CrawlJobs Logo

Founding Security Engineer

reducto.ai Logo

Reducto

Location Icon

Location:
United States, San Francisco

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

150000.00 - 300000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Reducto helps AI teams ingest real world enterprise data with state of the art accuracy. The vast majority of enterprise data — from financial statements to health records — is locked in unstructured file formats like PDFs and spreadsheets. We train vision models to read those documents the way a human would, and make it possible to build products, train models, and automate processes at scale. We're hiring a Founding Security Engineer to own our security posture and compliance programs as we scale to serve the world's most security-conscious enterprises.

Job Responsibility:

  • Owning and managing SOC2, HIPAA, and other compliance certifications end-to-end, including evidence collection, control implementation, and audit coordination
  • Implementing proactive security monitoring and alerting systems to detect and respond to threats in real-time across our cloud and on-prem deployments
  • Building and maintaining security CI/CD tooling to catch vulnerabilities before they reach production—static analysis, dependency scanning, secrets detection, and more
  • Managing our relationship with platforms like Vanta to streamline compliance workflows and maintain continuous monitoring
  • Responding to customer security questionnaires and conducting security reviews for enterprise deals
  • Establishing and managing our bug bounty program, triaging vulnerabilities, and coordinating remediation with engineering teams
  • Working directly with the founders and customers to shape our security strategy and build trust with enterprise buyers

Requirements:

  • Philosophy: You are your own worst critic. You have a high bar for quality and don't rest until the job is done right—no settling for 90%. We want someone who ships fast, with high agency, and who doesn't just voice problems but actively jumps in to fix them
  • Experience: You have 3+ years of hands-on security engineering experience, ideally in high-growth startups or cloud-native environments. You've been through at least one SOC2 or similar compliance audit
  • Technical Depth: You're comfortable reading and auditing code (Python strongly preferred), understanding infrastructure architecture, and implementing security controls across the stack—from application layer to cloud infrastructure
  • Tools: Build your own tools as needed—whether it's a quick script to audit secrets across repos or an internal dashboard to track security metrics
  • Approach: A practical, risk-based approach to security. You understand when to say no and when to help engineering ship securely. You can balance security rigor with business velocity and aren't dogmatic about perfect security at the expense of progress

Nice to have:

  • Have prior experience founding a company or building security programs from scratch at early-stage startups
  • Have deep experience with on-prem deployments and air-gapped environments for enterprise customers
  • Have contributed to security tools, written security content, or spoken at security conferences
  • Are ambitious and driven, and care a lot about doing great work with great people
  • Keep up with the latest developments in application security, cloud security, and AI/ML security
What we offer:
  • Unlimited PTO
  • Lunch: Receive a free lunch to eat with your teammates daily at the office
  • Reimbursed Transportation: Provide us with your receipts and we'll take care of the costs
  • Insurance: Generous health insurance covering medical, dental, and vision
  • Health and Wellness Budget: We provide up to $150/mo reimbursement for health and wellness spending, such as gym memberships, fitness classes, or similar
  • Parental Leave: Work with us to build a leave schedule that works for you and your family
  • Offers Equity

Additional Information:

Job Posted:
December 11, 2025

Employment Type:
Fulltime
Work Type:
On-site work
Icon
View All Jobs In This Company
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Founding Security Engineer

New

Senior Frontend Engineer (Application Security)

