About Life360

Life360’s mission is to keep people close to the ones they love. Our category-leading mobile app and Tile tracking devices empower members to protect the people, pets, and things they care about most with a range of services, including location sharing, safe driver reports, and crash detection with emergency dispatch. Life360 serves approximately 91.6 million monthly active users (MAU), as of September 30, 2025, across more than 180 countries.

Life360 delivers peace of mind and enhances everyday family life with seamless coordination for all the moments that matter, big and small. By continuing to innovate and deliver for our customers, we have become a household name and the must-have mobile-based membership for families (and those friends that basically are family).

Life360 has more than 750 (and growing!) remote-first employees. For more information, please visit life360.com.

Life360 is a Remote-First company, which means a remote work environment will be the primary experience for all employees. All positions, unless otherwise specified, can be performed remotely (within the US) regardless of any specified location above.

About The Team

We are a diverse, highly skilled group of cybersecurity professionals dedicated to safeguarding our customers, products, and company from evolving threats. Our mission is to not only protect Life360 but to enable its success by fostering innovation in a secure environment.

We achieve this by embedding security into every aspect of Life360's operations, from product development to infrastructure. Our team excels at building robust security systems, driving proactive threat detection and response, and championing security best practices across the company.

Our team thrives on collaboration, innovation, and a shared passion for protecting people. Joining this team means being part of a mission-driven group that directly impacts Life360's reputation, user trust, and long-term success.

The US-based salary range for this position is $186,000 to $271,500. We take into consideration an individual's background and experience in determining final salary - therefore, base pay offered may vary considerably depending on geographic location, job-related knowledge, skills, and experience. The compensation package includes a wide range of medical, dental, vision, financial, and other benefits, as well as equity.

About the Job

Life360 protects what matters most - 90+ million people trust us with their family's safety and location data every day. We're seeking a Staff Product Security Engineer to architect and implement a world-class DevSecOps program that makes security invisible to developers while making our products impenetrable to adversaries.

This isn't a checkbox compliance role. You'll build the security infrastructure that enables 200+ engineers to ship faster because of security, not despite it. You'll be the technical force behind transforming our SDLC into a secure-by-default pipeline where vulnerabilities are caught in the IDE, not in production.

Role Overview

We are seeking a Staff Product Security Engineer to help establish and mature Life360's Product Security program. This role will focus on embedding security into the software development lifecycle (SDLC) through DevSecOps practices, defining secure architecture, and the development of secure enablement tooling. The ideal candidate will bring strong experience in application security, threat modeling, security tooling deployment (particularly ASPM platforms), and the ability to work as a security consultant with product and engineering teams. This person will play a critical role in creating secure-by-default paths for new features and products, ensuring we protect the location data and family safety features that millions of users trust us with.

What You'll Build

Security Infrastructure & Automation:

Deploy and operationalize Cycode ASPM platform (or equivalent) as the central nervous system for application security—unifying SAST, SCA, secret scanning, container security, and IaC scanning into actionable intelligence
Build IDE-to-cloud security pipelines that catch vulnerabilities at code-write time, eliminating 90% of findings before merge
Create security-as-code frameworks that make the secure path the default path
Automate vulnerability triage, deduplication, and routing to eliminate manual security toil

Secure Development Enablement:

Design and deploy pre-approved security patterns, libraries, and templates that enable developers to build securely without security expertise
Establish threat modeling as a lightweight, scalable practice integrated into product planning
Conduct security architecture reviews for high-risk features across mobile (iOS/Android), backend (Java, Python, PHP), and emerging hardware products
Build security tooling that developers actually want to use—think Spotify's Backstage for security

Vulnerability Management & Remediation:

Establish SLA-driven vulnerability management workflows with clear severity definitions, ownership models, and escalation paths
Create friction-free remediation guidance—not "fix this," but "here's the exact code change needed"
Build metrics dashboards that translate security posture into business language executives understand
Partner with engineering leadership to embed security accountability into team objectives

Cross-Functional Security Consulting:

Act as embedded security advisor to product and platform engineering teams
Translate complex security requirements into pragmatic, implementable solutions
Influence technical decisions at the architecture level—security considered in design, not bolted on after

What We’re Looking For

5+ years of hands-on experience in product security, application security, or DevSecOps roles.
Strong experience deploying and operationalizing Application Security Posture Management (ASPM) platforms, with particular emphasis on vulnerability management and findings handling.
Deep understanding of security tooling including SAST, DAST, secret scanning, SCA (Software Composition Analysis), and container scanning tools.
Proficiency in Python and the ability to learn new programming languages and technologies as needed (experience with Java, C, or PHP is a plus).
Extensive experience with threat modeling and security architecture reviews, with the ability to identify design flaws and provide actionable remediation guidance.
Strong knowledge of secure software development practices, including OWASP Top 10, secure coding principles, and secure-by-design methodologies.
Experience building security tooling and automation to scale security practices across development teams.
Familiarity with compliance frameworks including OWASP SAMM 2.0, NIST SSDF (Secure Software Development Framework), SOC 2, and GDPR, with working knowledge of privacy considerations.
Experience working with diverse technology stacks including mobile applications (iOS/Android), cloud infrastructure, and modern application development.
Expert-level threat modeling—you can identify design flaws that automated tools miss
Security architecture experience across diverse platforms: mobile (iOS/Android SDK security), cloud (AWS/GCP), embedded systems
CI/CD security integration—Jenkins, GitLab CI, GitHub Actions, CircleCI—where you've built security into build pipelines without breaking them
Working knowledge of OWASP SAMM 2.0, NIST SSDF, secure coding standards

Nice to Have Skills

CISSP certification or other relevant security certifications.
Experience with Cycode or similar ASPM platforms.
CISSP, OSCP, GWAPT, or similar certifications
Experience securing location-based services or privacy-sensitive consumer applications
Contributions to open-source security tools, public security research, or conference speaking
Familiarity with SOC 2, ISO 27001, GDPR compliance requirements

Our Benefits

Competitive pay and benefits
Medical, dental, vision, life and disability insurance plans (100% paid for employees)
401(k) plan with company matching program
Mental Wellness Program & Employee Assistance Program (EAP) for mental well-being
Flexible PTO, 13 company-wide days off throughout the year
Winter and Summer Weeklong Synchronized Company Shutdowns
Learning & Development programs
Equipment, tools, and reimbursement support for a productive remote environment
Free Life360 Platinum Membership for your preferred circle
Free Tile Products

Life360 Values

Our company’s mission-driven culture is guided by our shared values to create a trusted work environment where you can bring your authentic self to work and make a positive difference

Be a Good Person - We have a team of high integrity people you can trust.
Be Direct With Respect - We communicate directly, even when it’s hard.
Members Before Metrics - We focus on building an exceptional experience for families.
High Intensity, High Impact - We do whatever it takes to get the job done.

Our Commitment to Diversity

We believe that different ideas, perspectives and backgrounds create a stronger and more creative work environment that delivers better results. Together, we continue to build an inclusive culture that encourages, supports, and celebrates the diverse voices of our employees. It fuels our innovation and connects us closer to our customers and the communities we serve. We strive to create a workplace that reflects the communities we serve and where everyone feels empowered to bring their authentic best selves to work.

We are an equal opportunity employer and value diversity at Life360. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any legally protected status.

We encourage people of all backgrounds to apply. We believe that a diversity of perspectives and experiences create a foundation for the best ideas. Come join us in building something meaningful. Even if you don’t meet 100% of the below qualifications, you should still seriously consider applying!

#LI-Remote

____________________________________________________________________________

Staff Product Security Engineer

AI overview