Senior Security Engineer

About Zipline

Do you want to change the world? Zipline is on a mission to transform the way goods move. Our aim is to solve the world’s most urgent and complex access challenges by building, manufacturing and operating the first instant delivery and logistics system that serves all humans equally, wherever they are. From powering Rwanda’s national blood delivery network and Ghana’s COVID-19 vaccine distribution, to providing on-demand home delivery for Walmart, to enabling healthcare providers to bring care directly to U.S. homes, we are transforming the way things move for businesses, governments and consumers. The technology is complex but the idea is simple: a teleportation service that delivers what you need, when you need it. Using robotics and autonomy, we are decarbonizing delivery, decreasing road congestion, and reducing fossil fuel consumption and air pollution, while providing equitable access to billions of people and building a more resilient global supply chain.   Join Zipline and help us to make good on our promise to build an equitable and more resilient global supply chain for billions of people.

About You and The Role  

Zipline builds and operates fleets of autonomous delivery drones to get medicine and critical supplies to people quickly, no matter where they live. To support this mission, we need secure, scalable, and resilient systems. That’s where you come in.

As a Security Engineer, you’ll play a key role in securing the software and cloud infrastructure that powers our global drone delivery operations. You’ll partner closely with engineering teams to identify vulnerabilities in code, architecture, and process—helping to embed secure practices throughout our development lifecycle.

You’ll also contribute to defining data classification and access control strategies, ensuring Zipline remains compliant with global security standards (e.g., SOC 2, ISO 27001). This is a hands-on, high-impact role for someone who thrives in fast-paced environments, enjoys technical depth, and wants to play a critical part in shaping the security culture of a mission-driven company.

What You'll Do  

• Collaborate with software and infrastructure teams to secure Zipline’s cloud-native architecture and services
  
  
• Perform design reviews, threat modeling, and code reviews to identify risks and guide teams toward secure solutions
  
  
• Contribute to building tools, frameworks, and guardrails that enable secure-by-default development practices
  
  
• Help develop and refine Zipline’s security incident response plans and participate in investigations when necessary
  
  
• Support Zipline’s compliance efforts by mapping controls to requirements like SOC 2 and ISO 27001
  
  
• Participate in third-party penetration tests and lead follow-up remediation efforts
  
  
• Drive adoption of secure SDLC practices and advocate for security across engineering domains
  
  
• Build frameworks with a pragmatic, risk-based mindset—focused on solving real-world problems in a high-stakes, safety-critical environment

What You'll Bring 

• 5–7 years of direct experience in security engineering
  
  
• Strong experience securing distributed systems and cloud infrastructure in production environments
  
  
• Deep knowledge of application security principles, with experience identifying and mitigating software vulnerabilities
  
  
• Proficiency in one or more programming languages (e.g., Python, C++, Golang)
  
  
• Familiarity with data classification, access control, and common compliance frameworks
  
  
• A security generalist mindset—comfortable navigating web and mobile apps, APIs, cloud systems, CI/CD, and beyond
  
  
• Excellent communication skills and the ability to work cross-functionally with engineers, IT, and compliance
  
  
• A pragmatic approach to security—you balance strong protections with operational realities

What Else You Need to Know   

The starting cash range for this role is $150,000 - $190,000. Please note that this is a target, starting cash range for a candidate who meets the minimum qualifications for this role. The final cash pay for this role will depend on a variety of factors, including a specific candidate's experience, qualifications, skills, working location, and projected impact. The total compensation package for this role may also include: equity compensation; overtime pay; discretionary annual or performance bonuses; sales incentives; benefits such as medical, dental and vision insurance; paid time off; and more.

Zipline is an equal opportunity employer and prohibits discrimination and harassment of any type without regard to race, color, ancestry, national origin, religion or religious creed, mental or physical disability, medical condition, genetic information, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity, gender expression, age, marital status, military or veteran status, citizenship, or other characteristics protected by state, federal or local law or our other policies.   We value diversity at Zipline and welcome applications from those who are traditionally underrepresented in tech. If you like the sound of this position but are not sure if you are the perfect fit, please apply!