CrawlJobs Logo
Gamma Logo Gamma · IT - Software Development

Security Engineer

United States, San Francisco 180000.00 - 310000.00 USD / Year · Job Posted May 29, 2026
Apply Position
Job Link Share

Job Description

You'll protect Gamma's platform, infrastructure, and data as we scale to serve hundreds of millions of users. That means building security tooling and automation, partnering with engineering teams to embed security into everything we ship, and helping shape how the company thinks about security as a practice. You'll work across the organization to identify and mitigate risks without slowing down development velocity. This role combines hands-on security engineering with strategic influence. You'll write code to solve security problems, conduct architecture reviews, lead vulnerability management, and drive initiatives for compliance frameworks like SOC 2 and ISO 27001. You'll work closely with engineering, product, and compliance to make security foundational rather than reactive. Our team has a strong in-office culture and works in person 4–5 days per week in San Francisco. We love working together to stay creative and connected, with flexibility to work from home when focus matters most.

Job Responsibility

  • Design and implement security controls across Gamma's AWS infrastructure and application layer
  • Build security tooling and automation to detect, prevent, and respond to threats at scale
  • Conduct security reviews of architecture designs, code, and infrastructure changes
  • Lead vulnerability management, coordinate bug bounty responses, and drive remediation priorities
  • Develop and maintain security monitoring, alerting, and incident response capabilities
  • Partner with engineering teams on secure coding practices and threat modeling
  • Deploy AI-assisted vulnerability scanning across our codebase and infrastructure—scanning our own systems with frontier models before attackers do
  • Build automated triage workflows that use AI to deduplicate findings, estimate exposure, and draft remediation tickets
  • Drive adoption of memory-safe languages and secure-by-design practices for new code, informed by current CISA and NCSC guidance

Requirements

  • 5+ years of software engineering experience with at least 2–3 years focused on security engineering or application security
  • Strong hands-on experience securing AWS environments, including IAM, VPC, security groups, CloudTrail, and GuardDuty
  • Proficiency in at least one backend language (Python, TypeScript/Node.js, or Go preferred) with experience building security tools
  • Deep understanding of web application security including OWASP Top 10, common vulnerability classes, and authentication/authorization patterns, with experience implementing security controls in CI/CD pipelines and infrastructure-as-code (Terraform, CloudFormation)
  • Clear communicator who works well embedded with product engineering teams
  • Background in penetration testing, offensive security, and SIEM/log analysis

Nice to have

  • Experience at a high-growth SaaS startup navigating rapid scaling and compliance
  • Familiarity with AI/ML security tooling, including using frontier models for code scanning, automated pentesting, or threat detection
  • Experience building zero trust architecture or identity-aware access controls (FIDO2, short-lived tokens, hardware-bound credentials)
  • Knowledge of supply chain security frameworks like SLSA, OpenSSF Scorecard, or SBOM tooling

What we offer

  • Equity
  • flexibility to work from home when focus matters most
Gamma - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Security Engineer

8 matching positions

Security Engineer

Harrington Starr are currently hiring for a Security Engineer to work for a majo...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
harringtonstarr.com Logo
Harrington Starr
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years’ experience in information security engineering roles
  • Strong analytical skills with the ability to solve technical problems in fast-paced environments
  • Proficient in Windows and Linux, with knowledge of core security technologies (e.g., firewalls, endpoint protection, logging, vulnerability scanning, network security)
  • Scripting experience in PowerShell and/or Python
  • Understanding of identity management, authentication, and modern access control principles
  • Experience with security tools such as EDR, SIEM, SOAR, and CASB
  • Knowledge of securing on-prem (bare metal/container) and IaaS-based workloads
  • Familiarity with identity lifecycle management, RBAC, PAM, and privileged access controls
  • Understanding of vulnerability management tools (e.g., Nessus, Tenable, RunZero) and secure configuration standards
Job Responsibility
Job Responsibility
  • Oversee daily security operations, proactively identifying threats, investigating alerts, and responding to incidents across cloud and on-prem environments
  • Strengthen Microsoft 365 and Entra ID security through Conditional Access, MFA, PIM, and Microsoft Defender tools, ensuring robust tenant configurations
  • Design and implement automation using Python and PowerShell to minimise manual processes and enhance detection and response
  • Leverage APIs (Graph API, REST, etc.) to integrate systems and optimise security workflows
  • Identify vulnerabilities, assess system configurations, and deliver practical, risk-based remediation strategies
  • Play an active role in incident response, from investigation through to containment and recovery
  • Partner with engineering, technology, and business stakeholders to drive a strong security-first culture
  • Fulltime
Read More
Arrow Right

