Senior Security Software Engineer

Hover•San Francisco, CA

2h•$194,000 - $239,000•Hybrid

About The Position

As a Security Software Engineer, you will build foundational security systems that protect our users and infrastructure. You will design and implement robust, scalable security services, acting as a primary partner for engineering teams to build secure-by-design solutions into our platform. You will take ownership of core functions such as authentication (login, MFA), identity management (SCIM, RBAC), secret management, and more. Your work will be crucial in maintaining and hardening compliance (e.g., SOC 2) and protecting sensitive data across our organization. The Infrastructure and Security team at Hover ensures the scalability, reliability, and security of our platform, empowering engineers to build and deploy applications faster, safer, and with greater stability. This collaborative team is composed of engineers with expertise in cloud infrastructure, security, automation, and CI/CD best practices. We handle everything from Kubernetes environments and cloud architecture to securing user authentication and automating vulnerability detection. Our mission is to make the best path the easiest path by providing robust automation, consistent patterns, and secure-by-design principles. We partner with engineering teams to tackle challenges like managing rich geospatial and machine learning workloads, hardening cloud infrastructure, and implementing security features across our stack (Ruby, TypeScript, Docker, GCP, Terraform, and more). Team members are supported with professional growth opportunities, a strong focus on learning, and a culture that values collaboration, innovation, and the continuous improvement of.

Requirements

5+ years of hands-on software engineering experience.
3+ years of hands-on security-focused engineering experience.
Proficient in at least one programming language (Ruby, TypeScript, Python, C++, etc.) and willingness to ramp up in others.
Experience building scalable security systems (e.g., secret management, service authorization, data encryption) in a production environment.
Experience with threat modeling, security design reviews, or security incident response.
Experience integrating security directly into the software development lifecycle (SDLC).
Meticulous attention to detail; able to be the final checkpoint on security decisions.
Excellent communication and collaboration skills for cross-team interactions.
Ability to mentor and train engineers on secure development processes.
A proactive approach to continuous learning and staying current with emerging security trends.

Responsibilities

Design and build core security services (e.g., permissions management, secrets orchestration, secure MLOps).
Develop secure-by-default libraries and frameworks that empower other engineering teams to write secure code.
Enhance our CI/CD pipeline with automated self-serve security controls (e.g. SAST, supply chain security controls).
Conduct secure code and architecture reviews, enforce secure-by-design principles, and lead threat modeling.
Build and maintain resilient cloud infrastructure.
Implement network isolation, automated vulnerability detection, and defense-in-depth strategies to harden our production environment.
Run security incident response, document risks, and support audits.
Advise teams on security best practices, identify and solve for developer security friction points, and bring security awareness to engineering.

Benefits

Competitive salary and meaningful equity in a fast-growing company
Comprehensive medical, dental, and vision coverage for you and dependents
Unlimited and flexible vacation policy
Generous paid parental and new child bonding leave
A day set aside each month to allow employees to recharge
Recurring fitness classes, meditation/ mindfulness tools, virtual therapy, and family planning assistance
Help cover the cost of management training, conferences, workshops, or certifications

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume