Remote | Secure Code & Architecture Evaluation Engineer — Up to $90/hour

About The Position

Requirements

• 2+ years of professional security engineering experience
• Hands-on experience with application security, cloud security, infrastructure security, vulnerability management, security tooling, or secure software development
• Regular use of AI coding agents such as Cursor, Claude Code, Codex, Windsurf, Gemini CLI, or comparable tools
• Ability to identify flaws in generated code, system designs, and technical architectures
• Experience securing production systems is strongly preferred
• Strong understanding of secure coding, threat modelling, authentication, authorization, secrets handling, input validation, dependency risk, cloud misconfiguration, and infrastructure security
• Clear written communication skills and comfort documenting technical reasoning in a remote, project-based environment
• A degree in Computer Science, Cybersecurity, Software Engineering, Computer Engineering, Information Security, Information Systems, or a related technical field is helpful
• Equivalent professional experience in security engineering, application security, cloud security, infrastructure security, or production software security is also highly relevant

Nice To Haves

• Experience with secure code review, penetration testing, threat modelling, vulnerability triage, security tooling, or cloud security assessment
• Familiarity with OWASP Top 10, secure SDLC practices, dependency scanning, SAST/DAST tools, container security, IAM, secrets management, or CI/CD security
• Experience with AWS, Azure, GCP, Kubernetes, Terraform, Docker, GitHub Actions, GitLab CI/CD, or comparable infrastructure and deployment tooling
• Background in technical code review, security architecture review, incident response, vulnerability management, or production system hardening
• Strong comfort working in sprint-based project environments with focused technical assessment windows

Responsibilities

• Use modern coding agents to complete and evaluate complex security engineering tasks
• Review generated code for vulnerabilities, insecure patterns, implementation flaws, maintainability issues, and production-readiness
• Identify bugs, edge cases, security-related failure modes, and weak assumptions in technical outputs
• Apply professional security engineering judgment to realistic software and infrastructure scenarios
• Evaluate generated architectures for security risks, access control weaknesses, insecure data flows, misconfigurations, and threat exposure
• Review technical decisions related to application security, cloud security, infrastructure security, vulnerability management, and secure deployment patterns
• Assess whether proposed solutions reflect real-world security engineering standards and production system expectations
• Provide structured feedback on risk areas, mitigation quality, implementation trade-offs, and secure design choices
• Compare outputs from multiple coding agents and assess their strengths, weaknesses, accuracy, and practical usefulness
• Identify where generated solutions succeed, where they fail, and where additional security engineering judgment is required
• Evaluate whether generated code and architecture reflect secure engineering practices
• Document technical review findings clearly for project teams and quality evaluation workflows
• Produce clear, structured evaluations of security engineering tasks and generated outputs
• Explain reasoning around vulnerabilities, secure architecture, implementation flaws, risk trade-offs, failure modes, and mitigation strategies
• Support technical assessment workflows by documenting accepted work, improvement areas, and practical engineering conclusions
• Help ensure outputs reflect production-scale security engineering expectations

Benefits

• Remote consulting work aligned with security engineering, coding agent, and technical evaluation expertise
• Opportunity to evaluate realistic security engineering workflows involving secure code, architecture review, vulnerabilities, cloud systems, and infrastructure risk
• Suitable for engineers who enjoy technical assessment, tool-assisted coding workflows, secure design review, and practical risk analysis
• Sprint-based project work that can align with focused availability and remote schedules
• Independent contractor engagement
• Fully remote and flexible scheduling
• Sprint-based, project-based availability
• Some project work may run in focused 12–24 hour sprint windows depending on project requirements
• Compensation may reach up to $90/hour, depending on project scope, experience, and accepted work structure
• Some projects may use accepted-task compensation depending on the specific workflow
• Payments are made weekly via Stripe or Wise based on services rendered
• Projects may be extended, shortened, adjusted, or concluded based on project needs and performance