Logo for Movable Ink

Product Security Engineer

Role overview

Qualifications

  • 2+ years of experience in application security, DevSecOps, or security-focused software engineering
  • Hands-on experience with SAST, SCA, or secrets scanning tools (Semgrep, Dependabot, Snyk, or similar)
  • Familiarity with CI/CD pipelines and GitHub Actions
  • Understanding of OWASP Top 10 web vulnerabilities and how to detect and prevent them

Responsibilities

  • Implement and maintain static application security testing (SAST) using Semgrep across repositories
  • Configure and improve software composition analysis (SCA) tooling (Dependabot) to identify vulnerable dependencies
  • Manage secrets detection scanning (Trufflehog) and respond to findings
  • Integrate security scanning into CI/CD pipelines (GitHub Actions) to catch issues before code is merged

About the company

Movable Ink logo

Movable Ink

AdTech & Programmatic Advertising

Movable Ink scales content personalization for marketers through data-activated content generation and AI decisioning. The world’s most innovative brands rely on Movable Ink to maximize revenue, simplify workflow and boost marketing agility. Movable Ink is one of the fastest-growing SaaS companies in the U.S. and has been recognized by Inc. Magazine’s “Best Workplaces” (2022-2019) and Built In NYC’s “Best Places to Work” (2023-2018), as well as Inc. 5000, Crain's Fast 50, and Deloitte's Technology Fast 500. Headquartered in New York City, Movable Ink and its nearly 600 employees serve its global client base from operations throughout North America, Central America, Europe, Australia, and Japan.

Company details

Company typeSME
IndustryAdTech & Programmatic Advertising
Company size501 - 1000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Movable Ink scales content personalization for marketers through data-activated content generation and AI decisioning. The world’s most innovative brands rely on Movable Ink to maximize revenue, simplify workflow and boost marketing agility. Headquartered in New York City with close to 600 employees, Movable Ink serves its global client base with operations throughout North America, Central America, Europe, Australia, and Japan.

Movable Ink is hiring a Product Security Engineer to help secure our codebases, CI/CD pipelines, and development practices. To succeed in this role, you'll balance a security-first mindset with a practical understanding of how engineering teams ship software—finding ways to reduce risk without slowing down delivery. This is a hands-on opportunity to build and improve the automation that keeps our code and infrastructure safe, working closely with both the Security and Engineering teams. As AI coding tools and supply chain attacks increase risk across the industry, this role is critical to staying ahead of vulnerabilities before they reach production.

Responsibilities:

  • Implement and maintain static application security testing (SAST) using Semgrep across our repositories
  • Configure and improve software composition analysis (SCA) tooling (Dependabot) to identify vulnerable dependencies
  • Manage secrets detection scanning (Trufflehog) and respond to findings
  • Integrate security scanning into CI/CD pipelines (GitHub Actions) to catch issues before code is merged
  • Triage and prioritize vulnerability findings, working with engineering teams to drive remediation
  • Support dynamic application security testing (DAST) efforts using tools like ZAP
  • Contribute to our Application Security Posture Management (ASPM) platform to centralize findings and track remediation
  • Set up and configure automation scripts to support our vulnerability management practices
  • Document secure coding guidelines and help educate developers on security best practices
  • Evaluate and recommend new security tools as the landscape evolves

Qualifications:

  • 2+ years of experience in application security, DevSecOps, or a security-focused software engineering role
  • Hands-on experience with SAST, SCA, or secrets scanning tools (Semgrep, Dependabot, Snyk, or similar)
  • Familiarity with CI/CD pipelines and GitHub Actions
  • Understanding of common web application vulnerabilities (OWASP Top 10) and how to detect/prevent them
  • Experience reading and reviewing code in at least one language (Ruby, Python, JavaScript, or Go preferred)
  • Comfortable navigating codebases and working with engineering teams to explain and prioritize security findings
  • Strong written communication skills for documentation and customer-facing security responses
  • Self-motivated and able to manage competing priorities in a fast-paced environment

The base pay range for this position is $170,000-$200,000/year, which can include additional bonus depending on the position ultimately offered, in addition to a full range of medical, financial, and/or other benefits. The base pay offered may vary depending on job-related knowledge, skills, and experience.

Studies have shown that women, communities of color, and historically underrepresented people are less likely to apply to jobs unless they meet every single qualification. We are committed to building a diverse and inclusive culture where all Inkers can thrive. If you’re excited about the role but don’t meet all of the abovementioned qualifications, we encourage you to apply. Our differences bring a breadth of knowledge and perspectives that makes us collectively stronger.

We welcome and employ people regardless of race, color, gender identity or expression, religion, genetic information, parental or pregnancy status, national origin, sexual orientation, age, citizenship, marital status, ethnicity, family or marital status, physical and mental ability, political affiliation, disability, Veteran status, or other protected characteristics. We are proud to be an equal opportunity employer.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Security Engineer Related jobs

Other jobs at Movable Ink

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.