Remote | Secure Code & Architecture Evaluation Engineer — Up to $90/hour

24-MAG is offering a specialized remote consulting opportunity for experienced security engineers. The role focuses on secure code evaluation, security architecture review, and vulnerability analysis, requiring strong coding agent experience and practical secure engineering judgment.

Responsibilities:

• Use modern coding agents to complete and evaluate complex security engineering tasks
• Review generated code for vulnerabilities, insecure patterns, implementation flaws, maintainability issues, and production-readiness
• Identify bugs, edge cases, security-related failure modes, and weak assumptions in technical outputs
• Apply professional security engineering judgment to realistic software and infrastructure scenarios
• Evaluate generated architectures for security risks, access control weaknesses, insecure data flows, misconfigurations, and threat exposure
• Review technical decisions related to application security, cloud security, infrastructure security, vulnerability management, and secure deployment patterns
• Assess whether proposed solutions reflect real-world security engineering standards and production system expectations
• Provide structured feedback on risk areas, mitigation quality, implementation trade-offs, and secure design choices
• Compare outputs from multiple coding agents and assess their strengths, weaknesses, accuracy, and practical usefulness
• Identify where generated solutions succeed, where they fail, and where additional security engineering judgment is required
• Evaluate whether generated code and architecture reflect secure engineering practices
• Document technical review findings clearly for project teams and quality evaluation workflows
• Produce clear, structured evaluations of security engineering tasks and generated outputs
• Explain reasoning around vulnerabilities, secure architecture, implementation flaws, risk trade-offs, failure modes, and mitigation strategies
• Support technical assessment workflows by documenting accepted work, improvement areas, and practical engineering conclusions
• Help ensure outputs reflect production-scale security engineering expectations

Requirements:

• 2+ years of professional security engineering experience
• Hands-on experience with application security, cloud security, infrastructure security, vulnerability management, security tooling, or secure software development
• Regular use of AI coding agents such as Cursor, Claude Code, Codex, Windsurf, Gemini CLI, or comparable tools
• Ability to identify flaws in generated code, system designs, and technical architectures
• Strong understanding of secure coding, threat modelling, authentication, authorization, secrets handling, input validation, dependency risk, cloud misconfiguration, and infrastructure security
• Clear written communication skills and comfort documenting technical reasoning in a remote, project-based environment
• A degree in Computer Science, Cybersecurity, Software Engineering, Computer Engineering, Information Security, Information Systems, or a related technical field is helpful
• Equivalent professional experience in security engineering, application security, cloud security, infrastructure security, or production software security is also highly relevant
• Experience securing production systems is strongly preferred
• Experience with secure code review, penetration testing, threat modelling, vulnerability triage, security tooling, or cloud security assessment
• Familiarity with OWASP Top 10, secure SDLC practices, dependency scanning, SAST/DAST tools, container security, IAM, secrets management, or CI/CD security
• Experience with AWS, Azure, GCP, Kubernetes, Terraform, Docker, GitHub Actions, GitLab CI/CD, or comparable infrastructure and deployment tooling
• Background in technical code review, security architecture review, incident response, vulnerability management, or production system hardening
• Strong comfort working in sprint-based project environments with focused technical assessment windows