Software Engineer, Product Security (AI)

TL;DR

Software Engineer (Product Security): Building and optimizing secure foundations for hirify.global's platform and users with an accent on secure software design and architecture. Focus on scaling the engineering organization, balancing vulnerability detection with developer velocity, and guiding security investments across product, engineering, and compliance stakeholders.

Location: Hybrid (San Francisco, California, New York, New York). Requires all team members to work from our offices on Mondays and Thursdays.

Salary: $240,000 - $290,000 per year (for San Francisco or New York City roles)

Company

hirify.global helps users build beautiful tools for life’s work, providing one place for teams to get everything done with AI built-in.

What you will do

• Scale the engineering organization and mentor engineers on best practices in secure software design and architecture.
• Enable hirify.global’s business growth by building a secure foundation that earns user trust.
• Design, implement, and automate a software development life cycle that balances vulnerability detection with developer velocity.
• Act as a liaison for multiple stakeholders across product, engineering, go to market, and security ops / compliance, to guide and prioritize security investments.
• Participate in security assessments and advise on internal and customer security and privacy needs (e.g., SOC2, ISO 27001, GDPR, penetration testing).

Requirements

• Experience building systems to secure and monitor cloud architectures (e.g., AWS).
• Experience in threat modeling, designing a secure development life cycle (design reviews, CI/CD integrations, bug bounty program), and application security consulting.
• Proficiency in secure library and framework development, vulnerability discovery and response, implementing core security features (like authentication), and offensive thinking (pentesting, red teaming).
• Experience debugging and continuously improving production systems with minimal user disruption.
• Pragmatic and business-oriented approach, prioritizing projects based on business impact and threat risks.
• Empathetic communication skills to explain nuanced ideas and collaborate cross-functionally.

Nice to have

• Experience maintaining continuous controls and participating in audits for customer-facing certifications (like SOC2).
• Experience leading engineering teams with a security focus.
• Managed, maintained, and monitored systems using technologies like Amazon Web Services, Datadog, Postgres, Redis, Memcached, and Elasticsearch.

Culture & Benefits

• In-person collaboration is essential, with mandatory office work on Mondays and Thursdays (Anchor Days).
• Committed to providing highly competitive cash compensation, equity, and benefits.
• Hires talented and passionate people from a variety of backgrounds to represent the diversity of its customers.
• Committed to being an equal opportunity employer, providing reasonable accommodations for individuals with disabilities.