CrawlJobs Logo

Security Engineer

United States, New York City 100000.00 - 170000.00 USD / Year · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

Profound is on a mission to help companies understand and control their AI presence. We are hiring a Security Engineer to own the security posture of our platform, infrastructure, and corporate environment. You will work directly with Engineering and Operations teams to build and maintain the security controls, compliance programs, and threat defenses that protect customer data and enable rapid growth. This role is ideal for someone who sees security as a business accelerator rather than a blocker and who thrives on building practical, scalable security systems from the ground up. As the first dedicated security hire, you will shape how we approach access control, vulnerability management, compliance, and incident response as we scale.

Job Responsibility

  • Design, implement, and maintain role-based and attribute-based access control across production systems, cloud infrastructure, and corporate tools
  • Own identity and access management including SSO, SCIM provisioning, and lifecycle automation across Google Workspace, AWS, and internal systems
  • Conduct regular access reviews and enforce least-privilege principles across environments
  • Build automated workflows for onboarding, offboarding, and role change provisioning
  • Build and run a vulnerability management program across infrastructure, applications, and dependencies
  • Integrate security scanning into CI or CD pipelines including SAST, DAST, SCA, and container image scanning
  • Triage and respond to security findings from automated tools, bug bounty programs, and third-party assessments
  • Own SOC 2 Type II compliance end to end, including defining controls, collecting evidence, managing auditor relationships, and closing gaps
  • Build and maintain security policies, standards, and procedures aligned with operational reality
  • Support customer security reviews, vendor assessments, and due diligence processes
  • Conduct risk assessments and maintain a risk register that informs prioritization decisions
  • Secure AWS infrastructure including VPC architecture, security groups, IAM policies, and network segmentation
  • Implement and maintain logging, monitoring, and alerting for security-relevant events across cloud and corporate systems
  • Oversee physical security controls for the Union Square office including access management, visitor policies, and asset tracking
  • Build and maintain an incident response plan, run tabletop exercises, and lead incident response when necessary
  • Implement detection capabilities using log aggregation, SIEM tooling, and anomaly detection
  • Conduct post-incident reviews and drive systemic improvements

Requirements

  • 3 or more years of experience in security engineering, including experience in high-growth SaaS or infrastructure-heavy environments
  • Deep understanding of access control models, identity management systems, and authentication protocols such as OAuth, SAML, and OIDC
  • Hands-on experience building or maintaining a SOC 2 compliance program
  • Strong knowledge of AWS security services and cloud security architecture including IAM, VPC, CloudTrail, GuardDuty, and Security Hub
  • Experience integrating vulnerability management tooling into CI or CD workflows
  • Familiarity with network security fundamentals including firewalls, DNS, VPNs, segmentation, and traffic analysis
  • Practical scripting skills in Python or Bash for automation of security workflows
  • Clear communicator who can translate security risks into business terms for engineering, leadership, and customer-facing teams
  • Systems thinker who understands root causes, blast radius, and scalable control design
  • Self-directed with strong judgment and comfort operating with significant autonomy
  • Motivated by building the security foundation for a category-defining AI company

Nice to have

  • Experience with infrastructure as code security such as Terraform or CloudFormation
  • Familiarity with data infrastructure security for systems such as ClickHouse or PostgreSQL
  • Background in penetration testing or application security assessments
  • Relevant certifications such as CISSP, CCSP, AWS Security Specialty, or similar
  • Experience with data processing compliance in analytics-heavy environments

What we offer

  • Equity
  • Full range of benefits and perks
  • Visa sponsorship for qualified international candidates

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Security Engineer

8 matching positions

Security Engineer

Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, or related field
  • 3-5+ years of experience with security systems like intrusion detection/prevention and firewalls
  • Knowledge of SIEM tools (e.g., Splunk, Azure Sentinel)
  • Understanding of identity and access management (IAM), particularly Azure AD
  • Demonstrated experience with vulnerability management and penetration testing
  • Security certifications (e.g., CISSP, CEH, CompTIA Security+) preferred
Job Responsibility
Job Responsibility
  • Protect the organization’s digital assets by identifying vulnerabilities, designing security protocols, and optimizing defenses
  • Collaborate with IT teams to monitor, detect, and respond to potential threats
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right
New

