Lead design and implementation of security foundations including access governance, RBAC/ABAC, secrets management, and agent permissions for AI platforms. Partner with teams to embed secure practices while maintaining velocity; requires hands-on coding and production security experience.
230k – 360k/yr
HybridSecurity Engineering
About the role
What You’ll Do
Design and mature how access to production systems is granted and governed
Implement scalable RBAC / ABAC approaches across infrastructure and products
Build robust secrets management and credential lifecycle practices
Establish strong encryption and key management patterns
Define how agents and automated systems receive authority, how it is scoped, and how it is revoked
Create auditability and forensic visibility for user and system actions
Lead threat modeling across infrastructure, product, and research domains
Collaborate with engineering teams to make secure patterns easy and automatic
Help drive readiness for enterprise security expectations and reviews
Strengthen incident detection and response capabilities
Raise the company’s security bar while preserving development velocity
Required
Built and operated security foundations in real production environments
Excellent at writing code, reviewing infrastructure, and shipping systems
Recognize that in AI platforms, software systems can act with real authority
Thought deeply about how services, automations, or models are scoped, constrained, and observed
Think in terms of systems and trust boundaries
High agency—identify problems and drive them to resolution
Build and own core components of KYA (Know Your Agent), a cryptographic identity substrate for AI agents using verifiable credentials, JWS, OAuth, and Merkle logs. Requires production experience shipping cryptographically correct identity systems in Python and Go.
230k – 340k/yr
Hybrid5+ YOESecurity Engineering
Security Engineer, Detection and Response
NotionSan Francisco, CA +1
Build and operate detection systems for cloud, identity, endpoints, and SaaS. Design high-signal detections, improve detection platforms, and participate in incident response.
230k – 260k/yr
Hybrid6+ YOESecurity Engineering
Manager, GRC Subject Matter Experts, Product
VantaUnited States
Lead and develop a team of GRC subject matter experts responsible for the lifecycle, quality, and product integration of Vanta's security and compliance frameworks. Own end-to-end framework release processes while partnering with Product and Engineering.
230k – 311k/yr
Remote7+ YOESecurity Engineering
Security Architecture Lead
ReplitFoster City, CA
Leads security architecture for a multi-tenant SaaS platform, defining vision, mentoring engineers, conducting reviews, and managing risks. Requires 8+ years in security engineering, technical leadership, and cloud-native expertise, especially GCP.
228k – 363k/yr
Hybrid8+ YOESecurity Engineering
Senior Security Engineer
VantaUnited States
Senior Security Engineer owning risk identification, threat modeling, vulnerability management, and secure architecture projects. Partners with engineering to build security culture and tools while minimizing operational friction. Requires independent ownership, software development experience, and strong collaboration skills.