Staff Security Engineer

TL;DR

Staff Security Engineer: Lead initiatives to protect large language models, user data, and reputation with an accent on hardening core infrastructure (Kubernetes, cloud compute, and LLM pipelines) and maturing product development workflows. Focus on ensuring systems and user-facing applications remain secure against sophisticated adversaries in a fast-paced environment.

Location: Redwood City, CA

Salary: $180K – $300K

Company

hirify.global empowers people to connect, learn and tell stories through interactive entertainment.

What you will do

• Envision, design, and implement hardened infrastructure, ensuring Kubernetes clusters and cloud compute environments (GCP/AWS) are configured to prevent unauthorized access.
• Harden web and mobile applications (iOS/Android) and the web services that support them.
• Articulate and advocate for a comprehensive secure software development lifecycle (SDLC) and integrate security tooling into CI/CD pipelines to automate secure deployments.
• Ensure new features and systems are designed with security and zero-trust concepts in mind from the start.
• Implement framework-level mitigations for recurrent application vulnerabilities and coordinate security assessments, including penetration tests and bug bounty programs.
• Design workflows and develop tooling that enables developers to securely utilize infrastructure and build artifacts while maintaining high velocity.

Requirements

• 3–5+ years of experience in infrastructure, application, or product security.
• Hands-on experience with Kubernetes, Docker, and cloud environments such as GCP or AWS.
• Proficiency in Linux-based server environments and a high degree of comfort with the Linux CLI.
• A deep understanding of web application attack vectors, secure system design at scale, and various SSH key management approaches.
• The ability to understand and contribute code to complex codebases and familiarity with common CI/CD-based workflows.
• A demonstrated ability to work autonomously to identify and resolve problems independently with a proactive "get things done" mindset.

Nice to have

• Familiarity with service mesh technologies (Istio, Linkerd), Helm for Kubernetes management, or mobile application vulnerabilities.
• Experience managing bug bounty programs or first-hand experience with product feature development.
• Experience with React, TypeScript, Python, Go, or other key technologies in our stack.
• Previous experience in a fast-growing technology startup.

Culture & Benefits

• Value diversity and welcome applicants from all backgrounds.
• Uphold a non-discrimination policy based on race, religion, national origin, gender, sexual orientation, age, veteran status, or disability.
• Unique perspectives are vital to our success.