1

Product Security Code Review Engineer Jobs (NOW HIRING)

As a Product Security Engineer, you will shape the security of Airtable's platform, collaborating ... reviewing code and treat security as an engineering problem to be solved with software, not just ...

Senior Product Security Engineer

$117K - $160K/yr

Lead security architecture reviews, secure code reviews, threat modeling, and application ... Serve as advisor to product and engineering on security risk, architectural trade-offs, and risk ...

Mobility Application Security

Rancho Cordova, CA · On-site

$62.75 - $83.75/hr

... Code Review, Threat Assessment etc.) • Security Testing standards and checklist , 12+ Years of ... products • Experience with enterprise SSO and familiarity with OAuth, SAML, etc. is preferred.

Senior Product Security Engineer

$117K - $160K/yr

Lead security architecture reviews, secure code reviews, threat modeling, and application ... Serve as advisor to product and engineering on security risk, architectural trade-offs, and risk ...

As a Product Security Engineer, you will play a pivotal role in shaping the security of Airtable ... reviewing code and treat security as an engineering problem to be solved with software, not just ...

Lead threat modeling, security architecture reviews, and secure code review initiatives. * Build ... Help shape security strategy across product security, infrastructure security, information security ...

New

Programming Languages (Ruby, Go, Rust, JavaScript), Cloud Armor WAF, Static Application Security ... code reviews of new features and bug fixes Complete security assessments of new products, services ...

Own and review security-critical code across key parts of the product, including authentication and ... Mentor engineers and raise the security bar across teams through code reviews, design reviews, and ...

... Product Security Engineer. This role focuses on supporting security architecture, design review ... design reviews and security validation. • Analyze results of static code analysis, dynamic ...

Senior Product Security Engineer

San Francisco, CA · On-site

$134K - $185K/yr

... Product Security Engineer to ensure their AI infrastructure is built securely. This role involves ... code reviews, and system design reviews for Crusoe's fleet of SaaS offerings. Qualifications

$91K - $185K/yr

Looking for Application developers looking to break into Application Security or with previous AppSec experience. In this role you will be reviewing source code to identify security vulnerabilities ...

Application Security Engineer

Washington, DC · On-site

$66.50 - $89/hr

... code and design reviews of all internal and external software products. Work with application developers ensure adoption of security principals and best practices. 6. Provides direction and support ...

next page

Showing results 1-20

Product Security Code Review Engineer information

See salary details

$53K

$144.1K

$205K

How much do product security code review engineer jobs pay per year?

As of Jul 17, 2026, the average yearly pay for product security code review engineer in the United States is $144,072.00, according to ZipRecruiter salary data. Most workers in this role earn between $88,000.00 and $205,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Product Security Code Review Engineer, and why are they important?

To thrive as a Product Security Code Review Engineer, you need a deep understanding of secure coding practices, software development lifecycles, and vulnerability assessment, typically backed by a degree in computer science or a related field. Familiarity with static and dynamic analysis tools, code review platforms, and certifications like CISSP or OSCP is highly valuable. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for explaining security findings and collaborating with development teams. These skills and qualities are vital to identify, communicate, and mitigate security risks in code, ensuring the overall resilience of software products.

What are some typical challenges faced by Product Security Code Review Engineers when coordinating with development teams?

Product Security Code Review Engineers often encounter challenges in balancing security priorities with project timelines and developer workflows. Effective communication is essential, as engineers must clearly explain vulnerabilities and remediation steps to developers who may have varying levels of security expertise. Additionally, they need to ensure that security recommendations are practical and align with the product's architecture, all while fostering a collaborative environment rather than creating bottlenecks. Building strong relationships with development teams and understanding their processes helps streamline secure code adoption and continuous improvement.

What is the difference between Product Security Code Review Engineer vs Software Security Engineer?

AspectProduct Security Code Review EngineerSoftware Security Engineer
Primary FocusReviewing and analyzing source code for security vulnerabilities in productsDesigning and implementing security measures across software systems
Skills & CertificationsSecure coding, code review, security standards (e.g., OWASP), certifications like CSSLPSecurity architecture, threat modeling, secure coding, certifications like CISSP
Work EnvironmentCollaborates with development teams during product developmentWorks on system-wide security strategies and architecture
Industry UsageCommon in product-based companies, especially in tech and cybersecurityFound in organizations focusing on overall security infrastructure

While both roles focus on security, the Product Security Code Review Engineer primarily reviews source code for vulnerabilities in specific products, whereas the Software Security Engineer develops and implements security strategies across software systems. The roles often overlap but differ in scope and focus.

What is a Product Security Code Review Engineer?

