Owns end-to-end security including application, cloud infrastructure, operational security, incident response, and compliance at a growth-stage security company. Ships production TypeScript, builds tooling, and drives security roadmap while fostering engineering culture.
Salary not listed
RemoteSecurity Engineering
About the role
Responsibilities
Improve Socket's security posture: own application security, cloud infrastructure hardening, operational security, and IT security.
Write code and build tooling to make the secure path the default for engineers.
Roll out identity and access controls, close gaps across the stack, and continuously reduce risk.
Assess, prioritize, and drive the security roadmap; balance quick wins with longer-term improvements.
Run incident response and external security operations: build 24/7 process, triage vulnerability reports, manage pentests, coordinate fixes.
Maintain SOC 2 compliance and drive new certifications (e.g., ISO 27001).
Raise security awareness: train engineers, run phishing simulations, build trust with teams.
Requirements
Owned security broadly at a growth-stage company or strong software engineer moving into full security ownership.
Ship production TypeScript.
Breadth across security domains (AppSec, CloudSec, OpSec) with fast learning.
Fluent in cloud infrastructure (GCP): VPCs, IAM, secret management, networking.
Self-directed operator who executes across fronts without direction.
Nice-to-Haves
Communication and teaching skills to foster security culture.
Senior Staff Security Engineer owning the roadmap for an AI-driven vulnerability scanning, triage, and automated remediation platform. Requires 8+ years in security engineering with deep cloud/container expertise, offensive security experience, and proficiency in Python/Go/Rust.
200k – 290k/yr
Remote8+ YOESecurity Engineering
Staff Software Engineer
PlaidNew York, NY +2
Staff Software Engineer building and leading development of Plaid's core security infrastructure including IAM, key management, encryption, and access control systems. Requires experience with scalable secure systems architecture plus technical leadership.
222k – 328k/yr
Hybrid7+ YOESecurity Engineering
Staff+ Application Security Engineer
AnthropicSan Francisco, CA +2
Staff Application Security Engineer focused on M&A due diligence and secure integration of acquired codebases and systems at Anthropic. Lead security assessments, risk readouts, post-close remediation and automation using Claude, while contributing to core AppSec work. Requires 7+ years AppSec experience, rapid codebase assessment skills, and coding ability.
320k – 485k/yr
Hybrid7+ YOESecurity Engineering
Staff Security Risk & Compliance Program Manager
ConfluentTexas
Own and evolve Confluent's internal access management program with focus on machine/workload identity, S2S auth, non-human identities, and AI agent controls. Set the Access Management Standard, own metrics/reporting/OKRs, and drive governance, risk reduction, and cross-functional execution for least-privilege outcomes.
222k – 261k/yr
Remote8+ YOESecurity Engineering
Senior/Staff Infrastructure Security Engineer
AbridgeSan Francisco, CA +1
Senior/Staff Infrastructure Security Engineer building self-service security platforms, automating DevSecOps workflows, and designing high-scale security data pipelines and IaC guardrails in a greenfield cloud-native environment at an AI healthcare company. Requires 8+ years software engineering experience with deep cloud and IaC expertise.