11 days ago
South San Francisco, CA, USAStaff+
Base Salary
$230k - $275k/yr
Responsibilities
- Own security outcomes for critical parts of Zipline’s application and cloud ecosystem.
- Partner with engineering teams on secure architecture, threat modeling, and design reviews.
- Build and scale a pragmatic secure software development lifecycle.
- Improve cloud security posture end-to-end.
- Drive vulnerability management that effectively closes risk.
- Help build and exercise incident response playbooks and operational discipline.
- Support data classification and access control models.
- Support external penetration tests and implement durable improvements.
- Contribute to security compliance efforts like SOC 2 and ISO 27001.
- Secure AI-assisted engineering workflows by defining safe patterns and implementing guardrails.
Requirements
- 8+ years of experience in security controls for large-scale production systems.
- Strong security engineering skills with a proven ability to reduce risk.
- Hands-on coding ability in Python, Go, or similar languages.
- Experience securing microservice architectures and modern cloud stacks.
- Ability to operate as a technical leader without authority.
- A skeptical mindset that questions failure modes and potential abuses.
- Familiarity with security risks in LLM-enabled systems.