Original listing text, shown exactly as published by the company.
About the role
We are looking for a Security Engineer to help build and strengthen security foundations from the ground up in a fast-moving startup environment. This is a strong opportunity for someone early in their career who brings a generalist security mindset and is excited to work across product security, infrastructure security, detection and response, and enterprise security. The role is designed for someone who wants meaningful ownership, broad exposure, and the chance to help shape how security operates as the company matures. You will partner closely with teams across the organization, help close foundational gaps, and contribute to building a more robust, continuous security program over time. This role is based in San Francisco and follows a 4-day in-office working model.
What you'll be doing
- Help build the company’s foundational security program across multiple domains, with a focus on practical improvements that strengthen overall security maturity.
- Work on cloud and infrastructure security initiatives, helping identify gaps, improve configurations, and support a secure environment in a primarily cloud-based setup.
- Contribute to detection and response efforts by helping establish monitoring, incident response, and related operational security processes as internal capabilities are developed.
- Support product security work, including reviewing code or infrastructure patterns, identifying security issues, and partnering with engineering on remediation.
- Collaborate with internal stakeholders across the organization to implement security projects, improve coverage, and drive progress on high-priority initiatives.
- Assist with security efforts related to SOC 2 and help translate immediate audit-driven needs into longer-term, sustainable security practices.
- Evaluate and help implement security tooling, with the flexibility to explore a range of approaches, including modern platforms, open-source options, and AI-enabled tools where appropriate.
- Take ownership of hands-on technical work, scripting, and automation tasks that help the team move quickly and reduce manual effort.
What we're looking for
- A security generalist profile with exposure to several areas of security rather than a narrow specialization.
- Strong interest in infrastructure and cloud security, with the ability to understand technical environments and identify meaningful security improvements.
- Comfort working in a fast-paced startup environment where priorities can shift and the workload can be intense.
- A high degree of ownership, autonomy, and initiative, with the ability to make progress in environments that are still being built.
- Willingness to learn quickly, stay open-minded, and adapt to new projects or unfamiliar problem spaces as business needs evolve.
- Ability to work cross-functionally and build productive relationships with teams across the company.
- Good judgment when balancing immediate security needs with longer-term program development.
- A practical, hands-on approach to security work, with interest in solving real operational problems rather than working only at a policy level.
What you'll Need
- Seeking 2–4 years of relevant experience.
- Experience in at least some combination of product security, infrastructure security, detection and response, or enterprise security.
- Background in cloud security is important; experience with GCP is preferred, though candidates with strong AWS experience are also encouraged to apply.
- Ability to perform technical security work such as reviewing code, assessing infrastructure for gaps, and supporting security automation through scripting.
- Familiarity with environments that rely on modern cloud and SaaS tooling.
- Experience in a startup or similarly fast-growth environment is highly valuable.
- Must be able to work in San Francisco in a 4-day in-office setting.