Security Engineer

About Staffbase We inspire people to achieve great things together. Our mission...
Location
Location
Germany , Chemnitz
Salary
Salary:
Not provided
staffbase.com Logo
Staffbase
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Programming knowledge, preferably in one of: TypeScript, JavaScript, Kotlin, Java, Go, or Python
  • Practical knowledge of Unix basics and Kubernetes infrastructure
  • Practical knowledge of security topics (e.g. penetration testing, secure software development, vulnerability management, SAST, DAST) and curiosity to deepen this knowledge
  • Experience with infrastructure-as-code, preferably via Terraform and Kustomize
  • A structured and organized way of working with attention to detail
  • Strong communication skills in English (German is a plus)
Job Responsibility
Job Responsibility
  • Take ownership of tasks that improve our security automation and strengthen our product security pipelines
  • Proactively explore the use of AI for vulnerability detection and remediation
  • Continuously learn and share knowledge about how vulnerabilities apply in our specific product context
  • Support the team by enhancing our services with software engineering solutions
  • Collaborate closely with stakeholders across the product department and gain broad exposure to how a growing SaaS company operates
  • Maintain our outbound e-mail security by regularly reviewing the related metrics
  • Maintain our Web Application Firewall ruleset
  • Maintain our central HTML sanitization service written in Typescript
What we offer
What we offer
  • Competitive Compensation - we offer attractive salary packages including LTIP (unit-based Long Term Incentive Plan)
  • Flexibility - we offer flexible working time models and the option of hybrid work, and support this with a yearly flex work allowance of €1560
  • Recharge - with 31 vacation days annually (incl. one floating holiday), plus pro rata fully paid Fridays off during August
  • Support - we’re offering a company pension scheme
  • Volunteers Day - you’ll get one day off per year for supporting a social project
  • Fulltime
Read More
Arrow Right

Security Engineer

We inspire people to achieve great things together. Our mission is to help organ...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
staffbase.com Logo
Staffbase
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Programming knowledge, preferably in one of: TypeScript, JavaScript, Kotlin, Java, Go, or Python
  • Practical knowledge of Unix basics and Kubernetes infrastructure
  • Practical knowledge of security topics (e.g. penetration testing, secure software development, vulnerability management, SAST, DAST) and curiosity to deepen this knowledge
  • Experience with infrastructure-as-code, preferably via Terraform and Kustomize
  • A structured and organized way of working with attention to detail
  • Strong communication skills in English (German is a plus)
Job Responsibility
Job Responsibility
  • Take ownership of tasks that improve our security automation and strengthen our product security pipelines
  • Proactively explore the use of AI for vulnerability detection and remediation
  • Continuously learn and share knowledge about how vulnerabilities apply in our specific product context
  • Support the team by enhancing our services with software engineering solutions
  • Collaborate closely with stakeholders across the product department and gain broad exposure to how a growing SaaS company operates
  • Maintain our outbound e-mail security by regularly reviewing the related metrics
  • Maintain our Web Application Firewall ruleset
  • Maintain our central HTML sanitization service written in Typescript
What we offer
What we offer
  • Competitive Compensation - we offer attractive salary packages including LTIP (unit-based Long Term Incentive Plan)
  • Flexibility - we offer flexible working time models and the option of hybrid work, and support this with a yearly flex work allowance of €1560
  • Recharge - with 31 vacation days annually (incl. one floating holiday), plus pro rata fully paid Fridays off during August
  • Support - we’re offering a company pension scheme
  • Volunteers Day - you’ll get one day off per year for supporting a social project
  • Fulltime
Read More
Arrow Right

Security Engineer

Looking for a Security Engineer with strong endpoint management experience to su...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong experience with SCCM / MECM
  • Knowledge of Windows security and endpoint protection
  • Experience with patching, vulnerability management, and system hardening
  • Familiarity with security frameworks (NIST, CIS, etc.)
Job Responsibility
Job Responsibility
  • Manage and secure endpoints using SCCM / Microsoft Endpoint Configuration Manager
  • Deploy patches, updates, and software across the environment
  • Monitor and respond to security vulnerabilities and threats
  • Implement endpoint security policies and hardening standards
  • Support audits, compliance, and remediation efforts
  • Work with IT teams on incident response and security improvements
What we offer
What we offer
  • Medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right
New

Security Engineer

Aquent Studios is partnering with a leading organization that is at the forefron...
Location
Location
United States , Johnston
Salary
Salary:
75.50 - 80.65 USD / Hour
aquent.com Logo
Aquent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of full-stack software development experience, including Python-based backend services
  • Experience with Linux distributions
  • Experience in the application of cryptographic security controls for embedded systems
  • Bachelor’s degree in Computer Science, Computer Engineering, or Software Engineering or equivalent experience
Job Responsibility
Job Responsibility
  • Define and review security architectures for embedded systems, influencing the design of new features (embedded, cloud, and mobile) to ensure that organizational security needs are met
  • Design key management and access control mechanisms tailored for resource-constrained embedded environments
  • Design and develop innovative security solutions to support the advancement of autonomous capabilities
  • Fulltime
Read More
Arrow Right
New

