1

Product Security Code Review Engineer Jobs in Utah

Application Security Engineer

American Fork, UT ยท On-site

$52.50 - $70.25/hr

Partner with Product and Engineering to embed reproducible, high-standard security practices ... Lead proactive security initiatives including threat modeling, deep-dive code reviews, and ...

Integrate security across the SSDLC, including code reviews, testing, and deployment. In this role ... Cross-Functional Collaboration Partner closely with product, engineering, cybersecurity, and risk ...

New

Sr Software Engineer

South Jordan, UT ยท On-site

$116K - $154K/yr

Drive engineering excellence through code reviews, architectural guidance, and establishing best ... productivity without compromising code quality or security standards. * Extensive hands-on ...

... code reviews, build automation frameworks, and play a key role in improving both product quality ... Security and vulnerability surfaces Automation & Technical Contribution * Design, build, and ...

... code reviews, build automation frameworks, and play a key role in improving both product quality ... Security and vulnerability surfaces Automation & Technical Contribution * Design, build, and ...

Guide fellow team members in the code review process * Guide and provide clarity for fellow team ... Troubleshoot, diagnose, and fix product defects * Maintains a deep and intrinsic understanding of ...

Application Security Engineer

American Fork, UT ยท On-site

$52.50 - $70.25/hr

Product & Software Excellence: We were named one of The Software Report's Top 100 Software ... Lead proactive security initiatives including threat modeling, deep-dive code reviews, and ...

Application Security Engineer

American Fork, UT

$52.50 - $70.25/hr

Product & Software Excellence: We were named one of The Software Report's Top 100 Software ... Lead proactive security initiatives including threat modeling, deep-dive code reviews, and ...

... for a Security Engineer to serve as a key technical expert on our Infrastructure Security ... Contribute to security-as-code practices: IaC security reviews, CI/CD pipeline hardening, and ...

Senior Software Engineer

Draper, UT

$114K - $151K/yr

Conduct in-depth code reviews and provide technical guidance to the team, serving as the go-to ... A proven track record of designing, building, and shipping production systems in professional ...

New

Assistant City Engineer

Lehi, UT ยท On-site

$97K - $146K/yr

ASSISTANT CITY ENGINEER CLOSING DATE: Open until filled PAY RANGE: $97,416 - $146,123 annually ... review issues, evaluates options for solutions consistent with existing standards, codes and ...

Senior Software Engineer

Sandy, UT

$116K - $153K/yr

Our engineering teams are at the center of that mission, building the products and platforms that ... Participate in code reviews, technical discussions, and team planning * Evaluate and adopt new AI ...

next page

Showing results 1-20

Product Security Code Review Engineer information

What are the key skills and qualifications needed to thrive as a Product Security Code Review Engineer, and why are they important?

To thrive as a Product Security Code Review Engineer, you need a deep understanding of secure coding practices, software development lifecycles, and vulnerability assessment, typically backed by a degree in computer science or a related field. Familiarity with static and dynamic analysis tools, code review platforms, and certifications like CISSP or OSCP is highly valuable. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for explaining security findings and collaborating with development teams. These skills and qualities are vital to identify, communicate, and mitigate security risks in code, ensuring the overall resilience of software products.

What are some typical challenges faced by Product Security Code Review Engineers when coordinating with development teams?

Product Security Code Review Engineers often encounter challenges in balancing security priorities with project timelines and developer workflows. Effective communication is essential, as engineers must clearly explain vulnerabilities and remediation steps to developers who may have varying levels of security expertise. Additionally, they need to ensure that security recommendations are practical and align with the product's architecture, all while fostering a collaborative environment rather than creating bottlenecks. Building strong relationships with development teams and understanding their processes helps streamline secure code adoption and continuous improvement.

What is the difference between Product Security Code Review Engineer vs Software Security Engineer?

AspectProduct Security Code Review EngineerSoftware Security Engineer
Primary FocusReviewing and analyzing source code for security vulnerabilities in productsDesigning and implementing security measures across software systems
Skills & CertificationsSecure coding, code review, security standards (e.g., OWASP), certifications like CSSLPSecurity architecture, threat modeling, secure coding, certifications like CISSP
Work EnvironmentCollaborates with development teams during product developmentWorks on system-wide security strategies and architecture
Industry UsageCommon in product-based companies, especially in tech and cybersecurityFound in organizations focusing on overall security infrastructure

While both roles focus on security, the Product Security Code Review Engineer primarily reviews source code for vulnerabilities in specific products, whereas the Software Security Engineer develops and implements security strategies across software systems. The roles often overlap but differ in scope and focus.

