Lead Figma's security operations program, owning monitoring, incident response, SIEM/SOAR automation, and threat intelligence. Requires 7+ years in security operations or incident response with deep SIEM/SOAR expertise.
185k – 296k
Remote7+ YOESecurity Engineering
About the role
What you'll do at Figma:
Own Figma's security monitoring and incident response program, from detection engineering through post-incident review and continuous improvement
Build and automate security operations workflows, including alert triage, enrichment, investigation, and response actions using SOAR and custom tooling
Develop and maintain incident response run books, escalation procedures, and communication plans for security events of varying severity
Lead incident response preparedness initiatives, including tabletop exercises, red team engagements, and response capability assessments
Improve the effectiveness of our SIEM and SOAR platforms by reducing noise, increasing signal fidelity, and closing detection coverage gaps
Build and operationalize threat intelligence capabilities to identify adversary behaviors, prioritize investments, and strengthen detection and response programs
Partner with Legal, Privacy, and Communications teams to support breach notification and regulatory response obligations during significant security incidents
Drive security operations strategy through vendor management, operational metrics, and cross-functional initiatives spanning IAM, vulnerability management, DLP, and exposure reduction
We'd love to hear from you if you have:
7+ years of experience in security operations, incident response, or a related security engineering function
Hands-on experience building and automating detection and response workflows using scripting, APIs, or security automation platforms
Deep expertise with SIEM and SOAR technologies in a cloud-native or SaaS environment
Demonstrated success building, scaling, or significantly improving a detection and response program
Experience leading complex security incidents and partnering with Legal, Privacy, and business stakeholders during high-impact events
Nice to have:
Operated in a public company environment with SOX, ISO 27001, SOC 2, or FedRAMP requirements
Applied AI risk management frameworks such as NIST AI RMF, OECD AI Principles, or ISO 42001
Utilized AI-powered tools to automate security operations workflows and improve team efficiency
As a Senior Platform Security Engineer, you will secure Block's cloud, compute, and network infrastructure, architecting and evolving cloud security guardrails, building automation for security issues, and owning the cloud security exception lifecycle.
185k – 327k
Hybrid5+ YOESecurity Engineering
Senior Software Engineer, AI Tools and Security
DockerSeattle, WA
Senior Software Engineer leads technical direction of secure AI infrastructure gateway, building high-throughput services and APIs for developer tools. Requires 6+ years backend experience, primarily in Go, with strong security and product focus.
185k – 261k
Remote6+ YOESecurity Engineering
Senior Software Engineer
CoinbaseUnited States
Senior Software Engineer on the Core Cryptography team building and operating Tier-0 cryptographic infrastructure including MPC systems that secure 99% of customer assets. Requires 5+ years building highly available distributed systems and experience with applied cryptography, KMS/HSMs, and systems languages (Golang-heavy).
186k – 219k
Remote5+ YOESecurity Engineering
Senior Cloud Security Engineer - K8s
DatadogNew York, NY
Senior Cloud Security Engineer specializes in securing Kubernetes and service mesh infrastructure in multi-cloud environments. Implements solutions to systemic risks, enables secure development, and influences product direction with hands-on coding in Go/Python/Rust.
187k – 240k
HybridSecurity Engineering
Senior Offensive Security Engineer
ChimeSan Francisco, CA
Leads offensive security program by conducting red team exercises, developing custom exploits, and emulating adversaries to identify weaknesses in web apps, cloud platforms, and Kubernetes infrastructure. Requires 4+ years in offensive security or red teaming with strong cloud attack experience.