Skip to content
ReplitReplitFoster City, CA

Senior Software Engineer, Anti-Abuse & Security

Builds AI-powered anti-abuse detection systems using LLMs to combat phishing, cryptomining, and platform exploitation at scale. Requires 4+ years in security engineering with Python/TypeScript and data analysis experience.

190k – 240k/yr
Hybrid4+ YOESecurity Engineering

About the role

In this role you will…

  • Design and implement LLM guardrails that detect abuse scenarios in AI-generated code and agent interactions
  • Build AI-powered detection systems that use LLMs to identify malicious patterns, classify threats, and automate response decisions
  • Build and operate abuse detection systems that identify phishing, cryptomining, account takeover, and financial fraud across millions of daily user actions
  • Design automated response mechanisms that enforce platform policies without manual intervention
  • Own the full abuse response lifecycle: detection, investigation, enforcement, and handling appeals alongside Support and Legal
  • Analyze attack patterns using BigQuery and Hex, turning investigation findings into new detection rules
  • Maintain and extend internal detection tools (Slurper, Netwatch) that continuously monitor user activity
  • Integrate and tune security scanners (SAST, SCA) in CI pipelines with tight performance SLAs
  • Track abuse trends, measure detection effectiveness, and adapt defenses as attack patterns evolve

Required skills and experience:

  • 4+ years of experience in security engineering, anti-abuse, trust & safety, or fraud detection
  • Strong programming skills in Python and/or TypeScript for building detection systems and automation
  • Experience with SQL and data analysis at scale (BigQuery, Snowflake, or similar)
  • Experience building or fine-tuning ML/LLM-based classifiers for security or abuse detection
  • Familiarity with prompt injection, jailbreaking, and other LLM-specific attack vectors
  • Ability to investigate complex abuse patterns and translate findings into automated defenses
  • Familiarity with common attack patterns: phishing infrastructure, account takeover, credential stuffing, resource abuse
  • Clear communication skills for working across Security, Support, Legal, and Engineering teams

Nice to have:

  • Experience at a platform company dealing with user-generated content or compute abuse (hosting providers, cloud platforms, developer tools)
  • Background in fraud detection, payment abuse, or financial crime
  • Familiarity with device fingerprinting, IP reputation, and email validation services
  • Experience with CI/CD security tooling (SAST, SCA, Dependabot, Snyk)
  • Knowledge of container security, Linux internals, or cloud infrastructure (GCP preferred)
  • Prior work with abuse reporting pipelines, trust & safety tooling, or content moderation systems

Tools + Tech Stack for this role

  • Languages: Python, TypeScript, Go, SQL
  • Data: BigQuery, Hex
  • Detection tools: Slurper, Netwatch, Stytch (device fingerprint); ClearOut (email reputation)
  • CI/CD Security: Dependabot, Snyk, SAST/SCA scanners
  • Infrastructure: GCP, Kubernetes
  • Collaboration: Linear, Slack, Zendesk (for abuse reports)

Skills

PythonTypeScriptSQLBigQueryLLMsKubernetesGCPSASTScaSnyk
Cardless

Security Engineer - Product

CardlessSan Francisco, CA

Lead product security for a fintech credit card infrastructure platform. Own API security, auth strategy, fraud primitives, secure SDLC, and compliance for partner-facing services. Hands-on engineering role reporting to Head of Engineering.

190k – 260k/yr
On-site7+ YOESecurity Engineering
Apollo

Senior Application Security Engineer

ApolloUnited States

Senior individual contributor responsible for strengthening Apollo's secure software development lifecycle, performing application security reviews, threat modeling, vulnerability management, and AI security for product, platform, and AI-powered features.

190k – 273k/yr
Remote5+ YOESecurity Engineering
Skydio

Senior Software Engineer - Security

SkydioSan Mateo, CA

Designs, reviews, and builds security systems for multi-tenant cloud and corporate environments, including architecture guidance, internal tooling like WAF and vuln management, and compliance controls. Requires 5+ years in cloud security, AWS expertise, and strong Python/Go coding skills.

190k – 250k/yr
Hybrid5+ YOESecurity Engineering
Sentry

Senior Security Engineer, Application & Platform Security

SentrySan Francisco, CA

Senior Security Engineer drives security solutions for Sentry's cloud-based application and Kubernetes platform, partnering with engineering on architecture, threat modeling, and implementations. Requires 6+ years experience securing distributed systems, cloud/container environments, and programming in Python/Go/Rust.

190k – 280k/yr
Hybrid6+ YOESecurity Engineering
Dropbox

Senior Infrastructure Security Engineer

DropboxUnited States

Senior security engineer focused on securing AI/agentic infrastructure, LLM/RAG systems, identity for non-human workloads, and cloud/K8s platforms. Requires 9+ years experience and strong scripting skills.

190k – 290k/yr
Remote9+ YOESecurity Engineering