Senior Security Engineer

2 Months ago • 5 Years + • Cyber Security • $200,000 PA - $300,000 PA

Job Summary

Job Description

Patreon is seeking a Senior Security Engineer to join its growing Security team. This role is responsible for designing and implementing security automation, detection, and response capabilities, as well as owning and streamlining Governance, Risk, and Compliance (GRC) functions. The ideal candidate will architect and deploy security solutions in cloud-native, containerized, and on-prem environments, engineer security controls, develop automated detection and response workflows, and handle security incidents. Responsibilities also include leading risk management, conducting security assessments, contributing to audits, and collaborating with cross-functional teams to embed security requirements. The company is committed to funding the creative class and has facilitated billions in revenue for creators.
Must have:
  • 5+ years of experience in Security Engineering, GRC, or related roles.
  • Bachelor's degree in Computer Science, Information Security, or related field (or 7+ years of relevant experience).
  • Proficiency in programming/scripting languages like Python for automation.
  • Experience with security controls (SIEM, SOAR, EDR, IAM).
  • Experience with cloud infrastructure security (IaC tools like Terraform).
  • Familiarity with threat detection, incident response, and MITRE ATT&CK.
  • Knowledge of security standards (NIST CSF, ISO 27001, HIPAA, PCI-DSS, GDPR).
  • Experience with audits, risk assessments, and compliance programs.
Good to have:
  • Experience with GRC platforms.
  • Ability to develop security metrics and communicate technical details to business stakeholders.
Perks:
  • Salary
  • Equity plans
  • Healthcare
  • Flexible time off
  • Company holidays and recharge days
  • Commuter benefits
  • Lifestyle stipends
  • Learning and development stipends
  • Patronage
  • Parental leave
  • 401k plan with matching

Job Details

Patreon is a media and community platform where over 300,000 creators give their biggest fans access to exclusive work and experiences. We offer creators a variety of ways to engage with their communities and build a lasting business including: paid memberships, free memberships, community chats, live experiences, and selling to fans directly with one-time purchases. 

Ultimately our goal is simple: fund the creative class. And we're leaders in that space, with:

  • $8 billion+ in revenue generated since Patreon's inception

  • 60 million+ free new memberships for fans who may not be ready to pay just yet, and

  • 10 million+ fans paying each month for exclusive access to creators' work and community.

We're continuing to invest heavily in building the best creator platform with the best team in the creator economy and are looking for a Senior Security Engineer to support our mission.

This role is a Remote friendly role or open to those who are able to be in-office 2 days per week on a hybrid work model in our San Francisco or New York office.

                                     

About the Team

At Patreon, we deal with some of the most sensitive data such as patrons’ payment methods, creators’ financial information to process payouts, along with several other bits of personal information from patrons and creators alike—security is paramount to our success. We are looking for a mid-level (L4) Security Engineer to join our growing Security team. In this role, you will be responsible for designing and implementing security automation, detection, and response capabilities while also owning and streamlining Governance, Risk, and Compliance (GRC) functions. Your contributions will help ensure our platform and corporate environment remain protected and compliant, empowering us to scale securely.

About the Role

  • Design & Implement Security Solutions

    • Architect and deploy tools and processes that strengthen our infrastructure and corporate security posture in cloud-native (AWS), containerized (Kubernetes/Docker), and on-prem environments.

    • Engineer and maintain controls across multiple security domains (e.g., Endpoint Detection and Response, Cloud Detection and Response, CI/CD, SIEM, IAM, PKI, etc.).

  • Automate Security Detection & Response

    • Develop and refine security detection rules, playbooks, and workflows to respond to threats in real time.

    • Build integrations and automated pipelines leveraging DevOps/SecOps tools (e.g., Python scripting, APIs, webhooks) to accelerate investigation and remediation.

  • Security Incident Handling

    • Triage and investigate security alerts and incidents, leading cross-functional coordination when required.

    • Drive the continuous improvement of incident response processes and technologies used for detection and containment.

  • Governance, Risk & Compliance (GRC)

    • Lead risk management efforts by conducting risk assessments, third-party vendor reviews, and compliance checks against frameworks (e.g., ISO, NIST, PCI, HIPAA).

    • Develop and maintain security metrics (KRI/KPI/OKR) to communicate program effectiveness and inform strategic decisions.

    • Contribute to audits, assessments, and certification processes; maintain and optimize GRC tooling to manage evidence gathering and continuous monitoring.

    • Draft and evolve security policies, standards, and documentation in alignment with regulatory requirements and industry best practices.

  • Cross-Functional Collaboration

    • Partner with Product, Engineering, Legal, and other business teams to embed security requirements into new and existing features.

