Skip to content
Factory AIFactory AISan Francisco, CA

Security Engineer

Security Engineer designs and implements security measures for cloud infrastructure and applications, conducts code reviews, automated testing, and incident response. Requires 5+ years experience with TypeScript, Python, Kubernetes, AWS, and IaC security.

Salary not listed
On-site5+ YOESecurity Engineering

About the role

Responsibilities

  • Design, implement, and manage security measures for cloud infrastructure, applications, and data, focusing on preventative controls and rapid response.
  • Collaborate with engineering teams to integrate security into SDLC, including secure coding, automated testing, and architecture design.
  • Conduct security code reviews to identify and remediate vulnerabilities.
  • Develop and implement automated security testing procedures.
  • Respond to security incidents and participate in incident response.
  • Document security processes and best practices.
  • Lead security awareness and training programs.

Qualifications

  • 5+ years experience as Security Engineer focused on product security, securing cloud environments (AWS, Azure, GCP), IaC security.
  • Strong coding skills in TypeScript and Python.
  • Expertise in application security, network security, security operations, incident response.
  • Experience with container security (Docker, Kubernetes).
  • Familiarity with AWS services (VPC, EC2, Lambda, RDS, S3).
  • Knowledge of CI/CD tools (GitHub Actions, Jenkins).
  • Knowledge of compliance frameworks (ISO 27001, SOC 2, GDPR).
  • Proficiency with security tools: firewalls, IDS/IPS, vulnerability scanners, WAF, SIEM, encryption.

Skills

TypeScriptPythonKubernetesAWSTerraformDockerCI/CDGitHub ActionsJenkinsSIEM
Forus

Security Program Manager

ForusNew York, NY

Own end-to-end compliance programs (SOC 2, HIPAA, HITRUST), build customer trust function, implement automation, and partner with engineering on controls for a healthcare AI platform handling protected health information.

Salary not listed
On-site4+ YOESecurity Engineering
Anthropic

Safeguards Enforcement Analyst, Account Takeover & Credential Abuse

AnthropicSan Francisco, CA +2

Safeguards Enforcement Analyst focused on account takeover and credential abuse. Investigate compromise incidents, design remediation workflows, partner with engineering on detection, enforce AI usage policies, and develop scalable enforcement programs for platform safety.

245k – 285k/yr
HybridSecurity Engineering
Zocdoc

Application Security Engineer

ZocdocUnited States

Application Security Engineer partnering with engineering teams to embed security into the SDLC, triage SAST/SCA findings, provide remediation guidance on OWASP issues, maintain security docs/playbooks, support governance/audits, and integrate GenAI tools while building AI governance guardrails.

100k – 140k/yr
RemoteSecurity Engineering
Cloudflare

Detection & Mitigation Engineer

CloudflareUnited States

Security Detections Engineer identifying attacker TTPs, building real-time detections, and mitigating threats/abuse across Cloudflare's global platform using data analysis, SQL, scripting, and threat intelligence. Requires strong analytical and communication skills.

Salary not listed
HybridSecurity Engineering
Mintlify

Security & Compliance Operations Manager

MintlifySan Francisco, CA

Own and run Mintlify's end-to-end security and compliance programs (SOC 2, ISO 27001/42001, GDPR, Microsoft SSPA) as the first dedicated GRC Program Manager. Administer Drata, manage audits/vendors/evidence, handle customer-facing compliance, and coordinate with engineering.

120k – 180k/yr
On-site3+ YOESecurity Engineering