Security Engineer

About The Position

Requirements

• 3-5 years of hands-on security engineering or IT security experience
• Proven penetration testing experience with ability to perform manual testing across web applications, networks, and cloud environments
• Experience managing security contractors or external testing teams
• Extremely comfortable using AI tools for productivity and security tasks, including AI-powered red team tools and security testing platforms
• Strong background in cloud security (AWS, Azure, or GCP) and infrastructure security
• Experience with identity and access management, network security, and endpoint protection
• Demonstrated ability to work independently and drive initiatives in fast-paced startup environments
• Excellent communication skills with ability to explain technical concepts to both technical and non-technical audiences
• Self-starter mentality with strong problem-solving abilities and attention to detail

Nice To Haves

• Experience at early-stage startups or high-growth technology companies
• Background in AI/ML security considerations and challenges
• Relevant security certifications (OSCP, CISSP, CISM, Security+, CEH, etc.)
• Experience with compliance frameworks and audit processes
• Previous customer-facing experience in technical roles
• Familiarity with DevSecOps practices and security automation tools
• Understanding of B2B SaaS security requirements and customer expectations
• Experience with automated penetration testing tools and frameworks
• Background in managing vendor relationships and security service providers

Responsibilities

• Design, implement, and maintain comprehensive security controls across our infrastructure and operations
• Set up and manage essential IT security tools including endpoint protection, SIEM, identity management, and monitoring systems
• Conduct security assessments, vulnerability management, and incident response
• Ensure compliance with relevant frameworks (SOC 2, ISO 27001, etc.) to support customer trust and sales efforts
• Manage access controls, privileged accounts, and security awareness training programs
• Plan, execute, and document internal penetration tests across applications, infrastructure, and networks
• Manage and coordinate a small team of internal and external penetration testing contractors
• Develop internal penetration testing capabilities and methodologies
• Participate in customer security discussions and technical deep-dives during sales processes
• Support customer onboarding by addressing security questions and requirements
• Provide technical expertise during customer calls when security architecture questions arise

Benefits

• Compensation: $125,000 - $300,000 annually, plus equity, comprehensive benefits, and professional development budget.
• 100% medical, dental & vision coverage (for you; partial for dependents)
• 401k with employer match
• Unlimited PTO + federal holidays
• GrubHub stipend + all meals covered in-office
• Gym membership covered
• Frequent team dinners, events, and off-sites
• The opportunity to eliminate busywork for humanity