Security Engineer

Join us as a Security Engineer at Barclays where you'll spearhead the evolution ...
Location
Location
United Kingdom , Knutsford; Glasgow
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience with the software security landscape: CVEs, CWEs, common software vulnerability types
  • SAST, SCA, and DAST, including the strengths and weaknesses of each
  • At least one programming language (e.g. Java, Go)
  • At least one major cloud provider (e.g. AWS, GCP, Azure)
  • REST API design
  • HTTP Authentication
  • Linux at the terminal, including scripting and automation (e.g. shell, Python)
Job Responsibility
Job Responsibility
  • Build, deploy and maintain DLP services and policies
  • Drive service-level incidents through to remediation
  • Create and maintain high-quality documentation
  • Engage with stakeholders to ensure requirements are prioritised and expectations are set
  • Work with other DLP SME’s to ensure adequate service coverage across DLP tooling
  • Evaluate and implement technical changes and project deliverables
  • Engage product vendors where necessary for incident investigation and product enhancements
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Security Engineer

We are seeking a Security Engineer to help protect and strengthen our enterprise...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of cybersecurity or security engineering experience
  • Experience with vulnerability management platforms and security tools
  • Knowledge of networking, operating systems, and cloud security concepts
  • Experience with Microsoft Defender, Sentinel, CrowdStrike, or similar technologies
  • Understanding of security frameworks such as NIST, CIS, or ISO 27001
Job Responsibility
Job Responsibility
  • Design, implement, and maintain security controls across cloud and on-prem environments
  • Perform vulnerability assessments and coordinate remediation efforts
  • Monitor security alerts and assist with incident response activities
  • Support identity and access management initiatives including MFA and privileged access controls
  • Conduct security reviews of infrastructure and applications
  • Develop security documentation, standards, and procedures
  • Partner with IT teams to implement security best practices and compliance requirements
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Security Engineer

We are seeking an experienced Security Engineer to support enterprise security i...
Location
Location
United States , Charlotte
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience administering Microsoft Purview and Microsoft Defender security solutions
  • Strong knowledge of Conditional Access policies and identity security best practices
  • Hands-on experience with email security platforms such as Proofpoint
  • Understanding of PKI, certificate management, and enterprise security architectures
  • Experience supporting network security technologies, including firewalls and secure web gateways
  • Familiarity with Zscaler is highly preferred
  • Strong troubleshooting, analytical, and problem-solving skills
  • Excellent communication skills with the ability to explain technical concepts to both technical and non-technical stakeholders
  • Ability to work effectively in a collaborative, team-oriented environment
Job Responsibility
Job Responsibility
  • Configure, administer, and maintain Microsoft Purview to support data governance, compliance, and information protection initiatives
  • Design, implement, and manage Conditional Access policies to secure user identities and cloud-based applications
  • Administer Microsoft Defender security solutions, including Defender for Endpoint, Defender for Identity, Defender for Cloud, and Defender for Office 365
  • Support email security platforms, including Proofpoint administration, email filtering, and threat protection
  • Monitor and address risks related to Shadow AI and unauthorized AI tool usage
  • Assist with network security initiatives, including support for Cisco firewall environments as needed
  • Participate in the deployment and administration of Zscaler solutions for secure web access and network protection
  • Manage Public Key Infrastructure (PKI), including certificate issuance, renewal, lifecycle management, and certificate server administration
  • Collaborate with technical and business teams to identify security gaps, recommend improvements, and support compliance and audit requirements
  • Assist with security operations activities, incident response efforts, and continuous improvement initiatives
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training
Read More
Arrow Right

