Software Engineer, Security

3 Months ago • All levels • Cyber Security

Job Summary

Job Description

Sierra is seeking a Security Engineer to lead security initiatives for their AI platform. Responsibilities include managing application, cloud, network, and AI agent security, conducting secure design reviews, threat modeling, and building security primitives. The role involves collaborating with engineering and product teams to integrate security into the SDLC, automating security processes using CI/CD and AI-based solutions, and continuously improving security posture through audits and risk assessments. The engineer will also communicate security posture to enterprise clients, addressing concerns related to regulated data.
Must have:
  • Web application security expertise
  • Cloud security (AWS, Azure, or GCP)
  • Networking principles
  • Coding and DevOps skills
  • Secure coding practices
  • Threat modeling
  • Vulnerability scanning
  • Incident response processes
  • Adaptability in a fast-paced startup
  • Strong communication skills
  • Customer-first mindset
Good to have:
  • Experience securing AI systems
  • Understanding of LLM and Agentic AI risks
  • Infrastructure as Code (Terraform, CloudFormation)
  • Building custom security tools
  • Familiarity with continuous compliance platforms
  • Privacy-by-design practices
Perks:
  • Flexible (Unlimited) Paid Time Off
  • Medical, Dental, and Vision benefits
  • Life Insurance and Disability Benefits
  • Retirement Plan with Sierra match
  • Parental Leave
  • Fertility and family building benefits
  • Lunch, snacks, and coffee
  • Discretionary Benefit Stipend
  • Free alphorn lessons

Job Details

About us

  • At Sierra, we’re creating a platform to help businesses build better, more human customer experiences with AI. We are primarily an in-person company based in San Francisco, with growing offices in Atlanta, New York, and London.

  • We are guided by a set of values that are at the core of our actions and define our culture: Trust, Customer Obsession, Craftsmanship, Intensity, and Family. These values are the foundation of our work, and we are committed to upholding them in everything we do.

  • Our co-founders are Bret Taylor and Clay Bavor. Bret currently serves as Board Chair of OpenAI. Previously, he was co-CEO of Salesforce (which had acquired the company he founded, Quip) and CTO of Facebook. Bret was also one of Google's earliest product managers and co-creator of Google Maps. Before founding Sierra, Clay spent 18 years at Google, where he most recently led Google Labs. Earlier, he started and led Google’s AR/VR effort, Project Starline, and Google Lens. Before that, Clay led the product and design teams for Google Workspace. 

What you'll do

  • Lead Security for Our Platform. Take charge of application, cloud, network, and AI agent security. This includes performing secure design reviews, overseeing threat modeling, and building new security primitives into our product and platform.

  • Collaborate with Cross-Functional Teams. Partner closely with engineering, product, and GRC to embed security throughout the software development lifecycle. Communicate risks, prioritize fixes, and ensure security requirements enable innovation.

  • Implement Automation & Tooling. Streamline security processes by integrating tooling into CI/CD pipelines and leveraging AI-based or next-gen solutions to automate scans, compliance checks, and infrastructure reviews.

  • Continuously Improve Security Posture. Conduct regular audits of our cloud environment, review IAM configurations, and stay on top of emerging AI security risks. Recommend strategic security initiatives and lead efforts to establish best practices as the company scales.

  • Enable Enterprise Customer Needs. Present and explain our security posture to enterprise clients, helping them understand how we secure their data. Address concerns around healthcare, financial, or other regulated data with clear, actionable insights

What you'll bring

  • Broad Security Expertise. Strong foundation in web application security, cloud security (AWS, Azure, or GCP), and networking principles.

  • Coding and DevOps Skills. Hands-on experience with programming production software, scripting, and DevOps tools for automation. Familiarity with secure coding practices, threat modeling, vulnerability scanning, and incident response processes.

  • Adaptability and Resilience. Comfort working in a fast-paced startup environment, ability to adapt to changing priorities and handle ambiguity with grace.

  • Communication and Collaboration. Strong written and verbal communication skills with the ability to clearly explain risk trade-offs and convey complex technical topics to both technical and non-technical audiences.

  • Curiosity & Customer-First Mindset. Passion for deeply understanding customer needs and finding the right solutions from first principles.