At Easygo, our DevSecOps team is at the heart of our engineering, security and o...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
easygo.io Logo
Easygo Gaming
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's/Master's degree in Computer Science or equivalent practical experience
  • 7+ years of hands-on experience in software engineering, with a primary focus on security engineering
  • Strong understanding of code architecture and design principles
  • Excellent problem-solving skills and the ability to thrive in a fast-paced, dynamic environment
  • Strong communication skills for effective collaboration with teams and stakeholders
  • Analytical mindset to address complex technical challenges and devise innovative solutions
  • Positive attitude and eagerness to learn new technologies to grow as a security engineer
Job Responsibility
Job Responsibility
  • Lead by example, and drive the adoption of secure software development lifecycle (SSDLC) practices. This includes performing threat modelling, providing secure coding guidance to development teams, and embedding security requirements early in the design phase
  • Own, improve, execute and manage various security tests, including SAST, DAST, and SCA, to identify vulnerabilities. Analyse test results and prioritise findings. Fix what you find, and work with developers to ensure timely remediation
  • Implement and maintain automated security controls within the CI/CD pipeline. This involves integrating security tools to enable continuous security testing and monitoring, making security an integral part of the DevSecOps process
  • Deploy and configure Web Application Firewalls (WAFs) and Runtime Application Self-Protection (RASP) solutions to protect from real-time attacks. Respond to urgent application security incidents as needed
  • Take ownership of the platform vulnerability management program. This involves tracking, prioritising, and remediation of security flaws found in applications, ensuring all vulnerabilities are addressed and verified
  • Actively engage in hands-on coding, testing, debugging, and troubleshooting to ensure code quality, scalability, and maintainability
  • Write efficient, scalable, and maintainable code, adhering to coding standards and best practices
  • Innovate within the team by pushing for improvements and driving constructive changes to enhance team performance and efficiency
  • Analyse complex problems and provide effective solutions, contributing to team goals and initiatives
  • Lead and independently complete medium-sized projects or initiatives from start to finish
What we offer
What we offer
  • Access to over 9,000 courses across our Learning and Development Platform
  • EAP access for you and your family
  • Be rewarded with lucrative annual bonuses
  • Give back with a paid volunteer day
  • Fuel your day with daily breakfast and open pantries brimming with unlimited snacks and refreshments, all on the house
  • Break up the week with on site remedial massage Wednesdays
  • In house full-time barista’s providing you your daily coffee needs
  • Weekly team lunches and happy hour in the office from 4pm on Fridays
  • Enjoy a bustling office with the option for up to 2 days work from home per week
  • Fun office environment with pool tables, table tennis and all your favourite gaming consoles
  • Fulltime
Read More
Arrow Right

Product Security Engineer

This role involves working primarily from home as a Product Security Engineer fo...
Location
Location
United States
Salary
Salary:
101900.00 - 234500.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in Electrical Engineering, Computer Science, or related technical field
  • Background in software engineering including C/C++, Python and/or Golang
  • Ability to read and understand source code in C is a must
  • Minimum 2 years of experience working with cryptographic modules in a technical capacity
  • Minimum 3 years of experience in software development of cryptographic modules
  • Minimum 3 years of experience with certification schemes, including Common Criteria, FIPS, DoDIN
  • Minimum 4 years of experience in a position handling government certifications or security testing.
Job Responsibility
Job Responsibility
  • Assist in the execution of Common Criteria, FIPS, and DoDIN-APL certifications across all HPE Aruba Networking product lines
  • Operate as a representative of HPE Aruba Networking with various accredited labs during the evaluation process
  • Assist in the generation of documentation (e.g. FIPS security policies, CC security targets), whether creating/editing directly or working with an external author
  • Provide consulting, information, and advice to developers and QA around how certification works
  • Attend regularly scheduled meetings with accredited labs and engineering/QA to ensure project milestones are on track
  • Communicate gaps and deficiencies found by accredited testing labs to the relevant engineering and product teams to ensure remediation
  • Monitor government standards and communicate to management and engineering when changes are made that may impact a release
  • Assist in the development, compliance, and maintenance of FIPS compliant cryptographic module(s).
What we offer
What we offer
  • Health & Wellbeing
  • Comprehensive suite of benefits supporting physical, financial, and emotional wellbeing
  • Personal & Professional Development
  • Programs catered to career growth
  • Unconditional inclusion and flexibility to manage work and personal needs.
  • Fulltime
Read More
Arrow Right
New