Security Engineer

Location
Location
Australia
Salary
Salary:
Not provided
merivale.com Logo
Merivale
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in security engineering, cyber security or senior information security roles within complex hybrid environments
  • Strong technical knowledge across network, endpoint, cloud, identity, email, vulnerability management and data protection
  • Experience securing Microsoft environments, including Microsoft 365, Defender, Intune, Entra ID, Exchange Online, Teams and SharePoint
  • Experience across Azure and AWS security, including identity, logging, configuration hardening, backup, resilience and access control
  • Practical understanding of ISO 27001 and experience supporting security controls, documentation and audit readiness
  • Strong documentation and communication skills, with the ability to translate technical risk into clear actions and updates
  • A pragmatic, commercially minded approach with the ability to balance risk reduction with operational realities
Job Responsibility
Job Responsibility
  • Implement and improve cyber security controls across infrastructure, cloud, identity, endpoints, email and data
  • Support the uplift of Merivale’s hybrid security environment, including Microsoft 365, Azure/Entra, AWS and on-premises platforms
  • Strengthen identity and access management controls, including MFA, conditional access, privileged access and account lifecycle management
  • Support ISO 27001 alignment through policy development, control improvement, documentation, evidence gathering and audit readiness
  • Coordinate cyber risk assessments, control gap reviews, penetration test remediation and security improvement plans
  • Partner with internal technology teams and external providers to embed security best practice into projects, operations and vendor engagements
  • Support security operations across endpoint, email and collaboration platforms, including vulnerability management, hardening and incident response
  • Deliver security awareness initiatives, including phishing campaigns, staff education and reporting on behavioural risk trends
  • Contribute to business continuity, disaster recovery and third-party security risk reviews
  • Develop clear security reporting and metrics to track risk, control effectiveness and uplift progress
What we offer
What we offer
  • 25% staff discount across 90+ Merivale venues
  • Exclusive monthly perks, staff-only rewards and events
  • Merivale Staff Cellar – access to premium wines at staff pricing
  • Unlimited career growth with endless development opportunities
  • Merivale Academy – online and in-person training, including Leadership & Performance, First Aid, Food Safety and more
  • Professional accreditation support – including Leadership qualifications
  • Employee Assistance Program – confidential wellbeing and mental health support, provided by Sonder
  • Employee Referral Program – earn rewards for bringing great people on board
Read More
Arrow Right

Security Engineer

GitGuardian is a global cybersecurity scale-up. The company is based in Paris, N...
Location
Location
France , Paris
Salary
Salary:
Not provided
gitguardian.com Logo
GitGuardian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • You have at least 2 years of experience as a security, infrastructure, or software engineer
  • You know how to automate your workload using scripting languages (Bash, Python)
  • You are comfortable working in containerised environments (Docker at minimum, Kubernetes is a plus)
  • You understand the principles of Secret Management: never hardcode secrets, environment separation, rotation, least privilege
  • You know the basics of cloud and web application security
  • You are familiar with the administration of SaaS tools (Google Workspace, Okta, or equivalent)
  • You take initiative without being asked, own your work end to end, and look for impact beyond your immediate scope
  • You are open to using AI tools as part of your day-to-day work
  • You are fluent in English
Job Responsibility
Job Responsibility
  • Automate and strengthen Identity and Access Management (IAM) in partnership with the IT team (Terraform, Okta)
  • Improve software supply chain security, as well as patch management and vulnerability management programs
  • Develop security observability capabilities (monitoring, SIEM, alerting)
  • Design and deploy security mechanisms for corporate IT environments (ZTNA, SWG, etc.)
  • Contribute to application security through architecture and code reviews, as well as security assessments of new features
  • Take part in operational security activities: vulnerability and alert handling, incident response, and remediation coordination
  • Contribute to SOC 2 compliance and handle customer security questionnaires
What we offer
What we offer
  • Package that includes BSPCE
  • Lunch voucher (Swile, 9€ at 50%)
  • Sponsored Wellpass (gymlib)
  • Non-charged health insurance for children (Sidecare / Generali)
  • Up to €300 to improve your home office set-up
  • Yearly holiday allowance
  • Referral bonus of 4000€ for any new Guardian we might hire thanks to you
  • Team building: monthly budget dedicated to each employee that you can spend as you wish, with colleagues (latest examples to date: Michelin star restaurant, karaoke, stand-up show, kitesurfing week-end, ...)
  • Remote policy: hybrid (3 days/week at the office in Paris)
  • Opportunities for career development in the long term
  • Fulltime
Read More
Arrow Right

