Website:
emergent.sh
Job details:
We're looking for a Security Engineer who thinks like an attacker, builds like a product engineer, and operates with the urgency of a founder. You'll own security across the full stack, from AI agent pipelines and cloud infrastructure to the applications our users generate and deploy at scale.
Responsibilities
- Secure the AI-native stack end to end: design, implement, and continuously improve security controls across AI agent pipelines, multi-tenant cloud infrastructure, APIs, and user-generated application environments.
- Lead threat modeling and attack surface analysis: proactively identify risks in new product features, infrastructure changes, and AI-generated code patterns. Catch vulnerabilities at design time, not after deployment.
- Build and own vulnerability management: run automated security scans (SAST, DAST, SCA), triage findings by exploitability and impact, drive remediation, and track resolution to closure.
- Harden AI-generated application environments: define and enforce sandboxing strategies, code execution boundaries, secret handling standards, and runtime security controls.
- Drive security in the SDLC: embed security tooling and review gates into CI/CD pipelines, champion secure coding practices, conduct code reviews, and run internal red-teaming exercises.
- Detect, respond, and learn: build detection coverage using cloud-native logging and SIEM tooling. Lead incident response, triage, contain, eradicate, and produce clear post-mortems.
- Own compliance and trust: maintain and mature security posture against SOC 2 ISO 27001 and cloud security benchmarks. Serve as a technical point of contact for customer security reviews.
Requirements
- 8 to 12 years of hands-on security engineering experience in a fast-moving product or cloud environment.
- Strong application security foundation, able to read code (Python, JS/TS, SQL), identify vulnerabilities (OWASP Top 10 injection, auth flaws), and drive fixes with engineering teams.
- Solid cloud security experience across AWS, GCP, or Azure, including IAM, network security groups, secrets management, and container security (Docker, Kubernetes).
- Experience with SAST, DAST, SCA, secret scanning, and CSPM tooling across the development lifecycle.
- Incident response experience with structured response from detection to post-mortem.
- Excellent written and verbal communication, able to explain a critical vulnerability to a non-technical founder and a detailed CVE to a senior engineer.
- High ownership mindset: you see a gap and close it.
Good To Have
- Experience securing AI/ML systems, including model APIs, prompt injection risks, LLM output validation, and multi-tenant AI inference.
- Familiarity with sandboxed code execution environments or container escape scenarios.
- Hands-on red teaming or penetration testing experience.
- Compliance background: SOC 2 Type II, ISO 27001 GDPR and data privacy.
- Prior experience at a high-growth startup or infrastructure-heavy product company.
This job was posted by Akhil Girijan from Emergent.
Click on Apply to know more.