Security Engineer

Our client is seeking a Security Engineer to help protect enterprise systems, ne...
Location
Location
United States , Atlanta
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of information security experience
  • Experience with SIEM, EDR, vulnerability management, and security monitoring tools
  • Knowledge of network security, identity management, and cloud security concepts
  • Experience supporting AWS, Azure, or GCP environments
  • Familiarity with security frameworks such as NIST, CIS, or ISO 27001
  • Relevant certifications such as Security+, CISSP, CEH, or equivalent are preferred
Job Responsibility
Job Responsibility
  • Design, implement, and maintain security controls across infrastructure and cloud environments
  • Monitor security tools and investigate alerts, incidents, and vulnerabilities
  • Perform security assessments, risk analyses, and remediation planning
  • Support compliance and audit initiatives
  • Collaborate with infrastructure, networking, and application teams to improve security posture
  • Develop security policies, standards, and best practices
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • 401(k) plan
  • free online training
Read More
Arrow Right

Security Engineer

We are looking for a Security Engineer to join a team in Jacksonville, Florida i...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in a technical field such as Information Technology, Computer Science, Engineering, or equivalent experience
  • Several years of experience in IT, with exposure to systems, infrastructure, or security-related functions
  • General understanding of industry frameworks, standards, and best practices, with the ability to apply them in a professional environment
  • Hands-on experience supporting technical environments, including systems, networks, cloud platforms, and access management
  • Familiarity with enterprise tools used for monitoring, protection, and system management
  • Experience working with cloud platforms and supporting modern infrastructure environments
  • Ability to assess issues, identify risks, and recommend practical solutions in a team-oriented setting
  • Strong communication, problem-solving, and organizational skills
  • Relevant certifications, technical training, or scripting experience are a plus
Job Responsibility
Job Responsibility
  • Design, implement, and support technical solutions aligned with business objectives and organizational standards
  • Develop and maintain policies, standards, and procedures to ensure consistent and effective operations
  • Build and support systems and platforms used for monitoring, prevention, and response across applications, infrastructure, and data environments
  • Manage day-to-day operations, including system access, monitoring, and issue resolution
  • Participate in on-call support as needed to address critical incidents or production issues
  • Research emerging technologies and trends, and assist in evaluating and implementing new solutions
  • Identify areas for improvement and contribute to ongoing enhancements, including system optimization and issue remediation
  • Collaborate with internal teams and stakeholders to support project delivery and ensure alignment with requirements
  • Perform routine maintenance, updates, and administration to ensure systems remain stable, secure, and up to date
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Security Engineer

Location
Location
Salary
Salary:
Not provided
cyclad.pl Logo
Cyclad Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in cybersecurity, application security, or infrastructure security
  • Strong understanding of security principles, attack vectors, and mitigation techniques
  • Hands-on experience with cloud platforms (AWS, Azure, or GCP)
  • Experience with CI/CD pipelines and DevSecOps practices
  • Familiarity with security tools such as SAST, DAST, vulnerability scanners, and container security tools
  • Knowledge of IAM concepts, encryption, and network security fundamentals
  • Experience with scripting or automation (Python, Bash, or similar)
  • Understanding of secure software development lifecycle (SSDLC)
  • Experience with logging, monitoring, and SIEM tools
  • Strong analytical and problem-solving skills
Job Responsibility
Job Responsibility
  • Design, implement, and maintain security controls across applications, infrastructure, and cloud environments
  • Perform vulnerability management, including identification, triage, and remediation coordination
  • Integrate security into CI/CD pipelines (DevSecOps practices)
  • Conduct security assessments, threat modeling, and risk analysis for systems and services
  • Monitor security events and support incident detection and response activities
  • Implement and maintain security scanning tools (SAST, DAST, dependency/container scanning)
  • Support identity and access management (IAM) policies and enforcement
  • Collaborate with engineering teams to remediate security issues and improve secure coding practices
  • Ensure compliance with internal security standards and external regulations
  • Contribute to security automation and tooling improvements
What we offer
What we offer
  • Private medical care with dental care (covering 70% of costs)
  • Family package option possible
  • Multisport card (also for an accompanying person)
  • Life insurance
  • Work with talented engineers on large-scale, technically challenging projects
  • Fulltime
Read More
Arrow Right