Skip to content
Luma AILuma AIPalo Alto, CA

Security Engineer - Tech Lead

Lead design and implementation of security foundations including access governance, RBAC/ABAC, secrets management, and agent permissions for AI platforms. Partner with teams to embed secure practices while maintaining velocity; requires hands-on coding and production security experience.

230k – 360k/yr
HybridSecurity Engineering

About the role

What You’ll Do

  • Design and mature how access to production systems is granted and governed
  • Implement scalable RBAC / ABAC approaches across infrastructure and products
  • Build robust secrets management and credential lifecycle practices
  • Establish strong encryption and key management patterns
  • Define how agents and automated systems receive authority, how it is scoped, and how it is revoked
  • Create auditability and forensic visibility for user and system actions
  • Lead threat modeling across infrastructure, product, and research domains
  • Collaborate with engineering teams to make secure patterns easy and automatic
  • Help drive readiness for enterprise security expectations and reviews
  • Strengthen incident detection and response capabilities
  • Raise the company’s security bar while preserving development velocity

Required

  • Built and operated security foundations in real production environments
  • Excellent at writing code, reviewing infrastructure, and shipping systems
  • Recognize that in AI platforms, software systems can act with real authority
  • Thought deeply about how services, automations, or models are scoped, constrained, and observed
  • Think in terms of systems and trust boundaries
  • High agency—identify problems and drive them to resolution
  • Balance pragmatism with long-term rigor
  • Engineers trust you and enjoy partnering with you

What Sets You Apart

  • Helped organizations evolve toward mature, scalable security architectures
  • Experience implementing least-privilege access and modern identity models
  • Built durable approaches to secrets management and credential lifecycle
  • Understand the nuances of securing multi-tenant AI platforms
  • Strong opinions on how autonomous systems should be permissioned and governed
  • Know how to build detection and response capabilities in high-growth environments
  • Can represent the company in detailed customer and partner security discussions
  • Build platforms and paved roads that engineers love to use

Compensation

Base pay range: $230,000 – $360,000 per year.

Skills

RBACAbacSecrets ManagementEncryptionKey ManagementThreat ModelingIdentity ManagementAccess ControlAudit LoggingIncident Response
Baselayer

Senior Engineer, Agentic Identity

BaselayerSan Francisco, CA

Build and own core components of KYA (Know Your Agent), a cryptographic identity substrate for AI agents using verifiable credentials, JWS, OAuth, and Merkle logs. Requires production experience shipping cryptographically correct identity systems in Python and Go.

230k – 340k/yr
Hybrid5+ YOESecurity Engineering
Notion

Security Engineer, Detection and Response

NotionSan Francisco, CA +1

Build and operate detection systems for cloud, identity, endpoints, and SaaS. Design high-signal detections, improve detection platforms, and participate in incident response.

230k – 260k/yr
Hybrid6+ YOESecurity Engineering
Vanta

Manager, GRC Subject Matter Experts, Product

VantaUnited States

Lead and develop a team of GRC subject matter experts responsible for the lifecycle, quality, and product integration of Vanta's security and compliance frameworks. Own end-to-end framework release processes while partnering with Product and Engineering.

230k – 311k/yr
Remote7+ YOESecurity Engineering
Replit

Security Architecture Lead

ReplitFoster City, CA

Leads security architecture for a multi-tenant SaaS platform, defining vision, mentoring engineers, conducting reviews, and managing risks. Requires 8+ years in security engineering, technical leadership, and cloud-native expertise, especially GCP.

228k – 363k/yr
Hybrid8+ YOESecurity Engineering
Vanta

Senior Security Engineer

VantaUnited States

Senior Security Engineer owning risk identification, threat modeling, vulnerability management, and secure architecture projects. Partners with engineering to build security culture and tools while minimizing operational friction. Requires independent ownership, software development experience, and strong collaboration skills.

227k – 267k/yr
Remote5+ YOESecurity Engineering