Senior Security Engineer

You.com•San Francisco, CA

About The Position

The Security Engineering team at You.com is dedicated to enabling engineering teams to securely design, build, test, and maintain the software and infrastructure that powers the company’s platforms. The team establishes a "paved road" approach, ensuring engineers can deliver secure technologies with minimal friction while maintaining a strong focus on protecting the business, earning customer trust, and fostering a culture of security, transparency, and shared responsibility. Reporting to the Head of Security, this role will champion security across You.com, driving continuous improvement and empowering teams to build trusted, resilient services.

Requirements

Experience: 9+ years in security roles across disciplines such as application security, DevOps, security operations, software engineering, red teaming, incident response, security research, and AI security.
Technical Skills: Proficiency in programming languages like JavaScript, Python, and Terraform. Expertise in AWS cloud services, GitHub, Google Workspace, and Kubernetes.
Security Expertise: Hands-on experience in threat modeling, penetration testing, creating security requirements, conducting source code reviews, leading security design reviews, incident response, and securing cloud environments.
Collaboration & Ownership: Self-motivated, collaborative, and skilled at prioritizing work. A strong advocate of ownership, capable of managing problems end-to-end individually or within a team.
Security Program Management: Proven experience managing security programs with a focus on partnership and enablement.

Responsibilities

Act as a security subject matter expert to support engineers through design reviews, threat modeling, code reviews, patch creation, and security testing.
Collaborate with product and engineering teams to architect resilient, security-first services.
Engineer and implement secure, scalable, and resilient systems.
Develop and customize high-signal security tooling through automation and plugins.
Manage day-to-day security tasks, including abuse remediation, threat research, and incident handling.
Participate in on-call rotations and incident response efforts to ensure platform and customer security.

Benefits

Hubs in San Francisco and New York City offering regular in-person gatherings and co-working sessions
Flexible PTO with U.S. holidays observed and a week shutdown in December to rest and recharge
A competitive health insurance plan covers 100% of the policyholder and 75% for dependents
12 weeks of paid parental leave in the US
401k program, 3% match - vested immediately!
$500 work-from-home stipend to be used up to a year of your start date
$1,200 per year Health & Wellness Allowance to support your personal goals
The chance to collaborate with a team at the forefront of AI research

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume