Security Engineer, Platform
About The Position
Resend is growing rapidly, with over 2 million developers using its platform. The Platform Squad is responsible for the internal platform and reliability foundations that enable Resend teams to build, deploy, observe, and operate services safely. This role is fully remote, based in Americas or European timezones, with expected travel for team offsites, conferences, and meetups. The Security Engineer will build and improve the security foundations of Resend’s platform, including API keys, service permissions, secrets management, tenant isolation, audit logs, and internal access controls. They will help design secure defaults for new services, workers, queues, databases, internal tools, and deployment pipelines. The role involves improving detection and response for suspicious access, leaked credentials, abnormal sending behavior, privilege changes, and sensitive system events. A key aspect of the role is reviewing and updating processes/pipelines to integrate security from the outset, rather than as an afterthought, ultimately raising the security bar for the company.
Requirements
- Experience securing production infrastructure, cloud environments, APIs, developer platforms, or multi-tenant SaaS products
- Ability to write code and comfort reading application, infrastructure, and deployment code
- Understanding of authentication, authorization, secrets, IAM, logging, audit trails, incident response, and secure deployment pipelines
- Ability to independently prioritize and drive day-to-day tasks as the first dedicated security hire
- Preference for practical improvements over heavy processes
- Low-ego, direct, curious, and willing to learn from others
- Care about developer experience and believe security should be easy to adopt
Nice To Haves
- Experience with email infrastructure, transactional email, sender reputation, domain verification, SPF, DKIM, DMARC, webhooks, or abuse prevention
- Experience securing cloud infrastructure using tools like AWS, Terraform, Kubernetes, Cloudflare, or similar systems
- Experience with open source security, GitHub organization hardening, package publishing, dependency review, or supply-chain security
- Experience helping a company prepare for SOC 2, ISO 27001, GDPR, enterprise security reviews, or customer trust processes without turning engineering into a compliance machine
- Experience building security observability, alerting, detection pipelines, or incident response workflows
- Experience working closely with Trust & Safety, anti-abuse, fraud, or platform integrity teams
- Experience designing security systems for high-scale developer products
Responsibilities
- Build and improve the security foundations of Resend’s platform, including API keys, service permissions, secrets management, tenant isolation, audit logs, and internal access controls
- Help design secure defaults for new services, workers, queues, databases, internal tools, and deployment pipelines
- Improve detection and response for suspicious access, leaked credentials, abnormal sending behavior, privilege changes, and sensitive system events
- Review and update our processes/pipelines so that security is “built-in”, not “bolt-on”
- Raise the security bar
Benefits
- Autonomy to "just ship it"
- 100% remote team with flexible working schedules
- Modern tech stack (Next.js, Raycast, Notion, etc.)
- Honest and low-ego team
- Ownership of problems and solutions
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
