Software Security Engineer

Cresta is on a mission to turn every customer conversation into a competitive advantage by unlocking the true potential of the contact center. Our platform combines the best of AI and human intelligence to help contact centers discover customer insights and behavioral best practices, automate conversations and inefficient processes, and empower every team member to work smarter and faster. Born from the prestigious Stanford AI lab, Cresta's co-founder and chairman is Sebastian Thrun, the genius behind Google X, Waymo, Udacity, and more. Our leadership also includes CEO, Ping Wu, the co-founder of Google Contact Center AI and Vertex AI platform, and CTO & co-founder, Tim Shi, an early member of Open AI.   We’ve assembled a world-class team of AI and ML experts, go-to-market leaders, and top-tier investors including Andreessen Horowitz, Greylock Partners, Sequoia, and former AT&T CEO John Donovan. Our valued customers include brands like Intuit, Cox Communications, Hilton, and Carmax and we’ve been recognized by Forbes and Bain Consulting as one of the top private AI companies in the world.   Join us on this thrilling journey to revolutionize the workforce with AI. The future of work is here, and it's at Cresta.

About the role:

Interested in defining how AI shapes the future of work? Cresta is on a mission to make every knowledge worker 100x as effective, 10x faster and 10x better. Cresta is focused on using AI to help the workforce, not replace them. Cresta uses our patented Expertise AI to uncover expert insights from every conversation and put those insights into action with real-time coaching during customer conversations. We’re growing fast! Spun out of the Stanford AI lab and chaired by Google-X founder Sebastian Thrun, Cresta launched in 2020. Since then, we’ve grown revenue and our team by 300%! We’ve assembled a world-class team of AI and ML experts, go-to-market leaders, and top-tier investors and advisors including Andreessen Horowitz, Greylock Partners, Sequoia, and former AT&T CEO John Donovan. Our valued customers include brands like Intuit, Porsche, Adobe, and Dropbox and we have been recognized as a startup to watch by Business Insider, Forbes, and Gartner to name a few. We have huge ambitions and are looking for stellar candidates who have an entrepreneurial mindset and are excited to use cutting-edge AI to solve real-world business problems. Cresta is seeking a passionate individual with solid security engineering experience to support the security & compliance team and enable growing global data protection and cybersecurity efforts. 

Responsibilities:

• Implement and collaborate on Product security features 
• Mature and extend our DevSecOps pipeline 
• Detect, defend, and respond to threats to Cresta and it's customer
• Support SOC2 Type II, ISO 27001 & 27701, PCI-DSS, TISAX, and HIPPA audit processes with technical controls and evidence 
• Perform security audits of Cresta's Products and cloud infrastructure and drive remediation of security of risks. 
• Improve and monitor Cresta's vulnerability management program to ensure we're monitoring and mitigating known vulnerabilities. 
• Develop internal tooling and automation

Qualifications We Value:

• Ambitious, passionate and results-oriented, with excellent interpersonal and communication skills
• 4+ years of experience in application security engineering and cloud security (AWS/GCP) 
• Security domain knowledge across many cyber security disciplines 
  • Experience in static code analysis and remediation 
  • Experience in security operations (SOC) and incident response
• Working knowledge of Python and Go to develop and collaborate with engineering on product security features
• Experience managing competing efforts and requirements
• Experience with fast growing saas startups

Compensation for this position includes a base salary, equity, and a variety of benefits. Actual base salaries will be based on candidate-specific factors, including experience, skillset, and location, and local minimum pay requirements as applicable. We are actively hiring for this role in the US and Canada. Your recruiter can provide further details.