What is a Product Security Code Review Engineer?

A Product Security Code Review Engineer is a cybersecurity professional responsible for analyzing and reviewing application source code to identify and mitigate security vulnerabilities. They work closely with development teams to ensure secure coding practices, review code for compliance with security standards, and recommend fixes for potential security issues. Their goal is to prevent security breaches by catching vulnerabilities early in the software development lifecycle.
What job categories do people searching Product Security Code Review Engineer jobs in Utah look for? The top searched job categories for Product Security Code Review Engineer jobs in Utah are:
What cities in Utah are hiring for Product Security Code Review Engineer jobs? Cities in Utah with the most Product Security Code Review Engineer job openings:
Infographic showing various Product Security Code Review Engineer job openings in Utah as of July 2026, with employment types broken down into 1% As Needed, 75% Full Time, 19% Part Time, 1% Temporary, and 4% Contract. Highlights an 93% Physical, 1% Hybrid, and 6% Remote job distribution.

Application Security Engineer

LVT

American Fork, UT โ€ข On-site

$52.50 - $70.25/hr

Other

Re-posted 16 days ago


Job description

ABOUT THIS ROLE

As an Application Security Engineer at LVT, you will be a cornerstone of our commitment to building secure-by-design technology. You will partner deeply with our Engineering and Product teams to weave advanced security protocols into every layer of our Software Development Lifecycle (SDLC). This isn't just about finding bugs; it's about architecting a proactive security culture and scaling our defenses alongside our rapid growth. You will serve as a technical expert, mentor, and advocate, ensuring our AI-driven platform remains as resilient as it is innovative.

This role is based in-office out of our Headquarters in American Fork, Utah.

ROLE RESPONSIBILITIES
  • Strategic Integration: Partner with Product and Engineering to embed reproducible, high-standard security practices directly into the SDLC.

  • Defense Engineering: Develop and maintain sophisticated manual and automated security processes to identify, evaluate, and mitigate risks across our software ecosystem.

  • Offensive Security: Lead proactive security initiatives including threat modeling, deep-dive code reviews, and offensive security exercises/penetration testing.

  • Vulnerability Management: Architect and manage the deployment of vulnerability scanning tools, driving the remediation process to ensure rapid resolution of identified issues.

  • Policy Stewardship: Assist in the development and continuous improvement of secure development policies and procedural documentation.

  • Technical Translation: Communicate complex vulnerability details and risk assessments to both technical and non-technical stakeholders, ensuring organizational alignment.

  • Security Culture: Mentor junior team members and foster a strong, transparent security culture across the company.

  • Impact Measurement: Success in this role is measured by the reduction of critical vulnerabilities in production, the speed of remediation cycles, and the successful adoption of security tools by the broader engineering team.

OUR IDEAL CANDIDATE
  • Proven Experience: At least 2+ years of professional experience in an Information Security role with a dedicated focus on modern application environments.

  • Cloud Proficiency: 2+ years of hands-on security experience with AWS and other cloud service platforms.

  • Modern Stack Familiarity: Comfortable navigating common web languages and frameworks such as HTML, PHP, Node.js, React.js, Nest.js, and Next.js.

  • Pipeline Expertise: A solid understanding of CI/CD tools and artifacts including GitHub, Docker, JFrog, CircleCI, and ArgoCD.

  • Technical Depth: A comprehensive understanding of common application vulnerabilities (OWASP Top 10) and the orchestration of automated tools used to combat them (SAST, DAST, SCA).

  • IT Foundations: Strong grasp of foundational IT domains, including operating systems, networking protocols, and the OSI model.

  • Compliance Awareness: Familiarity with standard security and regulatory compliance frameworks such as CIS, NIST, ISO/IEC 27001, SOC2, or FedRAMP.

  • Exceptional Communicator: Ability to articulate risk with clarity and professional poise, maintaining high levels of personal integrity while working with cross-functional partners.

  • Preferred Credentials: A degree in IT/Security or industry certifications such as Security+, OSCP, GPEN, or ITCA are highly valued.