Skip to content
ReplitReplitFoster City, CA

Staff Software Engineer, Anti-Abuse & Security

Staff engineer building AI-powered anti-abuse detection systems, LLM guardrails, and automated responses to phishing, cryptomining, and platform exploitation. Requires 8+ years in security engineering with Python/TypeScript and ML/LLM experience.

190k – 240k/yr
Hybrid8+ YOESecurity Engineering

About the role

Responsibilities

  • Design and implement LLM guardrails that detect abuse scenarios in AI-generated code and agent interactions
  • Build AI-powered detection systems that use LLMs to identify malicious patterns, classify threats, and automate response decisions
  • Build and operate abuse detection systems that identify phishing, cryptomining, account takeover, and financial fraud across millions of daily user actions
  • Design automated response mechanisms that enforce platform policies without manual intervention
  • Own the full abuse response lifecycle: detection, investigation, enforcement, and handling appeals alongside Support and Legal
  • Analyze attack patterns using BigQuery and Hex, turning investigation findings into new detection rules
  • Maintain and extend internal detection tools (Slurper, Netwatch) that continuously monitor user activity
  • Integrate and tune security scanners (SAST, SCA) in CI pipelines with tight performance SLAs
  • Track abuse trends, measure detection effectiveness, and adapt defenses as attack patterns evolve

Required Skills and Experience

  • 8+ years of experience in security engineering, anti-abuse, trust & safety, or fraud detection
  • Strong programming skills in Python and/or TypeScript for building detection systems and automation
  • Experience with SQL and data analysis at scale (BigQuery, Snowflake, or similar)
  • Experience building or fine-tuning ML/LLM-based classifiers for security or abuse detection
  • Familiarity with prompt injection, jailbreaking, and other LLM-specific attack vectors
  • Ability to investigate complex abuse patterns and translate findings into automated defenses
  • Familiarity with common attack patterns: phishing infrastructure, account takeover, credential stuffing, resource abuse
  • Clear communication skills for working across Security, Support, Legal, and Engineering teams

Nice to Have

  • Experience at a platform company dealing with user-generated content or compute abuse (hosting providers, cloud platforms, developer tools)
  • Background in fraud detection, payment abuse, or financial crime
  • Familiarity with device fingerprinting, IP reputation, and email validation services
  • Experience with CI/CD security tooling (SAST, SCA, Dependabot, Snyk)
  • Knowledge of container security, Linux internals, or cloud infrastructure (GCP preferred)
  • Prior work with abuse reporting pipelines, trust & safety tooling, or content moderation systems

Tools + Tech Stack

  • Languages: Python, TypeScript, Go, SQL
  • Data: BigQuery, Hex
  • Detection tools: Slurper, Netwatch, Stytch (device fingerprint), ClearOut (email reputation)
  • CI/CD Security: Dependabot, Snyk, SAST/SCA scanners
  • Infrastructure: GCP, Kubernetes

Skills

PythonTypeScriptSQLBigQueryLLMsKubernetesGCPSnykDependabotStytch
Zoox

Senior/Staff Network Security Engineer

ZooxFoster City, CA

As a Senior/Staff Network Security Engineer, you will design, implement, and operate security controls across Zoox's enterprise, OT networks, and cloud infrastructure. This role involves securing hybrid/multi-cloud architectures, managing firewall platforms, and driving automation with IaC.

190k – 228k/yr
Hybrid8+ YOESecurity Engineering
Databricks

Staff Software Engineer - IAM

DatabricksMountain View, CA

Leads development of IAM and security systems at scale to protect customer data on Databricks platform. Requires 7+ years in data security, 10+ years in distributed systems, and MS/PhD.

191k – 275k/yr
On-site7+ YOESecurity Engineering
Databricks

Staff Software Engineer - Security Infrastructure

DatabricksMountain View, CA

Leads security infrastructure engineering to secure Databricks platform, plugging gaps in services like cryptography, Kubernetes security, and access control. Requires 7+ years in data security, 10+ in distributed systems, and MS/PhD.

191k – 254k/yr
On-site7+ YOESecurity Engineering
Rippling

Staff Product Security Engineer

RipplingSeattle, WA +2

Hands-on staff security engineer building guardrails, tooling, and automations to secure Rippling's web applications. Requires 10+ years in product security, fluency in Python/React/DRF, and experience embedding security into SDLC and CI/CD.

189k – 315k/yr
Hybrid10+ YOESecurity Engineering
Illumio

Staff Engineer, Cloud Security

IllumioSunnyvale, CA

Develops containerized microservices in Go for Illumio's cloud security platform, processing real-time cloud telemetry on Kubernetes to deliver security insights and recommendations. Requires 8+ years experience with public clouds (AWS/Azure/GCP) and mentors junior engineers.

194k – 233k/yr
On-site8+ YOESecurity Engineering