Security Engineer

Overview

Security Engineer at StackAI

This range is provided by Stack

AI. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Base pay range

$/yr - $/yr

About This Role At Stack

AI, security is at the heart of empowering companies to build AI assistants quickly and securely. We’re looking for a hands-on security engineer to design and drive our security strategy across infrastructure, applications, and processes. You’ll build and lead a world-class security team, embed security into our development lifecycle, and ensure we meet the highest standards of compliance and customer trust.

If you thrive in high-growth environments and want to shape the future of AI security, we’d love to meet you.

Responsibilities

• Design and implement security frameworks and drive security measures across infrastructure and application layers (, Vercel, GCP, Azure, Kubernetes), ensuring Stack
  
  AI remains secure as we scale.
• Shape the security vision: define and roll out a comprehensive security strategy, embedding best practices across engineering and product teams to safeguard data and systems.
• Build and lead the security organization: recruit, mentor, and manage a high-performing security team while fostering a culture of technical excellence and proactive defense.
• Integrate security into development: partner with engineering teams to embed security into CI/CD pipelines and the entire software development lifecycle.
• Manage external security partnerships: oversee relationships with penetration testing firms, compliance auditors, and security vendors to strengthen defenses.
• Support customer and partner trust: communicate Stack
  
  AI’s security posture, compliance commitments, and incident response readiness to customer-facing teams.
• Harden third-party dependencies: evaluate and improve the security of external tools, APIs, and integrations critical to the platform.
• Lead incident response: own the security incident response process, coordinate resolution efforts, and implement long-term preventive measures.
• Ensure compliance and audit readiness: collaborate with operations and legal teams to prepare for audits (e.g., SOC 2, ISO 27001) and uphold top-tier standards for regulatory and vendor security.

Qualifications

• 4+ years of hands-on security engineering experience across infrastructure and application layers.
• Leadership experience in scaling tech companies or startups, bridging strategy and execution.
• Strong communication skills to translate complex security concepts for technical and non-technical audiences.
• Deep background in risk assessment, threat modeling, and vulnerability management.
• Practical experience with GCP, Azure, or AWS and a solid understanding of infrastructure and API-level security.
• Familiarity with secure coding practices in JavaScript/Type Script, Go, and Node.js.
• Experience with Dev Sec Ops  and automation in modern security tooling and testing across build/deploy pipelines.

Location
:
New York, NY

Apply BELOW