Senior Security Engineer

About DroneDeployBuild with certainty, operate with confidence. That’s why thousands of construction, oil and gas, and renewable energy companies use DroneDeploy on a daily basis. We help them automate reality capture using drones, robots, and 360 cameras – combining this data in one platform for AI-powered analysis. From aerial and ground views of construction progress to automated gauge readings and methane leak detection, DroneDeploy is shaping the future of reality capture.
At DroneDeploy, we thrive in a remote-first culture, powered by innovation. Growth is limitless, and employee contributions matter. With accolades as a Best Place to Work in the SF Bay Area and a spot on America’s Best Startups list, our team is dynamic, purpose-driven, and dedicated to delivering top-tier reality capture software. We cultivate an environment of opportunity. Our dynamic growth is fueled by the diverse range of ideas nurtured by our team. This is why our commitment to internal advancement is profound. A multitude of paths for professional and personal development are available, where flexible schedules, family-friendly benefits, and remote work options propel our team's journey.
About the Role:We are looking for an experienced Security Engineer to join our team. We're a small, dynamic, fast-moving company, developing on the cutting edge of drone technology and image processing. We build upon the most advanced infrastructure management and security tools to deliver best in class protection for our customers’ data. You will be responsible for leading and executing on our Security Engineering program as we grow our team and customer base internationally.  

Responsibilities:

• Collaborate with DevOps, Compliance, Engineering, and IT to streamline and uplevel our  Security Program.
• Expand our automated security monitoring capabilities.
• Mitigate security vulnerabilities and architectural weaknesses by building security services, libraries, and integrating third party services.
• Perform design reviews to ensure projects do not introduce new security vulnerabilities.
• Educate and train security champions across the organization.
• Lead our bug bounty and external penetration testing programs.
• Develop security guidelines for common security issues, provide remediation guidance, and security baselines.
• Proactively introduce new controls into the infrastructure platform that improves our defense in depth.

Requirements:

• 4 years of experience in Software Engineering, including time in a  Security Engineering role.
• Demonstrated competence with reading and writing in modern software languages, including python, javascript, and golang.
• Deep understanding of how to ensure high security without sacrificing user experience.
• Demonstrated ability to communicate technical security concepts to non-experts.
• Deep understanding of OWASP Top 10 vulnerabilities and mitigation strategies.
• Ability to prioritize, reproduce, recommend remediations and implement fixes for vulnerabilities
• Experience with automated security scanning software and their limitations.
• Experience performing formal threat modeling analysis in a real environment, and security triaging.
• Prefer candidates with certifications such as CISSP, CCSP, GWAPT, OSCP, etc.
• Experience working in cloud & containerized computing environments such as GCP, AWS, Azure; with kubernetes.
• Experience with common security compliance initiatives such as SOC2, ISO-27001, etc.
• Available to travel domestically occasionally for work activities (e.g., conferences, meetings, events).

#LI-Remote
Employee Offerings & Benefits(Varies by location and position)These are just some of the benefits we offer—explore more when you join us!> Innovative Company Culture – Thrive in an environment that encourages creativity and collaboration.> Drone Pilot Certification – Get certified and develop unique skills with our support.> Flexible Work Options – Enjoy flexibility with both your schedule and work location.> Family Paid Leave – Supporting you and your family when it matters most.> Top-Tier Healthcare Benefits – Comprehensive health coverage designed to support your well-being.> Professional Development & Career Growth – Opportunities to advance and grow in your career.> Flexible Paid Time Off – Take the time you need to recharge and stay balanced.> Employee Referral Bonus – Help us grow the team and get rewarded for great referrals.
----DroneDeploy is an equal opportunity employer.
All DroneDeploy employees are responsible for assisting in protecting the company and customer data by following information security policies and procedures.
Please refer to our Recruitment Privacy Notice for information about privacy during the recruiting process.