MTS - Security Engineering

About The Position

Requirements

• Rigor under pressure: ability to move between infrastructure, product, and debugging, stabilizing systems while shipping features.
• Platform thinking: designing security primitives and scalable solutions.
• Low ego: willingness to tackle any problem regardless of perceived importance.
• Technical depth and ownership.
• Experience in at least one of the following areas: Agent & AI Security, Application & Product Security, Infrastructure & Cloud Security, Detection & Response, or Privacy & Trust.
• Ability to navigate the whole stack (T-shaped engineer).

Nice To Haves

• Experience with Typescript and Python.
• Unusual skills, experience with systems ownership, and ability to transfer knowledge to this role.
• A link to your GitHub, a project you are proud of, or a breakdown of a hard technical problem you've solved.

Responsibilities

• Securing the integration surface of Poke, which connects to users' email, calendar, and other services.
• Developing and implementing defenses against prompt injection and ensuring guardrails for tool use.
• Sandboxing untrusted model outputs and conducting red team exercises for agentic workflows.
• Implementing and managing authentication and authorization systems, including OAuth token and secrets management.
• Designing secure-by-default APIs and performing threat modeling for new features.
• Managing cloud infrastructure security, including IAM, network segmentation, and workload isolation.
• Hardening high-concurrency distributed systems under heavy load.
• Developing and maintaining telemetry pipelines and anomaly detection systems.
• Responding to security incidents and implementing abuse and fraud prevention measures at scale.
• Ensuring data minimization, encryption in transit and at rest, and foundational compliance (SOC 2, GDPR).
• Building user trust through product design and security practices.