Clicking Apply Now takes you to AutoApply where you can tailor your resume and apply.
Experience Level
Mid to Senior
Qualifications
Qualifications:Extensive experience in product security, with a focus on AI technologies. Strong understanding of cryptography and data protection methods. Proficiency in conducting security audits and assessments. Experience with secure coding practices and vulnerability management. Bachelor's degree in Computer Science, Information Security, or a related field; advanced degree preferred.
About the job
About the Role:
As a Staff Product Security Engineer, you will play a pivotal role in ensuring the integrity and safety of our innovative products. Your expertise will guide the development and implementation of security protocols that protect user data and maintain privacy. You will collaborate closely with cross-functional teams to integrate security measures from the ground up, ensuring a robust defense against emerging threats in the AI landscape.
Key Responsibilities:
Design and implement security solutions to safeguard our products and infrastructure.
Conduct security assessments and penetration testing to identify vulnerabilities.
Work with engineering teams to integrate security into the product development lifecycle.
Stay updated on the latest security trends and threats, adapting strategies accordingly.
Develop and deliver security training to employees and partners.
About Tools for Humanity
About Tools for Humanity:At Tools for Humanity, we are pioneering a transformative human network aimed at empowering individuals in the AI era. Our mission is to provide a trusted verification method for authentic human identity while ensuring privacy. Our flagship products include the Orb for real identity verification, World ID for private proof of identity, and World App, facilitating new and safe applications rooted in this technology. With over 17 million verifications across 160 countries, we are at the forefront of creating a secure digital environment. Founded in 2019 and gaining global recognition in 2023, our diverse team of over 400 talented professionals hails from prestigious organizations such as OpenAI, Tesla, and Apple. Backed by prominent investors like a16z and Khosla Ventures, we are recognized for our innovative contributions to identity verification, cryptography, and large-scale technology deployment, as featured in TIME Magazine and other leading publications.
Full-time|$268K/yr - $368.5K/yr|On-site|San Francisco, CA
About FaireFaire is a dynamic online wholesale marketplace that champions local entrepreneurship. We believe in the power of small, independent retailers who collectively generate more revenue than giants like Walmart and Amazon. Our mission is to empower these businesses through cutting-edge technology, data insights, and machine learning, enabling them to …
About ValonValon is pioneering the AI-driven operating system for regulated finance, beginning with mortgage servicing. As a Series C company backed by a16z, we are revolutionizing sectors that many deemed too complex for innovation.Instead of relying on outdated legacy systems, we took an innovative route by developing and managing our own mortgage servicing business, overseeing over $110 billion in loans. This strategic choice has allowed us to gain profound insights into the complexities necessary to create software that genuinely functions in regulated industries.The results are remarkable. We've turned mortgage servicing from a 0% margin industry into one that boasts margins exceeding 60%, all while significantly enhancing customer satisfaction. Major enterprise contracts are now rolling out across the sector.ValonOS is our comprehensive platform that structures and automates every process, positioning us perfectly for the AI era. With a single system powered by rich data, our AI agents not only streamline tasks but also perpetually enhance overall operations. While mortgage servicing is our starting point, our vision extends to transforming regulated industries and beyond.Security at ValonOur clients entrust us with their most sensitive financial information, and our Security team’s foremost mission is to implement robust programs, processes, and automation to protect this data. We safeguard the infrastructure and data involved in processing billions of dollars in mortgage loans.Beyond protecting Valon’s internal systems, our Security team collaborates closely with Product and Engineering teams to design and deliver secure, scalable, and reliable features for ValonOS. We work cross-departmentally to embed security throughout the organization, regularly engaging with external security auditors, pentesting firms, and partners to continuously assess and enhance Valon’s security posture.Valon has offices in New York City and San Francisco, but we fully embrace remote work!
