engineering
Posted 3 days agoSoftware Engineer, Security
at Notion
San Francisco, United StatesRemote
Requirements
- We're building one place where your knowledge, projects, meetings, and AI tools live side by side, so work is faster, clearer, and less fragmented.
- Each and every team of Notinos is working to set the standard for how humans work together in the AI era.
- From building a business’s system of record to making and managing AI agents to automating away the busy work, we care deeply about giving our customers more time for their life’s work.
- In today's world of endless apps and tabs, Notion provides one place for teams to get everything done, seamlessly connecting docs, notes, projects, calendar, and email—with AI built in to find answers and automate work.
- experience to own cross-cutting programs at the intersection of product, infrastructure, and AI.
- You will be hands-on with core security primitives while coordinating across 5–10+ engineering teams to land multi-quarter changes safely—often in customer-facing, enterprise-critical surfaces (identity, authz, domain posture, and AI agent safety).
- In this role, you will be the primary owner for key authentication migrations, AI guardrail infrastructure, and authorization platform direction—work that directly unblocks enterprise security commitments, AI-agent launches, and the next milestone in our authz architecture.
- - Build and operate Notion’s AI safety guardrail stack, including prompt-injection protections (vendor evaluation, deployment model decisions, integration with agents) and an external-source provenance system for AI-generated content across Mail, Calendar, and MCP.
- - By day 90: own one P0 security program end-to-end—RFC, rollout plan, partner alignment, execution, and measurable risk reduction—plus ship one piece of AI leverage (e.g., an internal security agent for triage/verification/continuous checks) that improves correctness and reduces time-to-resolution.
- SKILLS YOU'LL NEED TO BRING: - Demonstrated ability to ship security-critical infrastructure in production systems (identity/authentication, authorization, platform primitives), including migrations that affect customers and require careful rollout and backwards compatibility.
- Experience building or operating AI/LLM security protections (e.g., prompt injection, tool/data provenance, policy enforcement) or a clear ability to ramp quickly and lead in an emerging domain.