Even better...

  • Experience securing AI systems, with understanding of LLM and Agentic AI risks.

  • Prior success in securing cloud infrastructure with robust policies and automated enforcement, and familiarity with Infrastructure as Code (Terraform, CloudFormation).

  • History of building or integrating custom security tools, especially those leveraging AI/ML for detection or monitoring.

  • Familiarity with continuous compliance platforms and building control monitoring.

  • Experience designing strong foundations with secure-by-design and privacy-by-design practices such as data handling, anonymization, and de-identification

Our values

  • Trust: We build trust with our customers with our accountability, empathy, quality, and responsiveness. We build trust in AI by making it more accessible, safe, and useful. We build trust with each other by showing up for each other professionally and personally, creating an environment that enables all of us to do our best work.

  • Customer Obsession: We deeply understand our customers’ business goals and relentlessly focus on driving outcomes, not just technical milestones. Everyone at the company knows and spends time with our customers. When our customer is having an issue, we drop everything and fix it.

  • Craftsmanship: We get the details right, from the words on the page to the system architecture. We have good taste. When we notice something isn’t right, we take the time to fix it. We are proud of the products we produce. We continuously self-reflect to continuously self-improve.

  • Intensity: We know we don’t have the luxury of patience. We play to win. We care about our product being the best, and when it isn’t, we fix it. When we fail, we talk about it openly and without blame so we succeed the next time.

  • Family: We know that balance and intensity are compatible, and we model it in our actions and processes. We are the best technology company for parents. We support and respect each other and celebrate each other’s personal and professional achievements.

What we offer

We want our benefits to reflect our values and offer the following to full-time employees:

  • Flexible (Unlimited) Paid Time Off

  • Medical, Dental, and Vision benefits for you and your family

  • Life Insurance and Disability Benefits

  • Retirement Plan (e.g., 401K, pension) with Sierra match

  • Parental Leave

  • Fertility and family building benefits through Carrot

  • Lunch, as well as delicious snacks and coffee to keep you energized 

  • Discretionary Benefit Stipend giving people the ability to spend where it matters most

  • Free alphorn lessons

These benefits are further detailed in Sierra's policies and are subject to change at any time, consistent with the terms of any applicable compensation or benefits plans. Eligible full-time employees can participate in Sierra's equity plans subject to the terms of the applicable plans and policies.

Be you, with us

We're working to bring the transformative power of AI to every organization in the world. To do so, it is important to us that the diversity of our employees represents the diversity of our customers. We believe that our work and culture are better when we encourage, support, and respect different skills and experiences represented within our team. We encourage you to apply even if your experience doesn't precisely match the job description. We strive to evaluate all applicants consistently without regard to race, color, religion, gender, national origin, age, disability, veteran status, pregnancy, gender expression or identity, sexual orientation, citizenship, or any other legally protected class.

Similar Jobs

Clearwater Analytics - Head of User Experience

Clearwater Analytics

San Jose, California, United States (On-Site)
1 Month ago
Roof Stacks - Senior iOS Developer

Roof Stacks

Istanbul, İstanbul, Türkiye (On-Site)
1 Month ago
GlobalStep - Chief Technology Officer

GlobalStep

Pune, Maharashtra, India (On-Site)
2 Months ago
Games talent (Staffing and recruiting) - Art Director

Games talent (Staffing and recruiting)

Copenhagen, Denmark (On-Site)
3 Months ago
Cubic corporation - Project Manager

Cubic corporation

Dublin, County Dublin, Ireland (On-Site)
1 Year ago
Take-Two Interactive - Senior Application Security Engineer

Take-Two Interactive

Texas, United States (Remote)
1 Month ago
NXP - Embedded Systems Security Engineer

NXP

Gratkorn, Styria, Austria (On-Site)
2 Months ago
DataVisor - Security Engineer

DataVisor

Austin, Texas, United States (Remote)
1 Month ago
Roof Stacks - Senior Cyber Security Engineer

Roof Stacks

Istanbul, İstanbul, Türkiye (On-Site)
4 Months ago
Fi - Security Engineer

Fi

Bengaluru, Karnataka, India (On-Site)
5 Years ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Roblox - Senior Product Policy Manager