Join the Revolution at HarveyAt Harvey, we're not just changing the game for legal and professional services; we're redefining it from the ground up. By harnessing cutting-edge agentic AI, a robust enterprise platform, and unparalleled domain expertise, we're transforming the way essential knowledge work is performed for generations to come.This is an extraordinary opportunity to contribute to the foundation of a groundbreaking company at a pivotal moment. With a client base exceeding 1,000 across over 58 countries, a strong product-market fit, and exceptional investor backing, we're rapidly scaling and creating a new genre in real-time. The challenges are ambitious, the expectations are high, and the potential for growth — personally, professionally, and financially — is unparalleled.Our team is composed of sharp, driven individuals who are passionately committed to our mission. We operate with agility, intensity, and take genuine ownership of the challenges we face — from initial concept to long-term impact. We maintain close relationships with our customers, spanning from leadership to engineering teams, working collaboratively to address real issues with urgency and care. If you excel in uncertain environments, strive for excellence, and wish to help craft the future of work alongside like-minded individuals, we welcome you to join us in building something remarkable.At Harvey, the future of professional services is being crafted today — and we’re only at the beginning.Role OverviewAs a Senior Staff Software Engineer on our Product Security team, you will play a vital role in integrating security into our AI platform from the outset. Given that we handle and process our clients’ most sensitive information, prioritizing security is essential throughout our product lifecycle. You will take the lead in safeguarding crucial aspects of our product while spearheading high-impact security initiatives that elevate our entire engineering organization — balancing hands-on technical contributions with cross-functional leadership and mentorship. You’ll be responsible for designing and implementing both technical safeguards and security features within the Harvey platform.Our security program thrives on our collective offensive security experience: penetrating systems at other organizations (in white-hat capacities), responding to real security incidents, and drawing lessons from data breaches elsewhere. We routinely conduct penetration tests and red team exercises with external security experts. Simultaneously, we are all software engineers who contribute code daily, approaching security with an engineering-first mindset.What You’ll DoEstablish and enhance the security posture across the engineering organization, setting scalable standards.Collaborate with Product Engineering, Infrastructure, and other teams to integrate security into every facet of our development process.
Join Our Innovative TeamAt Twelve Labs, we are at the forefront of technology, developing state-of-the-art multimodal foundation models that enable video comprehension akin to human understanding. Our groundbreaking models have set new benchmarks in video-language modeling, enhancing our capabilities and revolutionizing media interaction and analysis.With impressive backing of $107 million in Seed and Series A funding from prestigious venture capital firms including NVIDIA’s NVentures, NEA, Radical Ventures, and Index Ventures, as well as renowned AI pioneers such as Fei-Fei Li and Alexandr Wang, our San Francisco headquarters serve as a hub for global innovation, complemented by a strong presence in APAC from Seoul.We cherish the unique journeys of our team members, believing that diverse cultural, educational, and life experiences fuel our collective creativity. We seek passionate individuals aligned with our mission to reshape technology. Join us in our quest to revolutionize video understanding and the realm of multimodal AI.Your RoleWe are on the lookout for a Staff Security Engineer to bolster our security team. Collaborating closely with our lead security engineer, you'll play a vital role in evolving and scaling our security initiatives. This generalist position offers a wide-ranging scope, encompassing application security, cloud infrastructure, CI/CD pipelines, and addressing AI/ML-specific vulnerabilities.This is not a SOC position; you won't be confined to an alert queue. Instead, you'll be actively engaged in identifying risks, enhancing controls to mitigate those risks, and working collaboratively with engineering and infrastructure teams to integrate security seamlessly into our development processes. As a dynamic AI company, we tackle security challenges that are often unprecedented—securing model weights, ML pipelines, and training infrastructure alongside more traditional domains.If you thrive on addressing emerging threats, enjoy deeply understanding systems, and aspire to make a meaningful impact at a cutting-edge video AI company, this role is tailored for you.Note: U.S. Citizenship is required due to access to systems governed by U.S. government security regulations.Location Requirements: We are currently considering candidates exclusively based in the Pacific Time Zone (PT).Candidates should be prepared to travel up to 10% annually for team meetings and events.
Full-time|$135.7K/yr - $240K/yr|On-site|San Francisco, California
Join Databricks as a Staff Product Manager, SecurityAt Databricks, we are dedicated to empowering data teams to tackle the world’s most formidable challenges, from revolutionizing transportation to accelerating medical advancements. Our mission is accomplished by providing the most robust data and AI infrastructure platform, which enables our clients to harness deep data insights to enhance their business operations. We are committed to simplifying user experiences in complex data management projects while upholding the highest security standards to safeguard their data.In this pivotal role, you will oversee all aspects of data security within the Databricks Lakehouse platform. You will spearhead product strategy, identifying, prioritizing, and implementing necessary external and internal controls to help customers adhere to privacy, confidentiality, digital sovereignty, and other regulatory requirements. You will design intuitive policy models that empower customers to manage access to their critical assets efficiently. Your contributions will instill confidence in IT and security administrators, facilitating increased adoption of Databricks within their organizations. Our data champions will rely on the security and operational simplicity you provide, allowing them to focus on delivering maximum value to their users. You will report directly to a Senior Director of Product Management.
