrastructure, and Product teams to integrate security into the software development lifecycle
  • Establish and enforce secure coding standards, development guidelines, and security best practices
  • Mentor and guide software engineers on secure development practices and remediation strategies
  • Perform threat modeling and risk assessments for new and existing products and infrastructure
  • Assist in incident response investigations, root cause analysis, and remediation planning
  • Evaluate third-party libraries, frameworks, and dependencies for security and operational risks
  • Collaborate with DevOps and Infrastructure teams on cloud security, CI/CD security, secrets management, and system hardening
  • Drive vulnerability management efforts, including prioritization, remediation guidance, and validation
  • Help define and implement logging, monitoring, and security alerting strategies
  • Partner with external security consultants and vendors on penetration testing and security assessments
  • Promote a security-first engineering culture across the organization

Skills

  • Bachelor's degree in Computer Science, Cybersecurity, Engineering, or equivalent practical experience
  • 7+ years of experience in software engineering, application security, product security, or cybersecurity engineering
  • Strong understanding of secure application architecture and modern security practices for web, mobile, cloud, and distributed systems
  • Hands-on experience reviewing source code and identifying security vulnerabilities
  • Experience with OWASP Top 10, secure coding standards, authentication/authorization models, API security, and vulnerability remediation
  • Experience securing cloud-native environments in AWS, Azure, or GCP
  • Strong understanding of CI/CD pipelines, DevSecOps practices, container security, and infrastructure security
  • Experience with threat modeling, penetration testing coordination, and incident response processes
  • Ability to mentor engineers and influence technical direction across multiple teams
  • Strong analytical, communication, and leadership skills
  • Experience with unattended retail, IoT, edge devices, kiosks, payment systems, or embedded Linux environments
  • Knowledge of PCI, security compliance frameworks, and enterprise risk management
  • Experience with observability and monitoring tools such as Datadog, Splunk, Instana, or similar platforms
  • Experience working with AI-assisted development tools and understanding emerging AI-related security risks
  • Relevant industry certifications such as CISSP, CSSLP, OSCP, or cloud security certifications

Company Overview

  • 365 Retail Markets specializes in unattended retail technologies offering personalized partnerships to foodservice operators. It was founded in 2008, and is headquartered in Troy, Michigan, USA, with a workforce of 501-1000 employees. Its website is http://www.365retailmarkets.com/.
  • Company H1B Sponsorship

  • 365 Retail Markets has a track record of offering H1B sponsorships, with 1 in 2026, 9 in 2025, 5 in 2024, 1 in 2023, 15 in 2022, 4 in 2021, 2 in 2020. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Commercial Sales Consultant

    Work from home Full-time role

    [Remote] AI Trainer - Clinicians (MX)

    Work from home Full-time role

    [Remote] AI Trainer - Clinicians (UK)

    Work from home Full-time role

    [Remote] AI Trainer - Clinicians (CAN)

    Work from home Full-time role

    [Remote] Platform Engineer, Product Team

    Work from home Full-time role

    Remote Answering Service telephone operator/dis...

    Work from home Full-time role

    Fitness Coach - Online

    Work from home Full-time role

    Freelance Product Photographer - Home-Based Creative Role

    Work from home Full-time role

    [Remote] Vice President, Corporate Development (Growth Strategy)

    Work from home Full-time role

    Prior Authorization Rep Sr

    Work from home Full-time role

    Client Service Manager | California Workers Compensation | Remote

    Work from home Full-time role

    Experienced Part Time Remote Data Entry Specialist – Global Health and Benefits Analysis

    Work from home Full-time role

    Senior Consulting Services Sales Architect

    Work from home Full-time role

    Senior Digital Marketing Manager (Email) - Capital One Software (Remote)

    Work from home Full-time role

    Music Therapist for Online Music Therapy - Fully Remote - $35 / Hour

    Work from home Full-time role

    Travel Coordinator (remote)

    Work from home Full-time role

    Sales Development Representative (SDR) - Staffing & Recruitment

    Work from home Full-time role

    Senior WC Claim Adjuster

    Work from home Full-time role

    Marketing Specialist, Regional Campaigns

    Work from home Full-time role

    Sales Engineer

    Work from home Full-time role

    Manager, Account Executives, Enterprise DACH (German speaking)

    Work from home Full-time role