Security Engineer

As a Security Engineer focused on Product Security and AI, you will help secure ...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
dialpad.com Logo
Dialpad
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in application security, product security, security engineering, or software engineering with a strong security focus
  • Strong understanding of modern application security principles across web applications, APIs, authentication, authorization, and cloud-native systems
  • Experience conducting threat modeling, secure design reviews, and technical risk assessments
  • Experience finding and prioritizing vulnerabilities using manual testing, code review, and security tooling
  • Familiarity with secure SDLC practices and experience embedding security into engineering workflows
  • Strong understanding of common classes of product risk such as injection, access control failures, secrets exposure, insecure deserialization, SSRF, and supply chain risk
  • Practical knowledge of securing AI-enabled products, including LLM-related risks, prompt injection, data leakage, insecure tool use, model abuse, and third-party AI integrations
  • Ability to write clear technical guidance and influence teams without creating unnecessary friction
  • Strong communication skills and the ability to work cross-functionally with engineering, product, legal, and compliance stakeholders
  • Comfort balancing security rigor with product velocity and business priorities
Job Responsibility
Job Responsibility
  • Partner with engineering teams to design and review secure architectures for customer-facing products, APIs, integrations, and internal platforms
  • Lead product security reviews, threat modeling sessions, and design assessments for new features and major platform changes
  • Identify, validate, and drive remediation of application security issues across web, backend, cloud, mobile, and API surfaces
  • Build and improve security guardrails in the software development lifecycle, including secure defaults, testing, and automation
  • Define security requirements and review controls for AI and Agentic features, including prompt handling, data exposure risks, abuse cases, and third-party AI services
  • Collaborate with engineering teams on secure coding practices, vulnerability management, and risk-based remediation
  • Improve product and AI security telemetry, detection opportunities, and response readiness in partnership with detection and infrastructure teams
  • Contribute to security standards, reference architectures, and developer-facing guidance that scale across teams
  • Support security reviews for external integrations, partner ecosystems, and features that handle sensitive customer data
  • Help investigate product and application security incidents and translate learnings into durable engineering improvements
What we offer
What we offer
  • Work at the center of the AI transformation in business communications
  • Build and ship agentic AI products that are redefining how companies operate
  • Join a team where AI amplifies every employee's impact
  • Competitive salary
  • Comprehensive benefits
  • Real opportunities for growth
  • Cutting-edge AI tools
  • Robust training program
  • Inclusive office environment
  • Great Place to Work culture
  • Fulltime
Read More
Arrow Right

Security Engineer

You'll protect Gamma's platform, infrastructure, and data as we scale to serve h...
Location
Location
United States , San Francisco
Salary
Salary:
180000.00 - 310000.00 USD / Year
gamma.app Logo
Gamma
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of software engineering experience with at least 2–3 years focused on security engineering or application security
  • Strong hands-on experience securing AWS environments, including IAM, VPC, security groups, CloudTrail, and GuardDuty
  • Proficiency in at least one backend language (Python, TypeScript/Node.js, or Go preferred) with experience building security tools
  • Deep understanding of web application security including OWASP Top 10, common vulnerability classes, and authentication/authorization patterns, with experience implementing security controls in CI/CD pipelines and infrastructure-as-code (Terraform, CloudFormation)
  • Clear communicator who works well embedded with product engineering teams
  • Background in penetration testing, offensive security, and SIEM/log analysis
Job Responsibility
Job Responsibility
  • Design and implement security controls across Gamma's AWS infrastructure and application layer
  • Build security tooling and automation to detect, prevent, and respond to threats at scale
  • Conduct security reviews of architecture designs, code, and infrastructure changes
  • Lead vulnerability management, coordinate bug bounty responses, and drive remediation priorities
  • Develop and maintain security monitoring, alerting, and incident response capabilities
  • Partner with engineering teams on secure coding practices and threat modeling
  • Deploy AI-assisted vulnerability scanning across our codebase and infrastructure—scanning our own systems with frontier models before attackers do
  • Build automated triage workflows that use AI to deduplicate findings, estimate exposure, and draft remediation tickets
  • Drive adoption of memory-safe languages and secure-by-design practices for new code, informed by current CISA and NCSC guidance
What we offer
What we offer
  • Equity
  • flexibility to work from home when focus matters most
  • Fulltime
Read More
Arrow Right