Product Security Architect
Replit · Foster City, CA · 2 wk ago
HybridInformation Technology$250k–$328k/yrFull-time
About the role
We are looking for a Product Security Architect to serve as the subject matter expert for Replit’s secure product blueprint. In this critical role, you will define and implement the application security architecture for our multi-tenant SaaS platform, ensuring our platform is resilient and secure by design.
Responsibilities
- Security Mentorship: Serve as the primary security mentor and subject matter expert for engineering teams, fostering a culture of technical excellence and rigorous security design.
- Product Vision: Define the product security vision, ensuring consistency across complex application architecture projects.
- Project Execution: Lead the security implementation of new product features from initial design to final production deployment.
- Threat Modeling: Conduct proactive threat modeling for new product features and major architectural changes.
- Application Security Design: Define and enforce best practices around application security, including audit/application logging, configuration, tenant separation, encryption, customer BYOK, RBAC design, API design, and Session/cookie/token management.
- Identity & Access: Define and implement secure Authentication/Authorization protocols (mTLS/OIDC/OAuth/SAML) for multi-tenant SaaS products.
- Third-Party Risk: Assess and mitigate risks associated with application third-party integrations such as payment, AI models, code repositories, etc.
- Code Review: Apply a strong programming background (Python/Go/JavaScript) to perform hands-on code reviews when needed to validate security controls.
- Risk Management & Cross-Functional Enablement: Maintain the Source of Truth for Replit’s secure architecture, ensure these patterns are consistently adopted across all engineering teams. Contribute to the Cybersecurity Risk Register, support other security teams, and partner with GRC teams to translate complex architectural designs into clear, audit-ready documentation and control frameworks.
- GTM & Sales Support: Act as the technical bridge for the Sales team, addressing complex security inquiries from enterprise customers regarding Replit's architectural integrity.
Required Skills & Experience
- 8+ years of experience in product security engineering or architecture, specifically with Multi-tenant SaaS products.
- Experience with AI Agent-based Saas products is a plus.
- Deep expertise in common product security practices (e.g., tenant separation, RBAC, BYOK, secure API design, session/token management).
- Expertise in Authentication/Authorization protocols (mTLS/OIDC/OAuth/SAML) in a multi-tenant SaaS environment.
- Strong programming background (Python/Go/JavaScript) with proven ability to conduct code review.
- Experience writing and maintaining Architecture documents.
- Exceptional ability to communicate technical risk to both engineering and executive audiences.
- Strong track record of contributing to Cybersecurity Risk Register.