A Product Security Code Review Engineer is a cybersecurity professional responsible for analyzing and reviewing application source code to identify and mitigate security vulnerabilities. They work closely with development teams to ensure secure coding practices, review code for compliance with security standards, and recommend fixes for potential security issues. Their goal is to prevent security breaches by catching vulnerabilities early in the software development lifecycle.
More about Product Security Code Review Engineer jobs
What cities are hiring for Product Security Code Review Engineer jobs? Cities with the most Product Security Code Review Engineer job openings:
What states have the most Product Security Code Review Engineer jobs? States with the most job openings for Product Security Code Review Engineer jobs include:
What job categories do people searching Product Security Code Review Engineer jobs look for? The top searched job categories for Product Security Code Review Engineer jobs are:
Infographic showing various Product Security Code Review Engineer job openings in the United States as of July 2026, with employment types broken down into 1% As Needed, 76% Full Time, 18% Part Time, 1% Temporary, and 4% Contract. Highlights an 93% Physical, 1% Hybrid, and 6% Remote job distribution, with an average salary of $144,072 per year, or $69.3 per hour.
Experienced Lead of Product Secure Development Lifecycle and Regulatory Compliance

Experienced Lead of Product Secure Development Lifecycle and Regulatory Compliance

Qualcomm

San Diego, CA • On-site

Full-time

Re-posted 3 days ago


Qualcomm rating

9.6

Company rating: 9.6 out of 10

Based on 5 frontline employees who took The Breakroom Quiz

5th of 209 rated software companies


Job description

Job Summary:
Qualcomm Technologies, Inc. is seeking an experienced Product Security engineer to provide technical leadership and strength of execution across product security lifecycle for a diverse portfolio of products. This role will drive secure‑by‑design practices, product security risk reduction, and ensure that products and security processes meet both cybersecurity regulations and major international standards on cyber and product security.
Responsibilities:
• Translate applicable cybersecurity regulations and international cyber and product security standards into actionable product and engineering requirements.
• Define, deploy, and continuously improve product security processes and controls, effectively and efficiently aligned with applicable cyber security regulations around the world and related international standards.
• Serve as product security compliance authority, advising engineering, system architecture, and product teams on risk, mitigation strategies, and design tradeoffs.
• Perform or guide threat modeling, security risk assessments for complex systems.
• Drive secure design reviews, secure code review, vulnerability assessment, and security testing activities.
• Provide expertise in one or more security domains, including hardware, trusted execution environments, exploit mitigation, or cloud/application security.
• Mentor junior engineer in threat analysis, secure design and implementation, and advanced security techniques.
• Lead by influence across organizational boundaries rather than direct authority.
• Represent product security perspectives in reviews with senior leadership and executive stakeholders.
Qualifications:
Required:
• Bachelor's degree in Engineering, Computer Science, or related field and 6+ years of Security Engineering or related work experience.
• Master's degree in Engineering, Computer Science, or related field and 5+ years of Security Engineering or related work experience.
• PhD in Engineering, Computer Science, or related field and 4+ years of Security Engineering or related work experience.
• Strong experience in product security and regulatory compliance, such as EU’s Cyber Resilience Act (CRA).
• Proven experience making products and product security processes compliant with cybersecurity regulations and international standards.
• Demonstrated leadership of medium-size engineering teams or major cross-functional initiatives across diverse cultures and geographic locations.
• Strong communication, collaboration, execution, and influencing skills, with the ability to work effectively with senior and executive management, product management and development teams, compliance and operations stakeholders.
• Ability to balance technical depth with pragmatism, business impact, and product timelines.
Preferred:
• Experience leading or significantly influencing secure development lifecycle initiatives in larger organizations.
• Deep expertise in one or more of the following areas: Threat modeling and security risk assessment, Secure code review, static/dynamic analysis, and vulnerability assessment, Hardware security, Platform security, Trusted execution environments (TEE), Exploit mitigation techniques, Vulnerability management, including third-party and open-source components, Supply-chain security.
• Advanced degree preferred.
• Extensive industry experience (7+ years) in product security.
Company:
Qualcomm designs wireless technologies and semiconductors that power connectivity, communication, and smart devices. Founded in 1985, the company is headquartered in San Diego, USA, with a team of 10001+ employees. The company is currently Late Stage.

What Qualcomm employees say

Pay

Benefits

Workplace

Get the full story on Breakroom


Qualcomm logo

About Qualcomm

Sourced by ZipRecruiter

Qualcomm is enabling a world where everyone and everything can be intelligently connected. You interact with products and technologies made possible by Qualcomm every day, including 5G-enabled smartphones that double as pro-level cameras and gaming devices, smarter vehicles and cities, and the technology behind the smart, connected factories that manufactured your latest purchase. Our powerful connectivity solutions keep you connected—even in remote areas. Qualcomm 5G and AI innovations are the power behind the connected intelligent edge. You’ll find our technologies behind and inside the innovations that deliver significant value across multiple industries and to billions of people every day.

Industry

Technology, communication and media

Company size

10,000+ Employees

Headquarters location

San Diego, CA, US

Year founded

1985