Security Engineer (Remote)

Neon is a distributed team building open-source cloud-native Postgres. We're a well-funded startup with deep knowledge of Postgres internals and decades of experience building databases. Our storage layer is written in Rust, and the cloud control plane in Go. We're on a mission to create a cloud-native database service for every developer.

Do you have a passion for securing cutting-edge technology in a fast-paced and challenging environment? If yes, this could be the perfect role for you!

You will join our fast-growing Security Team, where you can positively impact our security posture and ensure compliance across our multi-cloud deployment.

You will help us build securely on Azure, AWS, and GCP using industry best practices. You'll own vulnerability management across our infrastructure and product stack, mostly remediating issues independently without relying on other engineering teams.

Time Zone requirement: between GMT and GMT+3

You will

• Design and manage security solutions for AWS, Azure, and GCP.

• Collaborate closely with the SRE team on vulnerability remediation.

• Monitor and respond to security incidents using SIEM tools.

• Conduct security assessments, vulnerability scanning, and penetration testing.

• Collaborate with development and operations teams.

• Manage external bug bounty and pentest programs.

• Conduct internal product security reviews and threat modeling.

We're looking for someone who has

• Ambition, passion, and results-oriented, with excellent communication skills.

• 8+ years of experience working as a (Senior) Security Engineer (AWS/Azure/GCP).

• Strong knowledge of cloud infrastructure and security best practices.

• Proficiency in Terraform for infrastructure as code.

• Experience in vulnerability management on cloud.

• Experience in security operations (SOC) and incident response.

• Strong analytical and problem-solving skills.

• Ability to work independently and as part of a team in a fast-paced environment.

• Comfortable coding in Go, Rust, or Python to support product and infra-level security fixes.

• Demonstrated ability to take ownership of vulnerabilities from detection to resolution.

Nice to have

• Experience with SOC2, ISO, HIPAA, GDPR, and PCI-DSS compliance.

• Experience in manual penetration testing of web applications and APIs.

• Experience managing coordinated disclosure, bug bounty triage, or working with security researchers.

Our Security/Infrastructure Stack: AWS, Azure, GCP, Terraform, EKS, AKS, Orca, Oligo, Panther

About Neon

Neon is building open-source cloud-native PostgreSQL. Our architecture separates storage from compute, allowing for stateless and serverless Postgres. We’re a well funded startup with deep knowledge of Postgres internals and decades of experience building databases. We are a systems company; we work on low-level code with strict performance and correctness requirements.

Neon was created by a team of Postgres hackers, and led by CEO Nikita Shamgunov (co-founder of SingleStore). Neon is built on open-source principles and is focused on giving back to the Postgres and developer communities.

Our Team

• We are a distributed team of 130+ people working from 25+ countries (concentrating around North America and Europe time zones)

• We are a team built on open source and cultural principles (transparency, contribution, accountability, proactivity)

• Team with decades of experience building databases and deep knowledge of Postgres internals. We are deeply technical

• We have experienced Postgres committers and hackers on the team (check Heikki, Anastasia, Matthias profiles)

• We believe in the efficacy of collaborative open source

• We aim for a diversity of thoughts and backgrounds

• We are keen to be a fast-moving flat org and avoid hierarchical structures

Our Investors

• Top-tier investors backed up Neon's vision:

  • We raised $104+ million in funding from Menlo Ventures, Notable Capital, Khosla Ventures, General Catalyst, and Founders Fund.

  • Venture vehicles of Snowflake and Databricks invested in Neon.

  • Our angel investors are prominent technologists and ecosystem players. More than 20 awesome angels supported Neon, including Nat Friedman, Elad Gil, Mike Ovitz, Ajeet Singh, Guillermo Rauch, Søren Brammer Schmidt, and Wes McKinney.

  • Our Board includes Quentin Clark, Glenn Solomon, Joe Morrissey, and Tim Tully.

Our Offer

• You have an opportunity to be an early employee in the fast-scaling ambitious team

• You can work 100% remote: we'll handle all formalities to arrange work from your home

• We grant equity (stock options) for all full-time hires

• We offer a competitive benefits package in line with all tech companies (top-notch equipment, unlimited vacations, paid parental leaves, and much more)

• We are distributed, yet make our bonds during regular offsites (the last one was in Lisbon)