Description:

The Senior Security Engineer will be responsible for building and managing the application and cloud security stacks as the company scales its platform and user base.
This role involves designing, developing, and maintaining automated security solutions to streamline and optimize security processes.
The engineer will work with the engineering team to prioritize and remediate risks.
The position requires acting as a technical and subject matter expert to guide risk remediation and reduction strategies.
Responsibilities include detecting, responding to, and defending against threats to Copy.ai’s user base.
The engineer will build and optimize detection rules and own the Security Incident and Event Management, Case Management, and Investigation processes.
The role includes implementing a recurring run of the security stack to meet risk, business, and compliance objectives.
The engineer will integrate security tools into engineering workflows and processes.
Staying updated with emerging security threats, vulnerabilities, and industry best practices is essential.
Continuous improvement of existing security automation processes and tooling to enhance defense capabilities is expected.
The engineer will develop and implement processes to ensure compliance with SOC 2 and GDPR.
Collaboration with the sales organization to meet the needs of enterprise customers is also part of the role.

Requirements:

Candidates must have 6+ years of proven experience as a Security Engineer or DevSecOps Engineer, focusing on security automation and tooling.
A deep understanding of security concepts and protocols is required.
Strong programming skills in languages such as Python, bash, and Typescript are necessary.
Candidates should possess strong analytical and problem-solving abilities to identify security gaps and propose effective solutions.
Strong communication and interpersonal skills are essential for effective interaction with individuals at all levels of the organization.
The ability to work independently and manage multiple tasks simultaneously while meeting deadlines is required.
Strong organizational and time management skills, along with a proactive and results-oriented mindset, are necessary.
Experience with Containers, AWS/Azure/GCP, and vulnerability scanning is required.

The position offers a close-knit and collaborative early-stage startup environment where every voice is heard and valued.
Competitive salary and stock option equity packages are provided, as the company is a Series A startup.
Excellent medical plans are available, including HSA plans, PPOs, and HMOs from Kaiser and Aetna, with the company covering up to $700/month per employee for premiums.
The company is fully remote, allowing employees to work from anywhere in the US and Canada.
Unlimited PTO is offered, promoting a healthy work-life balance.
A 401k plan with an automatic 3% employer contribution from Day 1 is included.
Employees receive a brand new work-sponsored computer.
In-person retreats are organized throughout the year for team bonding and collaboration.