Full-time|$276K/yr - $320K/yr|On-site|San Francisco
About the Role:As a Staff Product Security Engineer, you will play a pivotal role in ensuring the integrity and safety of our innovative products. Your expertise will guide the development and implementation of security protocols that protect user data and maintain privacy. You will collaborate closely with cross-functional teams to integrate security measures from the ground up, ensuring a robust defense against emerging threats in the AI landscape.Key Responsibilities:Design and implement security solutions to safeguard our products and infrastructure.Conduct security assessments and penetration testing to identify vulnerabilities.Work with engineering teams to integrate security into the product development lifecycle.Stay updated on the latest security trends and threats, adapting strategies accordingly.Develop and deliver security training to employees and partners.
Full-time|$100K/yr - $300K/yr|On-site|San Francisco, CA
About Cogent SecurityCogent Security is an innovative Applied AI Lab pioneering the future of AI agents in the realm of cybersecurity. In a world where cyber threats evolve at unprecedented speeds, our 'AI Taskforce' analyzes vast amounts of enterprise data to proactively address vulnerabilities and avert critical breaches.We remain at the forefront of technology by merging cutting-edge research with practical applications. Our dedicated Cogent Research team fuels our mission, ensuring we develop truly effective security workflows powered by AI.Since our inception, Cogent has rapidly grown, collaborating with Fortune 500 companies to safeguard the most intricate production environments globally.Supported by Greylock, our team comprises some of the brightest minds in applied AI, including experts from:Renowned universities such as Stanford, Berkeley, Penn, Duke, Carnegie Mellon, and Waterloo.High-growth unicorn companies like Scale AI, Databricks, Stripe, Tesla, and Coinbase.Leading cybersecurity specialists from Wiz, Abnormal AI, and Zscaler.Prestigious research institutions including DeepMind and SAIL.About the RoleAs we embark on building a suite of backend services and integrations with our design partners, we seek passionate and skilled Backend Engineers at both Senior and Staff levels, eager to thrive in the Applied AI domain.ResponsibilitiesDesign and implement critical backend subsystems and integration platformsComprehend business objectives and customer requirements to engineer backend subsystems that align with our technology strategies.Adapt systems to meet evolving needs of design partners and clients.Incorporate non-functional requirements such as compliance and security into system design.Establish scalable infrastructure foundationsPrepare for future growth in customer base, headcount, and data management by collaborating with your team to enhance infrastructure.
Full-time|$160K/yr - $230K/yr|On-site|San Francisco
Astranis is on the forefront of satellite technology, developing advanced satellites designed for high orbits that expand humanity’s reach into the solar system. Our innovative satellites deliver dedicated, secure communication networks to a diverse range of clients, including large enterprises, sovereign governments, and the US military. With five satellites currently in orbit and numerous launches planned, we are proudly managing a backlog exceeding $1 billion in commercial contracts.Astranis is the go-to satellite communications partner for clients with rigorous demands for uptime, data security, and network customization. Having raised more than $750 million from some of the most recognized investors, including Andreessen Horowitz, Blackrock, and Fidelity, we boast a talented team of 450 engineers and entrepreneurs. Our operations are based in a state-of-the-art 153,000 sq. ft. facility in Northern California, USA.Senior Product Security EngineerAs a Senior Product Security Engineer at Astranis, you will leverage your extensive software engineering expertise with a strong focus on security. You will be tasked with designing and building secure systems, specializing in critical areas such as cryptography, Public Key Infrastructure (PKI), and zero trust architectures. Your role will encompass evaluating processes, operating systems, and applications from a security-first engineering perspective. While your primary responsibility will be to develop secure software, you will also play a key role in identifying vulnerabilities, conducting risk analyses, and leading thorough security reviews.