    • Provide threat modeling and security architecture guidance to software development teams to ensure secure design from the ground up.

  • Continuous Improvement & Thought Leadership

    • Participate in proactive threat hunting and vulnerability management programs to reduce risk exposure.

    • Remain current on industry trends, emerging threats, and new security technologies.

    • Act as an internal champion for security awareness, training, and best practices across the organization.

About You

  • Professional Background

    • Minimum of 5 years of combined experience in Security Engineering, GRC, or related roles in an enterprise or cloud-native environment.

    • Bachelor’s degree in Computer Science, Information Security, or related field (or 7+ years of relevant experience in lieu of degree).

  • Technical Expertise

    • Strong foundation in one or more programming/scripting languages (e.g., Python) for automation and tooling.

    • Hands-on experience implementing and managing security controls (SIEM, SOAR, EDR, IDS/IPS, IAM).

    • Demonstrated ability to evaluate and secure cloud infrastructure using IaC tools (e.g., Terraform, CloudFormation).

    • Proficiency in threat detection, incident response, and investigation methodologies (familiarity with MITRE ATT&CK).

  • GRC & Risk Management

    • Working knowledge of key security standards and regulations (e.g., NIST CSF, ISO 27001, HIPAA, PCI-DSS, GDPR).

    • Experience executing audits, risk assessments, and managing compliance programs; familiarity with GRC platforms preferred.

    • Ability to develop meaningful security metrics and translate technical details into business-impact language.

About Patreon

Patreon powers creators to do what they love and get paid by the people who love what they do. Our team is passionate about making this mission and our core values come to life every day in our work. Through this work, our Patronauts:

  • Put Creators First | They’re the reason we’re here. When creators win, we win. 

  • Build with Craft | We sign our name to every deliverable, just like the creators we serve.

  • Make it Happen | We don’t quit. We learn and deliver. 

  • Win Together | We grow as individuals. We win as a team.

We hire talented and passionate people from different backgrounds because workplace diversity and inclusion is critical to our ability to serve creators worldwide. If you’re excited about a role but your past experience doesn’t match with every bullet point outlined above, we strongly encourage you to apply anyway. If you’re a creator at heart, are energized by our mission, and share our company values, we’d love to hear from you.

Patreon is proud to be an equal opportunity employer. We provide employment opportunities without regard to age, race, color, ancestry, national origin, religion, disability, sex, gender identity or expression, sexual orientation, veteran status, or any other protected class. If you need a reasonable accommodation during the interview process, please let us know via email at accomodations@patreon.

Patreon offers a competitive benefits package including and not limited to salary, equity plans, healthcare, flexible time off, company holidays and recharge days, commuter benefits, lifestyle stipends, learning and development stipends, patronage, parental leave, and 401k plan with matching.

Patreon operates under a hybrid work model, where employees based in office locations are expected to come into the office two days per week, excluding sick time and paid leave. The goal of this policy is to be  intentional about the in-person time we spend together to strengthen the feeling of community at Patreon. Candidates outside of our office hubs are not expected to meet the same requirements.

At Patreon, we believe in fair and transparent pay. In compliance with New York and California pay transparency laws, we are sharing the expected salary range for this role.

The posted salary range is dependent on the location and the level. This range may encompass multiple levels within the role’s job family. The final offer will be based on candidate’s experience, skills, competencies, and geographic location, aligning with the appropriate job level within Patreon’s leveling framework. For remote employees located outside CA and NY, salary may vary based on location and local market conditions.

Patreon reserves the right to modify or update compensation and benefits at any time.

Similar Jobs

binance - Senior Product Manager (Marketplace)

binance

Asia, Lima Region, Peru (Remote)
2 Months ago
Playtika - Director HRIS & People Analytics

Playtika

Israel (On-Site)
4 Months ago
Zinnia - Senior Manager, Client Partner

Zinnia

New York, New York, United States (Hybrid)
2 Weeks ago
Zinnia - Head of Enterprise Quality and Controls

Zinnia

Alpharetta, Georgia, United States (Hybrid)
2 Months ago
endava - Development Lead Java

endava

Bogotá, Bogota, Colombia (On-Site)
2 Weeks ago
CyberArk - Senior Director, Cyber Security Center

CyberArk

Israel (Hybrid)
3 Weeks ago
Optiv - Associate Cyber Security Advisor - Commercial Northeast

Optiv

Boston, Massachusetts, United States (Remote)
2 Months ago
Forescout Technologies  Inc  - Security Analyst

Forescout Technologies Inc

United States (On-Site)
2 Months ago
Varonis  - Senior Security Analyst (Japanese Speaker)

