Senior Security Engineer (AI)

TL;DR

Senior Security Engineer (AI): Strengthening the security posture of cloud infrastructure and applications with an accent on proactively identifying and reducing risk, automating security controls, and ensuring hirify.global’s platforms remain secure. Focus on embedding security into day-to-day engineering workflows, securing CI/CD pipelines, and building robust defenses against evolving threats.

Location: Menlo Park, California, United States. This role is only for United States residents.

Salary: $172,000–$228,000 USD

Company

hirify.global is a product company that builds powerful AI advertising solutions and a planet-scale machine learning platform to democratize access to advanced AI for businesses.

What you will do

• Embed automated security testing (SAST/DAST) into CI/CD pipelines to identify vulnerabilities early.
• Implement safeguards across infrastructure-as-code, containers, and cloud environments to minimize risk.
• Automate vulnerability scans and real-time threat responses, participating in security triage.
• Ensure adherence to compliance standards like SOC 2 or GDPR within DevOps processes.
• Automate manual security tasks to accelerate development and reduce delays from late-stage fixes.
• Build robust defenses against evolving threats with incident response playbooks and threat intelligence.

Requirements

• 5+ years of experience as a Security Engineer or in a similar role with a strong foundation in CI/CD, automation, and cloud infrastructure.
• Strong understanding of cloud security principles (AWS, GCP, or Azure).
• Experience securing CI/CD pipelines (e.g., GitHub Actions, GitLab CI, Jenkins, Harness).
• Proficiency in scripting languages (Python, Bash, etc.).
• Hands-on experience with container security (e.g., Docker image scanning, Kubernetes best practices).
• Knowledge of IAM, secrets management, and secure key handling.
• Experience with vulnerability scanning, remediation workflows, and risk prioritization.
• Ability to identify and mitigate misconfigurations in cloud and IaC environments.
• Comfortable collaborating with DevOps, platform, and application teams.

Nice to have

• Familiarity with compliance frameworks (SOC 2, ISO 27001, NIST, etc.).
• Experience with security monitoring and incident response processes.
• Exposure to SIEM or EDR tools (e.g., Splunk, CrowdStrike, Google SecOps).
• Experience with SAST/DAST and dependency scanning tools.
• Familiarity with zero-trust networking concepts.
• Knowledge of threat modeling and risk assessment practices.

Culture & Benefits

• Innovative benefits that empower employees to take care of themselves and their families.
• Values of leading with humility, an uncapped growth mindset, creating real value, and going further together.
• Commitment to diversity, inclusion, and belonging.
• Opportunities for individual and organizational learning, growth, and improvement.
• A collaborative environment that values feedback and accountability.