At Crusoe, we are on a mission to accelerate the accessibility of energy and intelligence for everyone. Join us in creating the infrastructure that enables individuals to innovate boldly with AI, all while maintaining a commitment to scale, speed, and sustainability.Become a key player in the AI revolution through sustainable technology at Crusoe. Here, you will spearhead groundbreaking innovations, make a significant impact, and collaborate with a team dedicated to shaping the future of responsible cloud infrastructure.Role Overview:Crusoe AI is seeking a Senior Product Security Engineer to play a pivotal role in protecting our cloud products and applications, particularly those centered on AI/ML, throughout their entire lifecycle.In this position, you will lead the establishment and enforcement of security best practices within the development lifecycle. Your responsibilities will include performing comprehensive threat modeling, executing security assessments, and working closely with product and engineering teams to strengthen our security posture, ensuring the robustness of our innovative solutions and the protection of customer data.Your Daily Responsibilities:Collaborate with product and engineering teams to embed security best practices into the software development lifecycle.Conduct threat modeling, security architecture evaluations, design assessments, and code reviews for new product initiatives. Perform penetration testing, vulnerability assessments, and security evaluations of product features and systems.Create and implement security automation tools to monitor and test code and software for vulnerabilities.Establish and maintain secure coding protocols and procedures tailored for cloud and Kubernetes environments.Proactively detect and mitigate risks in user-facing processes and critical infrastructure.Lead security education, training, and mentorship initiatives to cultivate a culture of security awareness across all teams.Identify and manage security vulnerabilities, ensuring they are documented, prioritized, and addressed promptly.Qualifications for Success:You possess 4-6+ years of experience in Information Security, with a specialization in application or product security.You have proficiency in cloud platforms such as AWS, GCP, or Azure, and expertise in Kubernetes orchestration as well as automation scripting (e.g., Python).
Role Overview Amplitude is hiring a Staff Security Engineer in San Francisco, CA. This role focuses on strengthening security across the company’s systems and safeguarding user data. The position involves both hands-on technical work and collaboration with teams throughout the organization. What You Will Do Design and implement security controls and processes Conduct vulnerability assessments to identify and address risks Work closely with engineering and other teams to embed security best practices into the development lifecycle
Join Airwallex as a Senior Product Security EngineerAt Airwallex, we are revolutionizing the payments and financial landscape for global enterprises. Our cutting-edge platform, built on robust proprietary technology, serves over 200,000 businesses globally, including industry leaders like Brex, Rippling, Navan, Qantas, and SHEIN. We offer a seamless suite of integrated solutions for business accounts, payments, spend management, treasury, and embedded finance.Founded in Melbourne, our diverse team of over 2,000 talented professionals operates out of 26 offices worldwide. With a valuation of $8 billion and backing from prominent investors like T. Rowe Price, Visa, Mastercard, and Sequoia, Airwallex is at the forefront of shaping the future of global finance. If you're eager to make a meaningful impact in your career, we invite you to be part of our ambitious journey.What We ValueWe seek builders with entrepreneurial spirit who thrive on making an impact and pursuing accelerated learning. If you possess strong expertise and analytical skills, and share our mission and operating principles, we want you on our team. You should possess a balance of speed and thoroughness, driven by curiosity and informed decision-making.Collaboration and humility are key; we expect you to transform innovative ideas into tangible products and drive projects to completion. Harnessing AI to enhance efficiency and solve challenges is part of our ethos. Here, you'll confront complex, high-stakes challenges alongside exceptional colleagues and advance your career as we pioneer the future of global banking. If this resonates with you, let’s create what’s next together.Your RoleAs a Senior Security Engineer at Airwallex, you will play a pivotal role within our Information Security team, collaborating closely with Infrastructure, Product, and Engineering teams across the organization. Reporting to the Product Security Engineering Manager, you will be instrumental in identifying, protecting, detecting, responding to, and recovering from cybersecurity threats.This dynamic, hands-on position requires expertise in designing, developing, and managing infrastructure projects, processes, and standards that safeguard our networks, systems, and applications.
