Information Security Engineer

About The Position

Requirements

• BS, MS, or PhD in Computer Science, Cybersecurity, Information Security, or a related field, or equivalent experience.
• 5+ years of experience in application security, product security, cloud security, infrastructure security, or related security engineering work.
• Hands-on proficiency with AI coding assistants (Claude, Codex, Cursor, Codeium, Perplexity, or equivalent) in real production work, not experimentation. We'll ask how these tools have changed how you build, review, and secure code.
• Proven ability to think critically, creatively, and abstractly about technical systems and contribute useful security perspectives before all details are fully defined.
• Proactive, fast paced operating style. You drive outcomes; you don't wait for tickets.
• Strong understanding of secure software development practices and common vulnerability classes.
• Hands-on experience with at least one major programming or scripting language such as Python, Go, JavaScript, TypeScript, Java, or C++.
• Familiarity with cloud platforms, containerized workloads, CI/CD pipelines, Linux systems, and modern developer tooling.
• Clear communicator. Collaborates well with engineers and PMs.

Nice To Haves

• Experience building security automation or developer-facing security tools.
• Familiarity with Kubernetes, Terraform, GitLab/GitHub CI, or cloud-native security controls.
• Experience with compliance, secure development lifecycle programs, or release security gates.
• Background in threat modeling, design review, incident analysis, vulnerability research, or systems thinking.
• Ability to connect technical details to broader organizational, product, or operational risk.

Responsibilities

• Constantly improve automation, develop new tools and skills that make our secure practices easier for users to adopt and deploy
• Partner with engineering and product management from earliest design through release. This entails tracking evolving discussions, surfacing security implications, and translating them into practical mentorship.
• Run security reviews across code, dependencies, containers, cloud, and CI/CD. Triage, prioritize, and drive remediation to closure.
• Build automation and developer-facing tooling that make secure-by-default the easy path.
• Ask sharp questions. Challenge assumptions. Surface risks that don't appear on standard checklists.
• Improve secure development practices, standards, and workflows.
• Communicate risk crisply to technical and non-technical audiences.
• Stay ahead of emerging threats relevant to modern software and cloud.

Benefits

• highly competitive salaries
• comprehensive benefits package
• equity
• benefits