Security Engineer

About The Position

Requirements

• 3+ years of experience in security engineering, backend security, or infrastructure security.
• Strong backend development experience with Node.js/TypeScript.
• Ability to ship code end-to-end.
• Good understanding of authentication, authorization, cryptography, and common vulnerabilities.
• Experience with security testing tools such as Burp Suite, Metasploit, Wireshark, or similar.
• Experience with cloud security, preferably GCP or AWS.
• Familiarity with Kubernetes, Docker, and modern infrastructure security.
• Strong problem-solving and communication skills.

Nice To Haves

• Experience with SaaS or high-growth startup environments.
• Bug bounty program experience.
• Experience with SOC 2, HIPAA, GDPR, Vanta, or GitHub Advanced Security.
• Contributions to the security community, such as CVEs, talks, or open-source work.
• Experience with DevSecOps or security automation.

Responsibilities

• Build and improve security controls across our product, backend, and infrastructure.
• Review code, architecture, and infrastructure for security risks.
• Run vulnerability assessments, penetration testing, and security audits.
• Debug and patch security issues in backend systems.
• Manage bug bounty triage and remediation workflows, including HackerOne.
• Automate security checks, alerts, and vulnerability workflows.
• Partner with engineering teams to promote secure coding practices.
• Support incident response and security investigations.
• Configure and maintain security tools such as firewalls, IDS/IPS, scanners, and monitoring systems.

Benefits

• Competitive compensation
• Work remotely anywhere in your respective country
• Ability to move laterally within a team and grow rapidly
• Paid time off and flexible leave policy
• No boss culture
• Flexible working hours
• LGBTQ+ friendly
• Company offsites
• Tech reimbursements