Valon · 6 hours ago
Staff Product Security Engineer - Customer Platform
United States
Full-time
Remote
Lead/Staff
$190K/yr - $260K/yr
8+ years expValon is a Series C company building an AI-native operating system for regulated finance, focusing on mortgage servicing. They are seeking a seasoned Staff Product Security Engineer - Customer Platform to ensure the security of their systems, cloud infrastructure, and products, while collaborating with various teams to implement secure capabilities in their SaaS platform.
FinanceReal EstateFinTechFinancial Services
Responsibilities
Define and evolve product security architecture and strategy for Valon’s multi-tenant SaaS platform
Architect and guide secure implementation of customer-facing security capabilities in conjunction with Engineering (e.g., authentication / authorization models, identity integration, access controls, audit and logging, encryption / key management)
Build and maintain security reference architectures and standardized secure design patterns for product teams
Lead threat modeling, security design and code reviews for new features, services, and major architectural changes
Collaborate with Product, Engineering, Data, Compliance, Legal, and other teams to identify and drive mitigation for product and data security risks
Support vulnerability triage, remediation strategy, and root cause analysis for product security issues
Support security compliance and regulatory needs (e.g., SOC 2, CCPA, NYDFS, FTC), including customer-facing security discussions and due diligence
Develop, implement, and enforce security policies, standards, and procedures
Support operational activities including security advisory and consultative reviews, incident response, issue remediation, and other security processes
Qualification
Required
8+ years in progressive senior security engineering or architect level roles, with 3+ years leading security design for enterprise-grade cloud and SaaS platforms
Bachelor's degree in Information Security, Computer Science, Technology or related field
Relevant security certifications (e.g., CISSP, CISM, CCSK, CCSP or similar)
Proven ability to design security reference architectures and implement customer platform security controls and technologies (IAM, API security, encryption/key management, logging/monitoring and others)
Hands-on experience with modern security technologies and tooling across cloud and application security
Extensive experience in product security, application security, or security architecture roles, with ownership of security design for SaaS platforms including multi-tenancy and customer-facing security capabilities
Strong background in cloud security and modern infrastructure, with hands-on experience securing cloud environments (GCP preferred)
Proven experience in SaaS IAM and tenant security (e.g., authentication/authorization, RBAC, SSO/SAML/OIDC, SCIM, MFA, audit logs)
Expertise in designing secure platform controls (e.g., APIs, service-to-service auth, encryption/KMS/CMEK, logging/monitoring)
Demonstrated ability to build and maintain security reference architectures
Expert-level experience leading threat modeling and security design reviews including security-focused code reviews
Applied knowledge with industry security and compliance frameworks (OWASP, NIST, CIS, SOC 2/ISO 27001 concepts)
Highly hands-on engineer with proven ability to operate autonomously, drive multiple complex cross-functional efforts, and influence independently
Excellent communication and collaboration skills, including the ability to explain complex security concepts to both technical and non-technical stakeholders
Preferred
Prior software engineering experience and/or coding ability (Python) is preferred
Experience working in high-growth or startup environments is a plus
Benefits
Competitive salary with a meaningful stake in the company via equity, and 401k plan
We’ll invest in your physical and mental well-being with comprehensive medical, dental, & vision benefits
We offer pre-tax deductions for public transportation, rideshare services, and parking expenses to make your commute more affordable and convenient
Company wide orientation for you to successfully onboard and other learning & development opportunities including regular review cycles that feature 360 degree feedback
Quarterly budgets for team and company outings. Use it for team swag, cooking classes, or team dinners!
Flexible paid time off, sick days, and 11 company holidays
12 weeks off for both birthing and non-birthing parents - fully paid so you can focus your energy on your newest addition
Company
Valon
Valon: the AI-native operating system for mortgage servicing. Building a better foundation for the American Dream.
201-500 employees
H1B Sponsorship
Valon has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (10)
2024 (8)
2023 (1)
2022 (1)
Funding
Current Stage
Growth StageTotal Funding
$197.1MKey Investors
WestCapAndreessen Horowitz
2024-10-23Series C· $100M
2021-11-03Series B· $43.9M
2021-02-02Series A· $50M
Leadership Team
Andrew Wang
CEO/Co-founder
Jonathan Hsu
Co-Founder
Recent News
Crowdfund Insider
2026-02-06
2026-02-03
Company data provided by crunchbase