security
Posted Mar 24Staff Security Engineer
at Socket
United StatesRemote
Responsibilities
- Own, cloud infrastructure hardening, operational security, and IT security.
- Write code and build tooling that makes the secure path the default path for engineers.
- Figure out what matters most, balance quick wins with longer-term improvements, and execute across many fronts in parallel.
- Build and run a 24/7 security incident response process.
- Own the security inbox, triage inbound vulnerability reports, manage pentests, and coordinate fixes.
- Maintain our existing SOC 2 compliance.
- Drive new certifications (ISO 27001, etc.) as needed for enterprise customers. - Raise security awareness and culture across the org.
- Train engineers to write more secure code.
- Build trust with engineering teams so that security feels like an enabler, not a blocker.
Requirements
- What You'll Bring - You've owned security broadly at a growth-stage company, or you're a strong software engineer who's moved into security and is ready to own the function end-to-end. - You can ship production TypeScript.
- - You're fluent in cloud infrastructure (we use GCP): VPCs, IAM, secret management, networking.
- Feel a strong sense of ownership: We wear many hats and feel a strong sense of overall ownership of the company and we're non-territorial regarding our nominal domains. 6.
Benefits
- We offer: - Market competitive salary bands - Meaningful equity program - Comprehensive health
- benefits for you and your family (99% coverage) - Flexible time-off, holidays, and winter shutdown to rest & recharge - Paid parental leave - Remote-first, with quarterly team off-sites At Socket, we 1.
Contact
- Our customers — from Anthropic to xAI, and Figma to Vercel — love Socket (just check out their tweets https://socket.dev/love to see for yourself!) Founded by Feross Aboukhadijeh https://www.linkedin.com/in/feross/, a long-time open source maintainer with software downloaded over a billion times a month, Socket has raised $ https://socket.dev/blog/series-b125M in funding https://socket.dev/blog/series-c from top angels, operators, and security leaders.