Sydicom reads this form and drafts every answer from your CV. You review and submit it yourself. Free to start.

Sydicom insightsSydicom overview

A remote Security role at Nectar. 5+ years in security engineering, application/product security, or a related role at a software company

Level

Senior

Work

Remote

Focus

Security

Pay

$200k-$400k/yr

How Sydicom helps: we read this listing’s requirements and tune your CV and cover letter to the keywords its ATS (Ashby) is scanning for, wherever you are, then help you apply.

Related roles

Original listing text, shown exactly as published by the company.

The Role

We're looking for a Security Engineer to own security across our enterprise SaaS platform -- from the design of our deployed applications to the compliance programs that earn the trust of large brands. We handle sensitive social and customer data at scale, and our customers expect enterprise-grade security and rigorous proof of it.

As the first Security engineer, you'll have outsized ownership. You'll secure the products we ship, lead the compliance initiatives that unlock enterprise deals, and build the security foundations the rest of the engineering team relies on as we grow.

What You'll Be Doing

Own the security of our deployed applications, including threat modeling, secure design reviews, and finding and fixing vulnerabilities across our services and AI infrastructure
Lead new compliance initiatives (SOC 2, and frameworks like ISO 27001, GDPR, and CCPA as we scale), establishing the controls, policies, and evidence to back them
Own the security side of the sales cycle: complete customer security questionnaires, support enterprise security reviews, and act as our expert in vendor assessments
Build and run our vulnerability management, secrets management, identity and access, and security monitoring practices
Manage third-party risk and our penetration-testing program

What We're Looking For

5+ years in security engineering, application/product security, or a related role at a software company
Strong application and cloud security fundamentals; able to reason about the security of real production systems and AI workloads, not just policy
Hands-on experience leading or operating a compliance program (SOC 2, ISO 27001, or similar) end to end
Solid programming skills to build security tooling and automation, and to work credibly alongside engineers
Comfortable operating in fast-moving startup environments with high ownership and autonomy

Bonus Points

Experience establishing a security and compliance function at an early-stage or rapidly scaling SaaS company
Familiarity with AWS, Pulumi, Postgres, ClickHouse, Turbopuffer, or Temporal

About Nectar

Nectar

YC S23

Security

12 open roles on Sydicom

Nectar is the modern AI energy management platform. We automate utility data analysis to optimize energy costs, manage buildings, and report energy efficiency metrics for energy and sustainability teams. Our utility data API uses in-house AI agents to deliver the most accurate granular usage and cost data on the market.

Source: Y Combinator

Senior Security Engineer

The Role

What You'll Be Doing

What We're Looking For

Bonus Points

About Nectar

About Nectar