# Security Engineer

**Company:** [Blee](https://hotfix.jobs/companies/blee)
**Location:** San Francisco, CA, New York, NY
**Role:** Security Engineering
**Salary:** $160k – $210k/yr
**Experience:** 4+ years
**Skills:** SOC 2, ISO 27001, AWS, GCP, Azure, Terraform, Kubernetes, CI/CD, Secrets Management, Vulnerability Management, Threat Modeling, Audit Logging, Access Control
**Posted:** 2026-04-13

> Builds and owns end-to-end security program including SOC 2 compliance, cloud infrastructure hardening, and scalable security tooling for a fast-growing AI compliance startup. Requires 4+ years experience, hands-on cloud security, and hybrid presence in SF or NYC.

## Job Description

## What You'll Do
- Own and drive compliance certifications – SOC 2 Type II, ISO 27001, and related frameworks (GDPR, CCPA, HIPAA, PCI-DSS)
- Design and operate scalable, secure infrastructure – For real-time systems and AI batch pipelines
- Build security practices and tooling that scale – Not just compliance checkboxes, but engineering-first security that grows with the company
- Harden cloud infrastructure – Access control, secrets management, audit logging, and vulnerability management
- Improve CI/CD pipelines and developer experience – When not on core security work, accelerate developer workflows and occasionally contribute to product features

## Who You Are
**Security-obsessed** – you think in threat models and attack surfaces by default
**A builder who thrives in ambiguity** – you've stood up security programs, not just maintained them
Comfortable owning ambiguous problems end-to-end without a dedicated security team around you
Equally at home writing security policies and shipping infrastructure improvements
Proactive and self-directed; you identify risks before they become incidents
Excited to be an early security hire and shape the function from scratch

## Requirements
- 4+ years of experience in security engineering or infrastructure security
- Have personally taken at least one company through SOC 2 Type II – you know the audit process, the evidence collection, and the gotchas
- Hands-on with cloud security (AWS, GCP, or Azure) and modern infrastructure tooling (Terraform, Kubernetes, etc.)
- Based in SF or NYC & willing to come into the office 3 days a week

## Benefits
- Competitive salary and equity package
- Fully paid medical, dental, and vision insurance
- Free access to OneMedical
- Short and long-term disability insurance
- Company-paid life insurance
- Company-sponsored 401k
- Unlimited PTO (with mandatory 15 days off)
- Financial support for work-adjacent learning opportunities

## Similar roles

- [Security Engineer](https://hotfix.jobs/jobs/be1ae539-4e2e-462f-aedd-c2ac34023a86) - Skydio - San Mateo, CA - $160k – $210k/yr
- [Security Platform Engineer](https://hotfix.jobs/jobs/534da07b-38bd-4a83-be3d-33ff3a4d7c51) - Lumin Digital - Remote - $160k – $180k/yr
- [Software Engineer - Secret, Cryptographic and Identity Infrastructure](https://hotfix.jobs/jobs/a918f997-7c56-44bb-9b30-9a92afad2937) - Snowflake - Bellevue, WA - $160k – $230k/yr
- [Software Engineer - Trust Center](https://hotfix.jobs/jobs/eca646e8-2ac5-42be-8887-68e227b5b842) - Snowflake - Bellevue, WA - $160k – $230k/yr
- [Security Engineer](https://hotfix.jobs/jobs/3e8573ef-e06e-4e0e-907b-299b0e307a11) - Juicebox - San Francisco, CA - $160k – $250k/yr

**Apply:** https://hotfix.jobs/jobs/bdfb3236-e476-4fde-afc2-5db1f165cb8d
**Canonical:** https://hotfix.jobs/jobs/bdfb3236-e476-4fde-afc2-5db1f165cb8d