Founding Infrastructure Engineer

As the first dedicated Infrastructure Engineer at Reducto, you will influence ev...
Location
Location
United States , San Francisco
Salary
Salary:
150000.00 - 300000.00 USD / Year
reducto.ai Logo
Reducto
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Have 5+ years of hands-on experience in building or supporting production-grade infrastructure and reliability processes for high-throughput systems
  • Are comfortable with Python or similar languages
  • Exceptional at working across cloud platforms, container orchestration (e.g., Kubernetes), networking, and storage technologies
  • Build your own tools on the fly to diagnose, experiment, and address reliability problems
  • Bring a quantitative, hands-on approach to system operations, automation, and continuous improvement
  • Are your own worst critic—have an extremely high bar for quality and always aim for robust solutions rather than quick fixes
Job Responsibility
Job Responsibility
  • Designing, building, and maintaining highly available, scalable infrastructure to support intensive AI/ML workloads and real-time model deployments
  • Implementing robust monitoring, alerting, and observability systems to ensure system health, performance, and uptime across cloud and on-prem environments
  • Debugging, optimizing, and automating infrastructure for fast iteration and rapid deployment cycles, focusing on both reliability and developer velocity
  • Proactively identifying, investigating, and resolving incidents to minimize downtime and maintain world-class service levels for enterprise customers
  • Collaborating closely with engineers, ML specialists, and founders to shape product, infrastructure, and security strategies
What we offer
What we offer
  • Unlimited PTO
  • Free lunch daily at the office
  • Reimbursed Transportation
  • Generous health insurance covering medical, dental, and vision
  • Health and Wellness Budget up to $150/mo reimbursement
  • Parental Leave
  • Fulltime
Read More
Arrow Right
New

Customer Delivery Engineering Technical Leader

For our client – worldwide leader in innovative IT and networking technologies –...
Location
Location
Poland , Warsaw
Salary
Salary:
Not provided
flint-international.com Logo
Flint International
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in a technical field (CS/EE preferred) or equivalent plus 8+ years related experience
  • Superior level knowledge in (1) of the following and strong knowledge in all other areas of: Security, Data Center, IP internetworking, LAN Switching, ATM & Voice technologies, IP Telephony, SAN, CDN, Optical, Wireless, IPCC. WAN protocols (Frame Relay, ISDN). IP Routing protocols (IGRP, OSPF, EIGRP, BGP)
  • Superior level internet-working troubleshooting in a medium / large-scale network environment
  • Network design skills
  • Demonstrated ability to self-manage
  • Strong commitment to quality and customer satisfaction
  • Excellent oral and written communication skills
  • Language: English and Polish
  • Certification: security clearance-mandatory
Job Responsibility
Job Responsibility
  • Leads customer delivery engagements and/or provides escalation support for large scale solutions and complex issues through deep technical expertise
  • Provides leadership capabilities and insight for creation and sharing of intellectual capital, influences the Engineering team to improve products, actively mentors and develops others
  • Thought leader
  • collaborates cross functionally with internal stakeholders to showcase the value of the company’s services and solutions to customers
  • Drives customer technology transitions, influencing solution architectures and services
  • Builds customer simulations to resolve/validate complex problems and compatibility issues
  • Leads creation and dissemination of technical collateral, intellectual capital, documentation and knowledge transfer
  • Provides technical expertise and escalation support in documenting and resolving technical problems found in products and solutions
  • Mentors and develops others
  • Contribute effectively in the areas of Customer Problem Resolution
Read More
Arrow Right
New