About Cogent SecurityCogent Security is an innovative Applied AI Lab dedicated to developing the next generation of AI agents for cybersecurity. As cyber threats evolve, so do our defenses. Our 'AI Taskforce' analyzes vast amounts of enterprise data to proactively address potential breaches before they can escalate.To maintain our edge, we integrate pioneering research with practical implementation. In addition to our core product initiatives, Cogent Research acts as our applied AI laboratory, fueling our ability to create truly intelligent security workflows.Since our launch, Cogent has rapidly expanded, collaborating with Fortune 500 companies to secure some of the world's most intricate production environments.Supported by Greylock, we've assembled a team of exceptional talent in applied AI, including individuals from:Renowned universities such as Stanford, Berkeley, Penn, Duke, Carnegie Mellon, and WaterlooHigh-growth companies including Scale AI, Databricks, Stripe, Tesla, and CoinbaseLeading cybersecurity experts from Wiz, Abnormal AI, and ZscalerPrestigious research institutions like DeepMind and SAILAbout the RoleIn the role of Senior Frontend Engineer, you will take ownership of the frontend platform and user experience, empowering customers to visualize, understand, and act upon complex security data with assurance.This position is classified as Staff+ level; you will have previously operated as a Staff, Senior Staff, or Principal Frontend Engineer and will be eager to define the technical pathway for a new platform. Your responsibilities will include designing frontend infrastructure, developing 'golden' component libraries, and enhancing the platform’s AI capabilities, all while delivering customer-facing features.You will balance in-depth architectural design with hands-on development, ensuring our frontend stack is both sophisticated and robust as we scale. Over time, you will play a key role in mentoring junior frontend engineers, laying the groundwork for a strong team based on the foundations you establish.
Full-time|$221K/yr - $250K/yr|On-site|San Francisco
About the Role: We are seeking a highly skilled Senior Product Security Engineer to join our dynamic team. In this role, you will play a crucial part in safeguarding our innovative products as we build a trusted network for real human verification in the AI era. You will collaborate with cross-functional teams to design, implement, and enhance security protocols, ensuring that our users can verify their identities with complete confidence.Key Responsibilities: As a Senior Product Security Engineer, you will be responsible for conducting security assessments, identifying vulnerabilities, and developing comprehensive security strategies. You will also provide guidance and mentorship to junior team members, fostering a culture of security awareness throughout the organization.
Join our innovative team as a Staff Software Engineer specializing in Product Security. In this role, you will be responsible for enhancing the security of our products, ensuring they meet the highest standards of safety and integrity. You will work collaboratively with cross-functional teams to design and implement security measures, conduct risk assessments, and develop solutions to mitigate vulnerabilities.
About Us:At Parafin, our mission is to empower small businesses by providing them with the financial support they need to thrive. Small businesses play a crucial role in our economy, yet they often face challenges in accessing traditional banking services. We develop innovative technology that simplifies access to essential financial tools through the platforms they already use for sales. By partnering with industry leaders like DoorDash, Amazon, Worldpay, and Mindbody, we deliver fast and adaptable funding solutions, spend management, and savings tools to small business users via seamless integrations. Parafin manages the complexities of capital markets, underwriting, servicing, compliance, and customer support on behalf of our partners.Our team of dedicated innovators comes from top-tier organizations such as Stripe, Square, Plaid, Coinbase, and Robinhood, all driven by a shared passion for creating solutions that foster the success of small businesses. Backed by prominent venture capital firms including GIC, Notable Capital, Redpoint Ventures, Ribbit Capital, and Thrive Capital, Parafin is a Series C company with over $194M raised in equity and $340M in debt facilities.Join us in shaping a future where every small business has the financial tools they deserve.About the Position:As a Staff Product Engineer at Parafin, you will be the go-to expert for our implemented products. You will collaborate across design, product, and backend teams to ensure that everything functions seamlessly. Our focus extends beyond specifications; we prioritize understanding the purpose of features, identifying users, and solving their problems. You will take ownership of the entire frontend experience, addressing every transition, edge case, and state change that occurs between user actions and screen outputs.While familiarity with our specific stack is not required, a strong foundation in JavaScript and experience shipping real products using React and TypeScript are essential.Your Responsibilities:Create Scalable, High-Quality User Experiences: Collaborate with design to deliver exceptional UI/UX while also managing critical aspects such as page performance, cross-browser compatibility, and mobile responsiveness.Gain In-Depth Product Knowledge: Develop a strong understanding and perspective on the products we build. Work closely with product and design teams to contribute to the development process, rather than merely executing specifications.Monitor and Enhance Performance: Implement observability for user interactions, core web vitals, and overall perceived performance.Build Frontend and Product Infrastructure: Participate in the development of build systems, developer tools, and deployment pipelines. Advocate for improvements in the developer experience and create internal tools to streamline processes.
