Staff Security Engineer at Jobgether – United States

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Staff Security Engineer in United States.

This role offers the opportunity to lead and own security across an entire organization, spanning application security, cloud infrastructure, operational security, IT, and compliance. You will define and execute the security roadmap, implement scalable controls, and build systems that make the secure path the default for engineers. The environment is fast-paced, remote-first, and mission-driven, with high autonomy and ownership. You will drive incident response, maintain compliance certifications, and foster a culture of security awareness across the engineering organization. Ideal candidates are self-directed, technically deep, and able to execute across multiple fronts, balancing urgent fixes with strategic improvements. Your work will have a direct impact on protecting company assets, customer trust, and the credibility of the organization’s products.

As a Staff Security Engineer, you will:

• Lead end-to-end security across applications, cloud infrastructure, operational systems, and IT.
• Build and maintain tooling, automation, and coding solutions that embed security into daily engineering workflows.
• Assess risks, prioritize initiatives, and execute a comprehensive security roadmap with both short-term wins and long-term improvements.
• Run incident response processes, triage vulnerabilities, coordinate pentests, and manage external security operations.
• Maintain and expand compliance programs, including SOC 2 and other enterprise certifications (e.g., ISO 27001).
• Foster security awareness and culture, training engineers, running simulations, and building trust across teams.
• Act as a technical leader and trusted advisor for security decisions, balancing risk mitigation with business needs.

Candidates should have:

• Proven experience owning security broadly at a growth-stage company or as a senior security engineer.
• Strong software engineering background, ideally with production experience in TypeScript or similar languages.
• Hands-on expertise across security domains: AppSec, CloudSec (GCP preferred), and operational security.
• Experience designing, implementing, and scaling security controls in cloud infrastructure (IAM, VPCs, secret management, networking).
• Ability to independently prioritize initiatives, execute across multiple fronts, and unblock engineering teams.
• Excellent communication and teaching skills to influence and train engineers on secure practices.
• Familiarity with compliance frameworks, incident response, and risk management.
• Self-directed, proactive, and able to thrive in a high-autonomy, fast-paced environment.

• Market-competitive salary bands with meaningful equity participation.
• Comprehensive health benefits for employees and their families.
• Flexible time-off policies, holidays, and company-wide winter shutdown.
• Paid parental leave.
• Remote-first work environment with quarterly team off-sites.
• Opportunities to shape security culture and processes in a high-growth organization.
• Supportive environment for professional growth and learning.