← all jobs

[Remote] Product Security Research Engineer

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. Mastech Digital is seeking a Product Security Research Engineer to join their team in San Jose, CA. This role focuses on the proactive discovery and validation of attack paths within the Nutanix product ecosystem, requiring a deep understanding of software vulnerabilities and the ability to translate offensive research into preventative measures.

Responsibilities

  • Attack Path Discovery: Partner with Security Architects to identify and technically validate potential exploit sequences. You will engineer proofs-of-concept to demonstrate how individual vulnerabilities can be linked to create significant product exposure
  • Impact Analysis: Perform deep-dive technical research to determine the exact “blast radius” of a vulnerability. You will be responsible for identifying exactly which products and versions are impacted and what specific data or services are at risk
  • Proactive Defense: Translate offensive research into preventative measures, providing Engineering teams with the technical evidence and architectural guidance needed to implement robust, long-term mitigations
  • AI-Enhanced Security Engineering: Explore and implement AI-driven automation to enhance our discovery and analysis capabilities. You will use emerging technologies to scale the identification of complex vulnerability patterns across the Nutanix stack
  • Technical Advocacy: Serve as a senior technical subject matter expert during high-stakes triage, helping stakeholders understand the practical reality of threat through evidence-based technical analysis and exploit modeling

Skills

  • 6-9 years of experience in Product Security Engineering, Vulnerability Research, or Offensive Security, with a focus on deconstructing complex software systems
  • A talent for 'Attack Path Thinking', you can look at a complex architecture and identify how a minor logic flaw could lead to a major compromise
  • A strong understanding of software vulnerabilities (logic flaws, memory corruption, auth bypasses) and how they manifest in cloud-native and hybrid-cloud environments
  • Experience or a strong interest in using AI-driven tools to scale security engineering and automate the discovery of sophisticated vulnerability patterns
  • An ability to work as peer with Architects and Developers, using technical data and research to build consensus on remediation paths
  • Experience with reverse engineering or high-level exploit development in a research-focused environment
  • Familiarity with 'Graph-based' security analysis (mapping relationships between assets, permissions, and vulnerabilities)
  • Contributions to the security community, such as tool development, technical whitepapers, or responsibility disclosed CVEs
  • Experience in a distributed engineering environment where technical evidence is the primary driver of security prioritization

Company Overview

  • Mastech Digital provides IT associates in digital and mainstream technologies, Digital Transformation Services around Salesforce.com and SAP It was founded in 1986, and is headquartered in Pittsburgh, Pennsylvania, USA, with a workforce of 1001-5000 employees. Its website is http://www.mastechdigital.com/.
  • Company H1B Sponsorship

  • Mastech Digital has a track record of offering H1B sponsorships, with 50 in 2026, 399 in 2025, 496 in 2024, 540 in 2023, 947 in 2022, 681 in 2021, 751 in 2020. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Virtual Entry Level Assistant - Marketing

    Work from home Full-time role

    [Remote] Director of Engineering (New Product Build - Go/Python, React, TS, Next, GCP, Cloudflare)

    Work from home Full-time role

    [Remote] Creative Recruiter

    Work from home Full-time role

    [Remote] Regional Account Executive (TN/KY)

    Work from home Full-time role

    [Remote] Staff Software Engineer, Backend

    Work from home Full-time role

    Jr. Java Developer - Remote

    Work from home Full-time role

    Full Stack Ruby On Rails Developer (Kathmandu, Nepal)

    Work from home Full-time role

    Clinical Research Associate III

    Work from home Full-time role

    [Remote] Customer Service Representative (Healthcare)

    Work from home Full-time role

    Remote - Scrum Master

    Work from home Full-time role

    Tech Lead Fullstack AI Specialist

    Work from home Full-time role

    AVP, Actuarial Financial Reporting

    Work from home Full-time role

    Data Test Engineer (3-6 Months Contract Role)

    Work from home Full-time role

    Experienced Data Entry Clerk - Remote Opportunity at careerzynith

    Work from home Full-time role

    Remote Customer Experience Specialist – careerzynith Delaware Residents

    Work from home Full-time role

    Senior Ruby on Rails Engineer

    Work from home Full-time role

    Staff Applied Scientist, Personalization

    Work from home Full-time role

    Wealth Advisor

    Work from home Full-time role

    High Paying Online Jobs No Experience Remote Virtual Assistant $25-$35/hr Begin your remote career as a virtual assistant with competitive pay and no prior experience required.

    Work from home Full-time role

    Junior Crypto Analyst & Trader

    Work from home Full-time role

    [Remote] Data Engineer – Google Cloud Platform

    Work from home Full-time role