Full-time|$205.7K/yr - $297K/yr|On-site|New York, NY; San Francisco, CA; Washington, DC
Join Scale AI as a highly skilled Security Engineer in our Product Security team, where you will play a pivotal role in safeguarding the security and integrity of our products and services. This position involves conducting comprehensive code reviews, implementing security best practices, and shaping our overarching security strategy. Your proficiency in TypeScript, Python, AWS, CI/CD, SAST, DAST, and Terraform orchestration will be vital in detecting and addressing potential security threats. You will have the opportunity to analyze complex issues, identify root causes independently, and articulate the complexities and implications of security vulnerabilities, including their potential for exploitation and impact. Your responsibilities will include:Utilizing extensive product security knowledge to design and maintain software tools that secure every layer of the modern AI/ML software ecosystem.Conducting thorough code reviews to identify and rectify security vulnerabilities.Assessing and improving the security of our product offerings through RFC and service evaluations.Establishing and sustaining CI/CD pipelines with a strong emphasis on security.Executing Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) to uncover vulnerabilities in production code.Employing Terraform orchestration to maintain secure and efficient infrastructure management.Advising engineering teams on developing robust, long-term solutions that prioritize security and privacy.Clearly communicating the mechanics and significance of security vulnerabilities, including their exploitability and potential consequences.Contributing to the security strategy and direction of the team, advocating for best practices and ongoing enhancements. Ideal candidates will possess:A proven track record of independently driving multi-month security initiatives, from problem identification to execution, with minimal oversight.Significant experience as a Security Engineer with an emphasis on product security.Proficiency in NodeJS, TypeScript, Python, and/or Kubernetes.A strong grasp of modern JavaScript application design.Practical experience in operating and securing AWS infrastructure at scale.Hands-on experience with SAST and DAST tools and methodologies.Familiarity with Terraform orchestration for managing infrastructure.Capability to analyze complex problems and identify root causes independently, providing actionable insights without managerial input.Exceptional communication skills, enabling clear presentation of technical concepts to diverse audiences.
Full-time|$200K/yr - $275K/yr|On-site|San Francisco, CA
Supported by top-tier investors from Silicon Valley, Peregrine Technologies is dedicated to empowering public safety organizations, local and state governments, federal agencies, and private-sector institutions to tackle societal challenges with unparalleled speed and precision. Our innovative AI-driven platform transforms isolated and fragmented data into actionable intelligence, instantly revealing critical information that promotes quicker, more informed decisions enhancing outcomes at every level. Currently, Peregrine serves hundreds of clients across more than 30 states and two countries, impacting over 125 million individuals, and we are excited to broaden our reach into enterprise and international markets.Our TeamAt Peregrine, we maintain that empathy is vital to enhancing our solutions. Observing how users engage with our products is essential for finding the best solutions. Our engineers work closely with teams on-site to gain insights into the diverse use cases we support.We are in search of a talented security engineer to join our core engineering teams. Our teams face various challenges, from enabling real-time user collaboration on intricate maps to constructing robust backend architectures capable of processing billions of data points.We value humility and empathy as fundamental traits for crafting effective solutions—you will collaborate directly with our deployment team and users as we refine our approach to addressing their needs. Creativity and perseverance are vital in realizing our vision.RoleThis is an exciting opportunity for a software engineer to join our expanding team, where you will gain substantial ownership over our technology stacks, making impactful decisions that will shape our future. You will play a pivotal role in ensuring that security is woven into every aspect of our product development lifecycle.Our technology stack is continually evolving, anchored by a backend built on Python, Django, Celery, Airflow, and Kafka; a frontend utilizing React, Redux, and Mapbox; data storage solutions including PostgreSQL and Elasticsearch; machine learning models deployed using Bedrock and SageMaker; and infrastructure managed through AWS, Pulumi, Terraform, and Kubernetes.About YouDevelop scalable, security-first frameworks that form the backbone of our infrastructure, ensuring top-tier data security.Recognize and mitigate emerging security threats, establishing strategies that align with our product goals.Design security architecture across the platform...
Full-time|$248K/yr - $279K/yr|Remote|San Francisco Bay Area or Remote
Join Discord, a platform cherished by over 200 million users monthly, where gaming is at the heart of our community. With more than 90% of our users engaging in games, they collectively spend 1.5 billion hours enjoying thousands of unique titles on Discord every month. Our commitment is to enhance the gaming experience by facilitating enjoyable interactions before, during, and after gameplay.At Discord, we empower individuals to connect within diverse communities, and our users trust us to safeguard their conversations. Our Platform Security Engineering team is dedicated to fortifying the systems that underpin Discord, ensuring that the "secure way" becomes the "easy way." We are seeking a Staff Software Engineer to drive this mission forward through your security expertise, software development skills, and operational excellence. In this technical leadership role, you will identify and pursue impactful opportunities to mitigate security risks across our Engineering teams. You will design and implement user-friendly "paved paths" for managing identities, deploying code, configuring cloud infrastructure, and operating services effectively.If you are a security engineer with a profound curiosity, keen on tackling technically and socially complex projects, and motivated to enhance security and privacy at Discord, we encourage you to explore this opportunity further!
