security
Posted 4 days agoSecurity Engineer, Corporate Security
at Notion
San Francisco, United StatesRemote
You are nearing today's limit. Upgrade for unlimited access.
Requirements
- We're building one place where your knowledge, projects, meetings, and AI tools live side by side, so work is faster, clearer, and less fragmented.
- Each and every team of Notinos is working to set the standard for how humans work together in the AI era.
- From building a business’s system of record to making and managing AI agents to automating away the busy work, we care deeply about giving our customers more time for their life’s work.
- In today's world of endless apps and tabs, Notion provides one place for teams to get everything done, seamlessly connecting docs, notes, projects, calendar, and email—with AI built in to find answers and automate work.
- WHAT YOU'LL ACHIEVE: - Harden our identity and access management stack, including Okta and Google Workspace, with phishing-resistant MFA, strong SSO and SCIM lifecycles, and least-privilege access across SaaS.
- - Secure AI tool usage at the endpoint, including governance of large language models, AI agents, and model context protocol (MCP) integrations; detect and prevent unauthorized or risky AI service access and data exfiltration through AI-enabled tools.
- - Write code (Python, Terraform) to automate access reviews, onboarding and offboarding, configuration drift detection, and audit evidence collection.
- experience in corporate security, enterprise security, or IT security engineering at a cloud-native company. - Have working knowledge of a major identity provider (Okta, Entra, or Google Workspace) and the underlying protocols (SAML, OIDC, OAuth 2.0, SCIM). - Have hands-on
- - Write production-quality scripts and automation in Python or Bash, and have shipped Terraform or other infrastructure-as-code for security configuration.
- - Have working knowledge of at least one major cloud platform (AWS, GCP, or Azure) at the security configuration level.
- Experience at a fast-growing tech or AI company where the security program had to outpace headcount. - A background in IT engineering, SRE, or production engineering that transitioned into security engineering. -
- Experience building internal security tooling or workflows that improved employee or developer experience. - Contributions to the security community through open-source tools, blog posts, or conference talks.
Experience
- SKILLS YOU NEED TO BRING: - Have 5+ years of hands-on