Skip to content
RoboflowRoboflowNew York, NY

Security Engineer

Senior Security Engineer owns security across infrastructure (GKE, GCP) and application stack, builds tooling/automation for secure-by-default development, leads threat modeling, red teaming, bug bounty, and incident response in a fast-paced startup. Requires 6+ years security engineering experience.

165k – 200k/yr
Remote6+ YOESecurity Engineering

About the role

What You’ll Do

  • Own the Stack: Secure everything from our Kubernetes clusters on the cloud to our SaaS integrations and developer workflows.
  • Usher in the Future: Articulate and execute on a vision for what security should be in the age of LLMs giving both us and attackers increasing leverage.
  • Engineer for Security: Build internal tooling and CI/CD automations that catch vulnerabilities before they ever hit production.
  • Architect & Model: Lead threat modeling sessions and secure code reviews, ensuring we design "secure-by-default" APIs and deployments.
  • Harden the Perimeter: Take a first-principles approach to hardening authentication and access control across all internal and external surfaces.
  • Red Team: Proactively probe for vulnerabilities and lead the remediation.
  • Lead the Bug Bounty: Primary owner for standing up, launching, and managing our Bug Bounty Program, triaging reports, and driving remediation.
  • Respond & Remediate: Investigate vulnerabilities, lead incident response, orchestrate pen testing, and run blameless postmortems that result in systemic change.
  • Evangelize: Translate complex security risks into actionable engineering tasks for peers.

Who You Are

  • Startup Native: Thrive in fast-paced 100–300 person environments, prioritize when urgent, comfortable "failing forward".
  • Security-First Engineer: 6+ years in software/infrastructure engineering with deep security focus; write code to plug holes.
  • Cloud Savvy: Deeply familiar with Google Cloud (GCP), Kubernetes, containerized environments.
  • Systems Thinker: Analyze systems for weaknesses in business logic, IAM, codebase.
  • Action-Oriented: Track record responding to incidents and leading remediation without being the "no" person.

Technical Stack

  • Cloud: Google Cloud Platform (GCP)
  • Orchestration: Kubernetes (GKE)
  • Infrastructure: Terraform / Infrastructure-as-Code
  • Pipeline: Modern CI/CD workflows and SaaS integrations

Compensation

Target salary: $165,000-$200,000. Generous perks including $4000/yr travel stipend, $350/mo productivity stipend, $350/mo AI tools stipend, $150/mo team lunch stipend, $500 one-time home office stipend, up to 100% health insurance coverage, equity.

Skills

KubernetesGKEGCPTerraformCI/CDThreat ModelingSecure Code ReviewIAMBug BountyPen TestingIncident Response
Metropolis

Senior Security Engineer, Infrastructure & Network Security

MetropolisNew York, NY

Lead AWS and network security engineering for enterprise infrastructure, including firewalls, zero-trust, IAM, and cloud automation. Requires strong AWS, networking, and security engineering experience.

165k – 215k/yr
On-site5+ YOESecurity Engineering
Metropolis

Senior Security Engineer, Product & Application Security

MetropolisSeattle, WA

Senior Security Engineer leading application security reviews, DevSecOps initiatives, and secure architecture for cloud-native systems. Requires strong product security experience and scripting background.

165k – 215k/yr
On-site5+ YOESecurity Engineering
Betterment

Sr. Security Engineer, Corporate Information Security

BettermentNew York, NY

Senior security engineer leading workforce IAM, endpoint security, and AI tool governance for a fintech company. Hands-on IC role focused on Okta, SaaS security, and Zero Trust architecture in a hybrid NYC environment.

165k – 185k/yr
Hybrid6+ YOESecurity Engineering
Tatari

Senior Application Security Engineer

TatariLos Angeles, CA +2

First dedicated AppSec Engineer defining security architecture for a SaaS TV advertising platform. Build security tooling, own SAST/DAST/SCA, conduct threat modeling, and partner with engineering teams on secure development practices.

165k – 190k/yr
Hybrid5+ YOESecurity Engineering
Beacon AI

Senior Security Engineer

Beacon AISan Carlos, CA

As a Senior Security Engineer, you will design and implement secure architectures, protect sensitive data, and mitigate security risks for Beacon AI. You will lead incident response efforts and integrate security best practices into the SDLC.

165k – 240k/yr
Hybrid5+ YOESecurity Engineering