Varonis

Melbourne, Victoria, Australia (On-Site)
3 Weeks ago
NCR Voyix - Information Security Engineer II

NCR Voyix

Chennai, Tamil Nadu, India (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Bright Machines - Test & Product Development Engineering Manager (Manufacturing)

Bright Machines

San Francisco, California, United States (On-Site)
1 Month ago
The Globel Talent Co - Web & Product Designer

The Globel Talent Co

South Africa (Remote)
5 Months ago
Ethos Life - SEO Content Writer

Ethos Life

Bengaluru, Karnataka, India (Hybrid)
1 Month ago
oportun - Senior Manager, Marketing Data & Technology

oportun

Mexico (Remote)
2 Weeks ago
Marvell - Senior Engineer - Firmware Engineer

Marvell

Santa Clara, California, United States (On-Site)
1 Week ago
Sprinkler - Technical Support Engineer

Sprinkler

Bengaluru, Karnataka, India (On-Site)
1 Week ago
Aristocrat - Games Design Manager

Aristocrat

Reno, Nevada, United States (On-Site)
1 Month ago
Synthesia - Customer Onboarding Manager

Synthesia

New York, United States (Hybrid)
3 Weeks ago
Unity - Senior Business Intelligence Developer

Unity

Montreal, Quebec, Canada (On-Site)
3 Weeks ago
Demandbase - Advertising Campaign Strategist

Demandbase

United States (Remote)
3 Weeks ago

Get notifed when new similar jobs are uploaded

Jobs in San Francisco, California, United States

Mashgin - Deployment Engineer - Georgia

Mashgin

Atlanta, Georgia, United States (Remote)
9 Months ago
PrizePicks - Senior Manager, Programmatic & Paid Search User Acquisition

PrizePicks

Atlanta, Georgia, United States (Remote)
3 Months ago
dbt Labs - Senior Software Engineer II

dbt Labs

United States (Remote)
1 Week ago
Scout - Specialist, Parts Sourcing

Scout

Novi, Michigan, United States (On-Site)
1 Month ago
Apple - Hardware Engineering Program Manager

Apple

Cupertino, California, United States (On-Site)
1 Month ago
Penn Interactive - Senior Data Scientist

Penn Interactive

Philadelphia, Pennsylvania, United States (Hybrid)
3 Weeks ago
Dungarvin - Behavioral Direct Support Professional (DSP) / Caregiver

Dungarvin

Albuquerque, New Mexico, United States (On-Site)
1 Month ago
Zinnia - Associate I, Carrier Solutions

Zinnia

Topeka, Kansas, United States (Hybrid)
3 Weeks ago
Apple - OS Release QA Engineer

Apple

San Diego, California, United States (On-Site)
3 Months ago
bytedance - Cloud Network Engineer

bytedance

Seattle, Washington, United States (On-Site)
4 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Epic Games - Security Engineer - Backend (Asset Integrity)

Epic Games

Porto Alegre, State Of Rio Grande Do Sul, Brazil (On-Site)
4 Months ago
Interface AI - Lead Security Engineer

Interface AI

India (Remote)
1 Month ago
FICO - Security Engineer - Senior Engineer

FICO

Bengaluru, Karnataka, India (On-Site)
2 Years ago
Jane Street - Physical Security Systems Engineer

Jane Street

New York, United States (On-Site)
2 Months ago
Larian Studios - Lead Security & Network Engineer

Larian Studios

Warsaw, Masovian Voivodeship, Poland (On-Site)
4 Months ago
Tencent - Senior Cloud Security Engineer

Tencent

Shanghai, China (On-Site)
1 Year ago
CGS Carrers - Information Security Analyst II

CGS Carrers

Brazil (Remote)
2 Weeks ago
Techland - Security Engineer (Blue Team)

Techland

Wrocław, Lower Silesian Voivodeship, Poland (On-Site)
2 Months ago
Minecast - Senior Principal Software Engineer - Email Security

Minecast

London, England, United Kingdom (Hybrid)
1 Week ago
Zuora - Security Engineer

Zuora

Sydney, New South Wales, Australia (Hybrid)
3 Months ago

Get notifed when new similar jobs are uploaded

About The Company

San Francisco, California, United States (Hybrid)

San Francisco, California, United States (Hybrid)

San Francisco, California, United States (Hybrid)

San Francisco, California, United States (Hybrid)

San Francisco, California, United States (Hybrid)

New York, United States (Hybrid)

San Francisco, California, United States (Hybrid)

San Francisco, California, United States (Hybrid)

New York, United States (Hybrid)

New York, United States (Hybrid)

View All Jobs

Get notified when new jobs are added by Patreon

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug