remote

Staff Security Engineer - Tango

Security Engineer

Senior Staff Security Engineer responsible for designing, implementing, and maintaining secure full‑stack applications, conducting threat modeling, secure coding reviews, penetration testing, and integrating security into cloud and DevSecOps pipelines.

About the role

*Applicants must be authorized to work in the U.S. for any employer.

*We cannot sponsor employment-based visas at this time.

Let’s Tango ! Where Innovation Meets Impact.

At Tango we’re all about helping businesses make smarter decisions through powerful technology, insightful data, and a whole lot of collaboration. Whether you're a creative thinker, a strategic planner, a tech wizard, or a customer champion, there's a place for you on our team. We believe work should be meaningful and fun — so if you're ready to make a difference while enjoying the journey, come join us and let's Tango !

About the Role:

We’re hiring a Staff Security Engineer, a senior, polyglot, full-stack Application Security Engineer who not only uncovers vulnerabilities but also goes into application and infrastructure codebases to fix them. You will partner with product and engineering teams to champion secure design, automate developer workflows, and scale AppSec as an engineering-first discipline.

Responsibilities:

Perform hands-on security work across the stack: code reviews, threat modeling, vulnerability hunting, and remediation in production services.
Own end-to-end remediation for complex findings: from exploit proof-of-concept to code-level fixes and automated CI checks.
Build and maintain developer-first security tools, automation, and self-service capabilities (SAST rules, IaC scanning, dependency/OSS policies, CI/CD gates).
Lead threat modeling sessions and secure design reviews for new product initiatives and platform changes.
Collaborate with SRE and Platform teams to harden runtimes, secrets management, identity, and authentication flows.
Mentor and coach engineers on secure coding, secure-by-default patterns, and incident learnings.
Contribute to security metrics and visibility (vulnerability backlog, mean time to remediate, coverage of automated tests).

About You:

10+ years software engineering and application security experience (or equivalent), with deep hands-on polyglot coding experience across at least two major languages (e.g., Java, Python, Go, JavaScript/TypeScript, C#).
Demonstrated ability to both find security issues (offensive skills) and implement fixes across app and infra codebases (defensive skills).
Experience building developer-friendly AppSec programs and integrating security tooling into CI/CD pipelines.
Familiarity with cloud platforms (AWS, GCP, Azure) and container/Kubernetes security practices.
Strong communication skills and experience mentoring engineers across multiple teams.
Comfort with threat modeling, secure design patterns, PKI/identity flows, OAuth/OIDC, and authentication hardening.
Experience working at scale in B2B SaaS environments; prior experience at developer-focused security companies or

About the role

*Applicants must be authorized to work in the U.S. for any employer.

*We cannot sponsor employment-based visas at this time.

Let’s Tango ! Where Innovation Meets Impact.

About the Role:

Responsibilities:

Perform hands-on security work across the stack: code reviews, threat modeling, vulnerability hunting, and remediation in production services.
Own end-to-end remediation for complex findings: from exploit proof-of-concept to code-level fixes and automated CI checks.
Build and maintain developer-first security tools, automation, and self-service capabilities (SAST rules, IaC scanning, dependency/OSS policies, CI/CD gates).
Lead threat modeling sessions and secure design reviews for new product initiatives and platform changes.
Collaborate with SRE and Platform teams to harden runtimes, secrets management, identity, and authentication flows.
Mentor and coach engineers on secure coding, secure-by-default patterns, and incident learnings.
Contribute to security metrics and visibility (vulnerability backlog, mean time to remediate, coverage of automated tests).

About You:

10+ years software engineering and application security experience (or equivalent), with deep hands-on polyglot coding experience across at least two major languages (e.g., Java, Python, Go, JavaScript/TypeScript, C#).
Demonstrated ability to both find security issues (offensive skills) and implement fixes across app and infra codebases (defensive skills).
Experience building developer-friendly AppSec programs and integrating security tooling into CI/CD pipelines.
Familiarity with cloud platforms (AWS, GCP, Azure) and container/Kubernetes security practices.
Strong communication skills and experience mentoring engineers across multiple teams.
Comfort with threat modeling, secure design patterns, PKI/identity flows, OAuth/OIDC, and authentication hardening.
Experience working at scale in B2B SaaS environments; prior experience at developer-focused security companies or

Staff Security Engineer - Tango

About the role

Staff Security Engineer - Tango

About the role

Skills