Security Engineer
Commit
Software Engineering
Los Angeles, CA, USA · San Francisco, CA, USA
Posted on Thursday, May 2, 2024
About Us:
Commit is working with a confidential partner on this role. Applicants proceeding to the next stage will receive further information about the employer and recruiting process.
About the company:
- Company size: <50
- Industry: Data Analytics, Data Science, AI
- Founding year: 2019
- Stage: B
- Funding: $100M
- Backed by: Top-tier investors including Sequoia Capital, Andreessen Horowitz, and Snowflake
- Tech Stack/Key Tech: Kubernetes, AWS, Terraform, Python. A variety of security focus tools that could include: SAST (Checkmarx, Veracode, Fortify), DAST (OWASP ZAP, Burp Suite, Acunetix), SIEM (Splunk, Elastic Stack, IBM QRadar), Vulnerability Scanners (Nessus, Qualys, OpenVAS), SOAR platforms (Demisto, Phantom, Swimlane)
We're looking for a Product Security Engineer to:
- Pioneer the development of a proactive, technology-forward product security discipline.
- Own the SSDLC and ensure effective security measures are embedded throughout.
- Build systems and occasionally tools to help engineering shift left in security.
- Practice embedded security within engineering teams, teaching them to prevent and mitigate common security issues.
- Influence the company's security roadmap with a high-speed, automated, and self-service security strategy.
- Be at the forefront of innovation, implementing cutting-edge technologies to enhance the security of a category-defining product and preventing vulnerabilities before they occur.
- Thrive in a collaborative and fast-paced startup environment, where your contributions directly influence the company's direction and success.
What you'll need:
- A Bachelors or Masters Degree in Computer Science or related field
- 5+ years of experience in Clould and App Security engineering in both fast-paced startup & top tech environments.
- Deep understanding of software and cloud infrastructure security principles.
- Hands-on experience with core infrastructure products like Kubernetes, AWS, and Terraform.
- Proficiency in threat modeling, code reviews, and creating automations.
- Ability to work with multiple engineering teams and codebases, communicating effectively across various backgrounds.
- A track record of breaking down complex security problems into manageable quarterly and annual planning components.
- Passion for modernizing security practices and empowering end-users with delightful experiences.
- Desire to be a security pioneer in a data-driven company, building tools that empower engineers and users to achieve more.
What you'll get:
- Competitive Salary with significant equity in a rapidly growing early-stage company backed by top investors that is redefining an entire product category in enterprise solutions.
- The Benefits package includes comprehensive health insurance, Unlimited PTO, Paid Parental Leave, Retirement Savings, and more!
- Flexible work-from-anywhere policy with team retreats twice a year to foster collaboration.
- Unprecedented career progression opportunities in a fast-paced startup environment.
- Work in a dynamic, collaborative environment where your contributions are valued and can make a significant impact.
Compensation:
- $175,000 - $250,000 a year
- Compensation is salary + meaningful equity in an early stage venture backed startup commensurate with experience level.