Our MissionAt Reflection AI, our mission is to develop open superintelligence that is accessible to everyone.We are creating advanced open weight models tailored for individuals, agents, enterprises, and even nations. Our talented team comprises AI researchers and industry veterans from renowned organizations such as DeepMind, OpenAI, Google Brain, Meta, Character.AI, Anthropic, and more.Role OverviewReflection.AI is seeking a motivated Member of Technical Staff - Security Engineer to establish our Application Security function while actively contributing to various projects across our Security Engineering organization. This role offers significant autonomy to design solutions and navigate both technical challenges and organizational dynamics. Ideal candidates will be those who excel in environments that prioritize ownership and possess a strong '0 to 1' mentality.Key ResponsibilitiesEngage in engineering tasks for essential projects within the Security organization, including our agentic AI incident detection and response SOC, along with long-term internal AI agents.Implement security measures for AI agents, encompassing sandboxes, identity, and authorization systems.Develop a comprehensive software supply chain security strategy, including tooling and infrastructure with SCA/SBOM analysis.Quickly deploy controls to address emerging supply chain threats.Create and sustain a detailed threat model for our software stack.Lead our penetration testing program based on prioritizations outlined in your threat model.Establish and propagate foundational secure coding practices and architectural patterns pertinent to AI/ML systems.Integrate Static Application Security Testing (SAST) tools within CI/CD pipelines for ongoing vulnerability assessments.Design and execute a thorough Secure Software Development Lifecycle.Required QualificationsProficiency in Python or Golang.Demonstrated experience in architecting and constructing complex software systems.Understanding of common application logic exploit vectors.Experience in implementing and executing cross-functional projects with significant impact.
Full-time|$194.6K/yr - $314.8K/yr|Remote|Bellevue, Washington; Mountain View, California; San Francisco, California; Seattle, Washington; United States
This position is open to remote candidates across the U.S., with a preference for those located in the San Francisco/Bay Area or Seattle/Bellevue. U.S. citizenship is required.Databricks is on the lookout for a highly skilled and strategic Senior Staff Security Engineer specializing in Incident Response to bolster our Incident Response team. In this critical role, you will make decisions that will significantly influence the long-term success of Databricks' security framework, crafting solutions that pave the way for future opportunities even when paths are unclear. Your contributions will be vital in shaping a multi-year technology strategy for key sectors of our business, involving multiple systems and teams, and consistently delivering large-scale projects aligned with corporate objectives.The Incident Response team is dedicated to swiftly, effectively, and uniformly addressing security threats, incidents, and investigations to safeguard our customers, employees, and enterprise data. Utilizing Databricks' own platform for near-real-time log analytics, alerting, and forensics, we embody a philosophy of "Security for Databricks on Databricks." As a Senior Staff Security Engineer, you will tackle the most challenging Security Incident Response Team (SIRT) tasks, navigate complex, ambiguous problems, and enhance the organization’s efficiency through systems enablement, tool creation, or policy innovation.Your Impact:Strategic Direction & Technical Vision: Influence the organization's roadmap and lead discussions on vital technology domains, fostering adoption and contributing decisions with long-term implications for Databricks' success.Incident Leadership & Crisis Management: Spearhead intricate investigations and impact assessments, executing crisis management through the Incident Management System (IMS). Collaborate with various stakeholders and convey findings to executive leadership, ensuring effective handling of significant security incidents with minimal operational disruption.Advanced Threat Management: Demonstrate expert knowledge across all cloud services utilized by Databricks (AWS, Azure, GCP), possessing a deep understanding of the architecture of essential business components and articulating their security and risk parameters. Propel the creation of a sophisticated threat detection and response program aimed at significantly reducing Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR) to security incidents.Technical Innovation & Automation: Design scalable security solutions that leverage automation to enhance incident response efficiency and effectiveness.