Application Security Architect

Focused on the customer, Managed Services' mission is to ensure that clients get...
Location
Location
Portugal , Braga
Salary
Salary:
Not provided
checkmarx.com Logo
Checkmarx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in Software Engineering or equivalent
  • At least 4+ years of combined experience in development, in any programming language, and Application Security (minimum 2 years in AppSec)
  • Previous experience in one or more Application Security practices, such as pentesting, security code review, AST products, research
  • Knowledge on how to conduct a Threat Modeling exercise
  • Knowledge of AppSec industry standards, frameworks and guidelines, such as OWASP Top 10 (Web, Api or Mobile) and Secure SDLC
  • Client handling skills for Security Engagements
  • Good written and verbal communication skills in English
  • Ability to travel (up to 20%)
  • Pro-active and sense of ownership
Job Responsibility
Job Responsibility
  • Review customer’s software architectures with a focus on potential security threats
  • Provide dev teams with explanation and mitigation advice for security vulnerabilities found in the Checkmarx scans
  • Design and coordinate the implementation and maintenance of tailored solutions that will meet customer requests, needs and requirements
  • Collaborate with Product Management, R&D and Support teams in handling customer issues or internal Checkmarx initiatives
  • Occasionally assist in pre-sale activities, like providing product demonstrations
  • Assistance in the implementation of Application Security Programs and processes
  • Providing training for developers and management
  • Travel to customer sites for meetings and technical activities
What we offer
What we offer
  • great work environment
  • professional development
  • challenging careers
  • competitive compensation
  • great work-life balance
  • great benefits and perks throughout the year
  • Fulltime
Read More
Arrow Right
New

Sr. Director, Cybersecurity

We specifically seek a hands-on, technical security leader. You bring experience...
Location
Location
Canada
Salary
Salary:
Not provided
bugcrowd.com Logo
Bugcrowd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven work experience leading Cyber Security (penetration testing, red teaming, GRC, IR, secure development, and security architecture) in a startup and growing with the organization
  • Excellent knowledge of technical security controls, including cloud, web application, infrastructure, IT, and compliance
  • Experience in data governance, data architecture, data flow and system architecture to optimize the same
  • Hands-on experience with penetration testing, red teaming, and security patch bypass testing
  • Ability to work independently and must have strong organizational and communication skills
  • Systems / Software (detailed knowledge of the following stack): Mac OS, Python, JavaScript, Ruby, Golang, Java, Kotlin, Postgres, GSuite, Cisco Umbrella, Netskope, Crowdstrike, GitHub, AWS, Heroku, Cloudflare, DataDog, JAMF, etc
  • Experience related to and assistance with ISO27001, ISO27018, NIST 800-53v4, and SOC2 audits is compulsory
  • Degree in Computer Science, cyber security, MIS or equivalent experience desirable but not required
  • Experience in cyber security with demonstrations of responsibility and technical excellence
  • Must be eager to work hard, to learn many new skills, solve problems, and integrate tightly with the rest of the team
Job Responsibility
Job Responsibility
  • Define the Cyber Security Strategy for Bugcrowd and identify areas of improvements to the threat landscape, internal risk tolerance objectives, and/or compliance objectives
  • Ensure the technical aspects of vendor acquisitions and tools are safe for Bugcrowd’s use, in unison with the IT and compliance teams
  • Assess corporate technology systems, determine strategy for changes, enhancement and improvements
  • recommend and implement the same, from the perspective of cyber security
  • Carry out and fulfill the cyber security strategy of bugcrowd, proactively improving the security posture with time
  • Work with GRC to assist in designing, develop, implement and coordinate areas of policies and procedures for compliance with SOC-2, NIST 800-53v4, ISO27001,ISO27018, and FedRAMP
  • Represent Bugcrowd in the internal and external audits for SOC-2, ISO27001, and ISO27018
  • Manage Bugcrowd’s bug bounty program, ensuring that clients have a standard to aspire to, when running their own bounty programs
  • Analyze new features prior to development or launch, to ensure the security measures in place are sufficient for the project. (security architecture and security testing)
  • Manage the access controls for Bugcrowd’s production codebase (GitHub)
Read More
Arrow Right
New

