# Security Engineer

**Company:** [Roboflow](https://hotfix.jobs/companies/roboflow)
**Location:** Remote
**Role:** Security Engineering
**Salary:** $165k – $200k/yr
**Experience:** 6+ years
**Skills:** Kubernetes, GKE, GCP, Terraform, CI/CD, Threat Modeling, Secure Code Review, IAM, Bug Bounty, Pen Testing, Incident Response
**Posted:** 2026-02-19

> Senior Security Engineer owns security across infrastructure (GKE, GCP) and application stack, builds tooling/automation for secure-by-default development, leads threat modeling, red teaming, bug bounty, and incident response in a fast-paced startup. Requires 6+ years security engineering experience.

## Job Description

## What You’ll Do

- **Own the Stack**: Secure everything from our Kubernetes clusters on the cloud to our SaaS integrations and developer workflows.
- **Usher in the Future**: Articulate and execute on a vision for what security should be in the age of LLMs giving both us and attackers increasing leverage.
- **Engineer for Security**: Build internal tooling and CI/CD automations that catch vulnerabilities before they ever hit production.
- **Architect & Model**: Lead threat modeling sessions and secure code reviews, ensuring we design \"secure-by-default\" APIs and deployments.
- **Harden the Perimeter**: Take a first-principles approach to hardening authentication and access control across all internal and external surfaces.
- **Red Team**: Proactively probe for vulnerabilities and lead the remediation.
- **Lead the Bug Bounty**: Primary owner for standing up, launching, and managing our Bug Bounty Program, triaging reports, and driving remediation.
- **Respond & Remediate**: Investigate vulnerabilities, lead incident response, orchestrate pen testing, and run blameless postmortems that result in systemic change.
- **Evangelize**: Translate complex security risks into actionable engineering tasks for peers.

## Who You Are

- **Startup Native**: Thrive in fast-paced 100–300 person environments, prioritize when urgent, comfortable \"failing forward\".
- **Security-First Engineer**: 6+ years in software/infrastructure engineering with deep security focus; write code to plug holes.
- **Cloud Savvy**: Deeply familiar with Google Cloud (GCP), Kubernetes, containerized environments.
- **Systems Thinker**: Analyze systems for weaknesses in business logic, IAM, codebase.
- **Action-Oriented**: Track record responding to incidents and leading remediation without being the \"no\" person.

## Technical Stack

- **Cloud**: Google Cloud Platform (GCP)
- **Orchestration**: Kubernetes (GKE)
- **Infrastructure**: Terraform / Infrastructure-as-Code
- **Pipeline**: Modern CI/CD workflows and SaaS integrations

## Compensation

Target salary: $165,000-$200,000. Generous perks including $4000/yr travel stipend, $350/mo productivity stipend, $350/mo AI tools stipend, $150/mo team lunch stipend, $500 one-time home office stipend, up to 100% health insurance coverage, equity.

## Similar roles

- [Senior Security Engineer, Infrastructure & Network Security](https://hotfix.jobs/jobs/e5adea70-2b49-4e0f-b3ed-805a64f22011) - Metropolis - New York, NY - $165k – $215k/yr
- [Senior Security Engineer, Product & Application Security](https://hotfix.jobs/jobs/071710bf-d299-4174-b809-71abdce26363) - Metropolis - Seattle, WA - $165k – $215k/yr
- [Sr. Security Engineer, Corporate Information Security](https://hotfix.jobs/jobs/9a9306b6-f0a5-4069-91b7-75229c3b670f) - Betterment - New York, NY - $165k – $185k/yr
- [Senior Application Security Engineer](https://hotfix.jobs/jobs/2c71d547-b042-48a2-8e4f-e3abc07b15f2) - Tatari - Los Angeles, CA - $165k – $190k/yr
- [Senior Security Engineer](https://hotfix.jobs/jobs/e2ba79d7-a44d-4a8c-9d19-e67b254e1c09) - Beacon AI - San Carlos, CA - $165k – $240k/yr

**Apply:** https://hotfix.jobs/jobs/d954a566-b09e-49ce-986a-a77de1a0b61f
**Canonical:** https://hotfix.jobs/jobs/d954a566-b09e-49ce-986a-a77de1a0b61f