Responsibilities
- Develop and maintain authentication and authorization systems capable of handling large-scale operations.
- Enhance core services and data protections, focusing on access control, storage solutions, and APIs.
- Identify and address account takeover and other malicious activities to ensure customer safety.
- Create security platforms and tools to enable product and AI teams to operate efficiently and securely.
- Oversee and improve high-availability security and identity services relied upon by other teams.
- Address complex AI/LLM security challenges, from threat modeling to practical solutions.
- Lead initiatives to promote excellence in security and software engineering practices.
Requirements
- 7+ years of experience as a backend engineer, developing and managing large-scale server-side services and APIs.
- Extensive experience with authentication and authorization technologies, such as SAML/SSO, RBAC, and ABAC.
- Proven ability to build secure, highly available distributed systems and services.
- Hands-on experience with modern security tools and practices (e.g., SAST, DAST, SIEM, SCA).
- Proficiency in one or more programming languages: Ruby, Python, Kotlin, JavaScript/TypeScript.
- Strong collaboration skills and ability to break down complex, cross-cutting security and AI problems into actionable solutions.
Nice to Have
- Experience with AI tools for coding (e.g., Cloud Code, Cursor, GitHub Copilot).
- Experience with authorization platforms/policy engines (e.g., Open Policy Agent, SpiceDB) and technologies like GraphQL, gRPC, Kubernetes, Terraform, Traefik, Flask, Okta.
Compensation
Not specified
Work Arrangement
Hybrid
Team
The Product & AI Security Engineering team operates at the intersection of product, platform, and AI. The team focuses on high-impact projects that reduce risk, strengthen foundations, and accelerate delivery for other teams. They develop security tools and services, collaborate with partner teams, and establish best practices for authentication, authorization, and secure data handling, especially as AI and LLMs are adopted.
Other
- Physical office spaces are available in multiple locations. Employees based in these locations will work from the office on designated days approximately 2-3 days per week (or more depending on the role).
- A secure, reliable, and consistent internet connection is required for remote work, including non-office days for hybrid employees.
- The company is committed to equal opportunity employment and does not discriminate based on various protected characteristics. The company considers qualified applicants with criminal histories and provides reasonable accommodations for individuals with disabilities.
- The company takes the security and protection of personal information seriously. Review the Fraudulent Activity Disclaimer for more details.
- Personal information collected during the application process will be subject to the company's Applicant Privacy Notice.
Not specified
