Senior Security Engineer

Plaud•San Francisco, CA

About The Position

Plaud Inc. is seeking a Senior Security Engineer to own both the detection & response layer and the cloud infrastructure security foundation. The goal is to ensure these two domains operate in lockstep to achieve SOC 2 Type II audit readiness by Q4 2026. This role involves significant work in cloud security, SIEM, incident response, operational evidence for SOC 2, and security reporting. The company is a bootstrapped, profitable entity with a $250M revenue run rate, focused on building the next-generation intelligence infrastructure and interfaces for human-AI interaction. Plaud is committed to the highest standards of data security and privacy, holding ISO 27001, ISO 27701, GDPR, SOC 2, HIPAA, and EN 18031 compliance.

Requirements

5+ years of hands-on security engineering experience.
Demonstrable depth in at least one of: cloud security (AWS/GCP, CSPM, IAM, IaC) or security operations (SIEM, IR, SOAR, detection engineering).
Working fluency in the other domain (cloud security or security operations).
Proven ability to build security infrastructure from zero: tool selection, baseline configuration, and policy definition without inheriting a mature program or existing runbook.
Strong working knowledge of MITRE ATT&CK.
Strong working knowledge of CIS Benchmarks (L1/L2).
Strong working knowledge of cloud-native security tooling (AWS Security Hub, GCP SCC, or equivalent CSPM).
Strong working knowledge of log source integration across cloud and endpoint layers.
Familiarity with SOC 2 TII control requirements — specifically CC6 (logical access) and CC7 (monitoring & detection).
Familiarity with the operational evidence standards expected by a third-party auditor.
Routinely uses LLMs as part of daily security workflow — alert summarization, detection rule generation, SOAR playbook drafting, or IaC policy automation. Will demo last-2-weeks AI usage during interview.

Responsibilities

Remediate credential exposure across AWS/GCP production environments.
Deploy and tune CSPM across all accounts.
Embed IaC security gates (Checkov/Terraform) into CI/CD.
Implement Zero Standing Privileges via JIT/CIEM.
Deploy the SIEM platform and author 30+ MITRE ATT&CK-mapped detection rules spanning cloud telemetry, endpoint, and SaaS, with ongoing tuning.
Own the Incident Response lifecycle end-to-end: develop playbooks, lead cross-functional response for P1/P2 events, and drive MTTD to ≤60 minutes.
Produce and maintain the continuous evidence package required for SOC 2 Type II audit, including log retention, alert records, control review cadences, and written control narratives.
Publish monthly security reports to leadership.
Deliver H1 risk governance reports.
Maintain vulnerability SLA compliance ≥90% with clear remediation tracking.

Benefits

Employee Stock Ownership Plan (ESOP)
Access to best-in-class AI tools, including Cursor, GPT models, Gemini, Claude, and other frontier AI systems.
Choice of top-spec laptops, high-performance workstation setups, and cutting-edge Plaud devices.
Annual company offsites
Team events

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume