# Security Engineer

**Company:** [Poetic](https://hotfix.jobs/companies/poetic)
**Location:** San Francisco, CA, New York, NY
**Role:** Security Engineering
**Salary:** $175k – $225k/yr
**Experience:** 4+ years
**Skills:** Threat Modeling, Secure Code Review, Vulnerability Management, SOC 2, PCI, Secrets Management, Multi-Tenant Isolation, Container Orchestration, Kubernetes, Cross-Vpc Networking, Prompt Injection, Data Isolation, Output Validation
**Posted:** 2026-05-05

> Owns end-to-end security posture including product security, infrastructure hardening, internal tooling, corporate security, and compliance programs like SOC 2 and PCI. Requires 4+ years experience with engineering background and hands-on builder mindset in fast-paced environments.

## Job Description

## Responsibilities
- Lead product security: threat modeling, secure code review, vulnerability management, and building security into the development lifecycle.
- Build internal security tooling that makes secure-by-default behavior the path of least resistance for the engineering team.
- Harden the infrastructure that underpins Forge’s runtime – from multi-tenant isolation and secrets management to network boundaries and data handling pipelines.
- Own corporate security programs and ensure internal systems meet enterprise standards.
- Be the internal voice on security, communicating tradeoffs and building trust.
- Work with external IT and Security partners.
- Own day-to-day compliance programs – including SOC 2 and PCI.

## Requirements
- Engineering background as a software engineer who moved into security.
- 4+ years of experience spanning product security and some corporate security or compliance work.
- Hands-on experience with compliance programs (SOC 2, PCI, or similar) in fast-moving environments.
- Builder’s orientation toward security tooling.
- Soft skills to be a trusted security partner.
- Comfort operating as a generalist across product security, corporate security, and security tooling.

## Nice to Have
- Experience securing systems that handle sensitive data in regulated verticals (banking, insurance, fintech, healthcare).
- Familiarity with security challenges of multi-tenant AI systems (prompt injection, data isolation, output validation).
- Experience with infrastructure security in distributed environments (container orchestration, cross-VPC networking, secrets management).
- Familiarity with managing outsourced IT or vendor relationships.
- Experience at an early-stage startup building security programs from scratch.

## Compensation
- Competitive salary, meaningful equity, and benefits.

## Similar roles

- [Product Security Engineer](https://hotfix.jobs/jobs/118ed2cd-c2ac-44cd-9548-e17fa878a9f0) - Doppel - Remote - $175k – $200k/yr
- [Security Compliance Analyst, Privacy](https://hotfix.jobs/jobs/51f80a93-671f-44a2-b221-926e3c2873bb) - LangChain - San Francisco, CA - $175k – $220k/yr
- [Security Engineer, Detection & Response](https://hotfix.jobs/jobs/28f93e48-86dd-4627-a850-c2fe4fa0a170) - Liftoff - Remote - $172k – $240k/yr
- [Endpoint Security Engineer](https://hotfix.jobs/jobs/e9f904e5-b1d3-4a26-b61e-06c5e375ab90) - Crusoe - San Francisco, CA - $170k – $205k/yr
- [Software Engineer, Trust & Safety](https://hotfix.jobs/jobs/7d005694-1f26-43da-8d18-cb58960d2d1e) - Suno - San Francisco, CA - $170k – $240k/yr

**Apply:** https://hotfix.jobs/jobs/2c90cf04-1324-4db0-a564-13962ac80fdd
**Canonical:** https://hotfix.jobs/jobs/2c90cf04-1324-4db0-a564-13962ac80fdd