Sr. Director, Cybersecurity

We specifically seek a hands-on, technical security leader. You bring experience...
Location
Location
United Kingdom
Salary
Salary:
Not provided
bugcrowd.com Logo
Bugcrowd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven work experience leading Cyber Security (penetration testing, red teaming, GRC, IR, secure development, and security architecture) in a startup and growing with the organization
  • Excellent knowledge of technical security controls, including cloud, web application, infrastructure, IT, and compliance
  • Experience in data governance, data architecture, data flow and system architecture to optimize the same
  • Hands-on experience with penetration testing, red teaming, and security patch bypass testing
  • Ability to work independently and must have strong organizational and communication skills
  • Systems / Software (detailed knowledge of the following stack): Mac OS, Python, JavaScript, Ruby, Golang, Java, Kotlin, Postgres, GSuite, Cisco Umbrella, Netskope, Crowdstrike, GitHub, AWS, Heroku, Cloudflare, DataDog, JAMF, etc
  • Experience related to and assistance with ISO27001, ISO27018, NIST 800-53v4, and SOC2 audits is compulsory
  • Degree in Computer Science, cyber security, MIS or equivalent experience desirable but not required
  • Experience in cyber security with demonstrations of responsibility and technical excellence
  • Must be eager to work hard, to learn many new skills, solve problems, and integrate tightly with the rest of the team
Job Responsibility
Job Responsibility
  • Define the Cyber Security Strategy for Bugcrowd and identify areas of improvements to the threat landscape, internal risk tolerance objectives, and/or compliance objectives
  • Ensure the technical aspects of vendor acquisitions and tools are safe for Bugcrowd’s use, in unison with the IT and compliance teams
  • Assess corporate technology systems, determine strategy for changes, enhancement and improvements
  • recommend and implement the same, from the perspective of cyber security
  • Carry out and fulfill the cyber security strategy of bugcrowd, proactively improving the security posture with time
  • Work with GRC to assist in designing, develop, implement and coordinate areas of policies and procedures for compliance with SOC-2, NIST 800-53v4, ISO27001,ISO27018, and FedRAMP
  • Represent Bugcrowd in the internal and external audits for SOC-2, ISO27001, and ISO27018
  • Manage Bugcrowd’s bug bounty program, ensuring that clients have a standard to aspire to, when running their own bounty programs
  • Analyze new features prior to development or launch, to ensure the security measures in place are sufficient for the project. (security architecture and security testing)
  • Manage the access controls for Bugcrowd’s production codebase (GitHub)
Read More
Arrow Right
New

Data Infrastructure Engineer

Data Infrastructure Engineer – New York or DC (hybrid) – Competitive Salary + Eq...
Location
Location
United States , New York or DC
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Startup Energy: You thrive in fast-paced environments, manage ambiguity well, and focus on what moves the needle
  • Designing and deploying intuitive, user-friendly APIs
  • Demonstrated ability to train and deploy models at scale
  • Successfully launching machine learning services, particularly those leveraging LLMs, embeddings, and inference, into production environments
  • Handling and securing large-scale production data
  • Demonstrated proficiency in Python, Go, or C
  • A proactive approach to tackling complex challenges in a fast-paced, early-stage environment
  • A passion for innovation and a collaborative spirit
Job Responsibility
Job Responsibility
  • Joining as part of the founding Engineering team, you will be a key part of developing secure data sharing middleware
  • Their software will integrate seamlessly into the workflows of specialized professionals, ensuring secure and efficient data access throughout the asset recruitment process
  • The data infrastructure engineer requires a mix of software development and ML Ops practices, resulting in an exciting, fast paced engineering role
  • You will be able to demonstrate experience building, shipping and supporting mission critical services in support of the services that make up the Data platform
  • This role requires the ability to provide solutions for the full data stack – from the data management, software development and model and deployment lifecycles
What we offer
What we offer
  • Competitive Salary + Equity
  • Fulltime
Read More
Arrow Right
Welcome to CrawlJobs.com
Your Global Job Discovery Platform
At CrawlJobs.com, we simplify finding your next career opportunity by bringing job listings directly to you from all corners of the web. Using cutting-edge AI and web-crawling technologies, we gather and curate job offers from various sources across the globe, ensuring you have access to the most up-to-date job listings in one place.
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Australia Jobs Canada Jobs Poland Jobs Ireland Jobs Spain Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
© 2025 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy