Product Security Engineer

WorkOS builds modern developer tools and APIs helping companies become Enterprise Ready — powering authentication, identity, and authorization for fast-growing companies like OpenAI, Cursor, Perplexity, and Vercel. Recently valued at $2B after a $100M Series C, they're hiring a Product Security Engineer to secure the data and identities of hundreds of millions of users. You'll lead secure design efforts, conduct penetration tests and code audits, build secure-by-default systems, manage their responsible disclosure program, and work directly with engineering teams and customers to embed security across the product lifecycle.

5+ years in a security engineering or security-focused software engineering role; ability to execute across security assessments, penetration testing, responsible disclosure, and tooling integration; proven track record identifying vulnerabilities (CVEs, bug bounty, or prior experience); comfortable reading and writing code and leveraging AI tooling; strong written and verbal communication skills; experience in authentication and identity domains is a bonus; production-level code development experience is a plus.