Sr. Product Security Engineer

Raya is seeking a Senior Product Security Engineer to lead efforts in securing its Apple mobile iOS application and its related infrastructure. The ideal candidate will possess a strong technical background in mobile security, excellent leadership abilities, and a proactive approach to identifying and mitigating security risks within the mobile ecosystem.

Requirements

• 8+ years of experience in a security role with a strong focus on application security.
• 5+ years of experience in a product security engineering role with a strong focus on mobile (iOS) application security.
• Extensive experience with secure coding principles, mobile security frameworks, and common mobile vulnerabilities (e.g., OWASP Mobile Top 10).
• Strong understanding of iOS platform security features and best practices.
• Proficiency in NodeJS with a minimum of 5 years of NodeJS experience, and experience with NodeJS backend mobile development tools and environments.
• 3+ years of experience with cloud security principles and cloud IAM (e.g., AWS IAM, Cloud Connectivity) as it relates to mobile backend infrastructure.
• Experience with static and dynamic application security testing (SAST/DAST) tools for mobile applications.
• Excellent analytical, problem-solving, and troubleshooting skills.
• 2+ years of experience in a senior or lead security engineer role.
• Strong proficiency of AI coding platforms like Claude Code, Copilot, etc.
• Strong leadership and communication skills, with the ability to influence and collaborate across engineering teams.
• Ability to prioritize tasks and manage projects effectively in a fast-paced environment.
• Experience with scripting and automation (e.g., Python, Bash) for security tasks.
• Experience with GitHub Actions.
• Experience with DevSecOps and CICD SCA tools.

Benefits

• Paid Time Off
• 401k Matching
• Retirement Plan