Security Engineer

TL;DR

Security Engineer: Defining and scaling the security program with an accent on application security, infrastructure hardening, and detection engineering. Focus on building internal tooling, managing incident response, and driving compliance certifications to protect the company and its customers.

Location: Must be based in the United States

Company

hirify.global is a security company helping developers and security teams manage open source code and automate security workflows.

What you will do

• Improve security posture across cloud infrastructure, operations, and IT.
• Develop and maintain internal security tooling using TypeScript.
• Assess, prioritize, and execute the security roadmap independently.
• Manage incident response, vulnerability reports, and pentest coordination.
• Maintain SOC 2 compliance and drive new certifications like ISO 27001.
• Foster a security-first culture through training and engineering collaboration.

Requirements

• Must be based in the United States
• Proven experience owning security at a growth-stage company or strong software engineering background.
• Proficiency in shipping production TypeScript code.
• Deep knowledge of cloud infrastructure, specifically GCP (VPCs, IAM, secret management).
• Breadth across AppSec, CloudSec, and OpSec domains.
• Self-directed operator capable of executing across multiple fronts without supervision.

Culture & Benefits

• Market competitive salary and meaningful equity program.
• Comprehensive health benefits with 99% coverage for you and your family.
• Flexible time-off policy, including holidays and a winter shutdown.
• Paid parental leave.
• Remote-first environment with quarterly team off-sites.

Hiring process

• Review the provided interview process documentation for details on the evaluation stages.