Skip to content
UpstartUpstartUnited States

Senior Security Engineering Manager, Enterprise Security

Lead and mature security engineering programs across enterprise security, security operations, and detection engineering. Manage a team of security professionals while building proactive controls, improving detection/response, and driving cross-functional risk reduction initiatives.

191k – 264k
Remote8+ YOESecurity Engineering

About the role

How you’ll make an impact

  • Lead the strategy, roadmap, and execution for security engineering programs across enterprise security, security operations, and detection security engineering.
  • Manage, coach, and develop a team of security professionals, ensuring the team has clear priorities, measurable goals, effective operating rhythms, and opportunities for career growth.
  • Build and mature proactive and preventative security controls across corporate systems, cloud environments, identity platforms, endpoints, SaaS applications, and security operations workflows.
  • Improve Upstart’s ability to detect, investigate, and respond to threats by strengthening detection coverage, alert quality, logging strategy, response playbooks, automation, and operational processes.
  • Drive cross-functional security initiatives across Engineering, IT, Compliance, Legal, Risk, and business teams, aligning security priorities with company objectives, risk tolerance, and operational needs.
  • Establish and report on meaningful security engineering and operations metrics, including program health, control effectiveness, detection and response performance, remediation progress, and risk reduction outcomes.
  • Evaluate and improve security tooling, processes, and controls to reduce systemic risk, increase operational efficiency, and ensure the team is focused on the highest-value security work.
  • Raise the maturity of Upstart’s security programs by identifying recurring issues, addressing root causes, and developing durable solutions.

What we’re looking for

Minimum requirements

  • 8+ years of experience in information security, security engineering, enterprise security, security operations, detection and response, incident response, vulnerability management, cloud security, or related security domains.
  • 3+ years of experience managing security professionals or leading security engineering programs across multiple teams or stakeholder groups.
  • Experience owning roadmaps, priorities, metrics, and execution for security programs with cross-functional dependencies.
  • Experience building or operating security capabilities in cloud-based and enterprise environments, including working knowledge of common security tooling, logging, monitoring, detection, identity, endpoint, and response practices.
  • Experience leading security incidents or operational security programs, including investigation coordination, stakeholder communications, remediation tracking, and post-incident improvement.
  • Experience partnering with Engineering, IT, Compliance, Legal, Risk, or business teams to deliver measurable security outcomes.

Preferred qualifications

  • Experience leading security programs across multiple domains such as enterprise security, security operations, detection engineering, cloud security, identity and access management, endpoint security, vulnerability management, or incident response.
  • Demonstrated experience building or improving security programs that emphasize proactive and preventative controls, automation, and early risk reduction over reactive incident response.
  • Knowledge of AWS, Kubernetes, CI/CD security, endpoint security, identity and access management, vulnerability management, SIEM/SOAR, logging pipelines, and modern detection engineering practices.
  • Ability to communicate security risk, tradeoffs, and recommendations clearly to technical, non-technical, and senior leadership audiences.
  • Experience improving detection and response maturity through logging strategy, detection coverage, alert tuning, automation, playbooks, tabletop exercises, postmortems, and measurable process improvements.
  • Experience improving enterprise security programs across SaaS applications, identity providers, endpoint controls, corporate infrastructure, and employee security workflows.
  • Experience operating in a regulated environment, financial technology company, or organization with high security, privacy, or compliance requirements.
  • Security certifications such as CISSP, CISM, GIAC, AWS Security Specialty, or similar credentials.

Skills

AWSKubernetesCi/Cd SecurityEndpoint SecurityIdentity And Access ManagementVulnerability ManagementSIEMSoarLogging PipelinesDetection Engineering
Upstart

Senior Security Engineering Manager, Product Security

UpstartUnited States

Lead a team of security engineers scaling secure-by-design practices across application, infrastructure, offensive, and product security. Partner with engineering and risk leaders to reduce systemic risk and improve security posture of customer-facing products and cloud-native services.

191k – 264k
Remote8+ YOESecurity Engineering
Reddit

Senior Security Engineer, AI Security

RedditUnited States

Senior Security Engineer responsible for threat modeling and securing Reddit's AI-powered products, LLMs, and agentic workflows. Build reusable security primitives, guardrails, scanners, and platform controls while partnering with AI product teams. Requires 5+ years in application/product security plus familiarity with LLM/agent risks.

191k – 267k
Remote5+ YOESecurity Engineering
Dropbox

Senior Infrastructure Security Engineer

DropboxUnited States

Senior security engineer focused on securing AI/agentic infrastructure, LLM/RAG systems, identity for non-human workloads, and cloud/K8s platforms. Requires 9+ years experience and strong scripting skills.

190k – 290k
Remote9+ YOESecurity Engineering
Cardless

Security Engineer - Product

CardlessSan Francisco, CA

Lead product security for a fintech credit card infrastructure platform. Own API security, auth strategy, fraud primitives, secure SDLC, and compliance for partner-facing services. Hands-on engineering role reporting to Head of Engineering.

190k – 260k
On-site7+ YOESecurity Engineering
Apollo

Senior Application Security Engineer

ApolloUnited States

Senior individual contributor responsible for strengthening Apollo's secure software development lifecycle, performing application security reviews, threat modeling, vulnerability management, and AI security for product, platform, and AI-powered features.

190k – 273k
Remote5+ YOESecurity Engineering