Roblox

San Mateo, California, United States (Hybrid)
3 Weeks ago
Wildlife Studios - Senior Data Scientist

Wildlife Studios

São Paulo, Brazil (On-Site)
3 Months ago
Apple - Connectivity RF Hardware and System Design Engineer

Apple

Sunnyvale, California, United States (On-Site)
3 Months ago
IGT - Director of Global Quality, Lottery Products

IGT

West Greenwich, Rhode Island, United States (On-Site)
3 Months ago
Workato - Manager, Technical Delivery

Workato

Singapore (On-Site)
3 Weeks ago
Autodesk - Principal Data Scientist

Autodesk

Toronto, Ontario, Canada (Hybrid)
2 Months ago
Square - Enterprise Architect - High Tech, Telco, and Media

Square

Chicago, Illinois, United States (Remote)
3 Weeks ago
N-ix - Senior Data Engineer

N-ix

Poland (Hybrid)
2 Months ago
Ciklum - Senior Data Scientist

Ciklum

Pune, Maharashtra, India (Hybrid)
9 Months ago
Mistral AI - Field Marketing, North America

Mistral AI

Palo Alto, California, United States (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in San Francisco, California, United States

undefined - Software Engineer, Edge

Canada, Kentucky, United States (Remote)
10 Months ago
Unity - Senior Business Systems Analyst

Unity

United States (Remote)
8 Months ago
Yodlee - Technical Architect - Credit & Analytics Domain

Yodlee

Raleigh, North Carolina, United States (Remote)
3 Months ago
Loft Orbital - Technical Program Manager, Embedded Software

Loft Orbital

Golden, Colorado, United States (Hybrid)
2 Months ago
Next Level Business Services - Software Developer (Full Time)

Next Level Business Services

Redmond, Washington, United States (On-Site)
9 Months ago
Abridge - Implementation Engineer

Abridge

San Francisco, California, United States (On-Site)
1 Month ago
Apple - Spatial Text Input Software Engineer

Apple

Sunnyvale, California, United States (On-Site)
2 Months ago
bytedance - Research Scientist- Foundation Model, Vision and Language

bytedance

San Jose, California, United States (On-Site)
9 Months ago
Scale AI - Strategic Finance Manager, Public Sector

Scale AI

New York, United States (On-Site)
1 Month ago
Scale AI - Machine Learning Engineer, Enterprise GenAI

Scale AI

San Francisco, California, United States (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Glocomms - Information Security Engineer

Glocomms

New York, United States (On-Site)
2 Months ago
Jane Street - Cybersecurity Engineer - Threat Modelling

Jane Street

New York, United States (On-Site)
2 Months ago
Capgemini - Cyber Security Lead

Capgemini

Pune, Maharashtra, India (On-Site)
3 Months ago
Zinnia - Senior Cloud Security Engineer

Zinnia

Noida, Uttar Pradesh, India (Hybrid)
10 Months ago
Jane Street - Network Automation Engineer, Security

Jane Street

New York, United States (On-Site)
2 Months ago
Devoteam - Cybersecurity Project Manager

Devoteam

Bilbao, Basque Country, Spain (Hybrid)
7 Months ago
Appirits - Security Engineer

Appirits

Tokyo, Japan (Hybrid)
6 Months ago
PayPal - Staff Software Security Engineer

PayPal

Chicago, Illinois, United States (On-Site)
3 Weeks ago
Zscaler - Principal Software Development Engineer (Java/Security Controls/Vault)

Zscaler

Bengaluru, Karnataka, India (On-Site)
3 Months ago
DOTSOFT SA - Security Engineer

DOTSOFT SA

Greece (On-Site)
4 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Amsterdam, North Holland, Netherlands (Remote)

San Francisco, California, United States (On-Site)

London, England, United Kingdom (On-Site)

Madrid, Community Of Madrid, Spain (Remote)

London, England, United Kingdom (On-Site)

Paris, Île-de-France, France (Hybrid)

San Francisco, California, United States (On-Site)

San Francisco, California, United States (On-Site)

San Francisco, California, United States (On-Site)

London, England, United Kingdom (On-Site)

View All Jobs

Get notified when new jobs are added by Sierra

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug