Senior Security Engineer at People.ai
San Francisco, CA, US

People.ai accelerates enterprise growth through the power of AI. With the industry’s only Revenue Intelligence System, People.ai frees all customer-facing teams, including sales, marketing, and customer success, from manual data entry by automatically capturing all contact and customer activity data, dynamically updating CRM and other systems of record, and providing actionable intelligence across management tools to realize the full selling capacity of the enterprise. Some of the world’s best brands are leveraging People.ai to transform their business, including Lyft, New Relic, Okta, Tanium, and Zoom.

At People.ai, we believe that people enrich the world around them in countless ways. We believe that the more time they spend applying their creativity, resourcefulness and critical thinking to activities that matter most in their professional life, the more effective a professional they become. We're developing a deep understanding of the professional world, mapping people, companies, and the information that flows between them through natural language processing and machine learning. Our team is a diverse, outspoken group of creatives and critical thinkers, hyper-focused on driving enterprise growth. We embrace different. We applaud non-traditional career paths. We're inspired by people who have made processes their own. 

The Sr. Security Engineer role is to approach a 100% success rate thwarting all attacks on the company.

Responsibilities

Define and enforce security standards across the entire AWS environment through the automation of build and operations scripts deployed with the cooperation of the Service Reliability Engineering team. Specifically, the Sr. Security Engineer will be responsible for hardening our Kubernetes clusters, tighten our AWS security groups, and implementing role-based controls to effect a least-privilege principle.

Identify and manage strategic security initiatives to completion that span many weeks and involve Engineering. Examples include secure code initiatives and secure infrastructure initiatives.

Optimize our threat prevention, monitoring and alerting infrastructure for our AWS-based service so false positives approach zero without missing medium, high or critical issues. This includes writing queries for Sumo Logic to identify aberrational behavior; configuring Lacework, Tenable, Acunetix, AWS GuardDuty and other services.

Optimize the CI/CD (continuous integration and deployment) flow to pull only known, trusted images and libraries during the build and deploy processes.

Successfully execute tactical solutions to resolve or remediate all security issues. This includes managing vulnerability bug submissions to resolution, remediating all alerts within service level agreements, and assisting with IT-related security issues.

Requirements

8+ years of demonstrable security experience across multiple security domains. Domains of the most relevance are cloud, network, infrastructure, and application security.

Highly-proficient in AWS or similar cloud services.

Excellent UNIX administration skills.

Strong scripting or coding skills in any language.

1+ year’s hands-on experience with Kubernetes or container orchestration system.

1+ year hands-on experience with at least one threat intelligence, threat monitoring or threat prevention service or product which requires developing cross-threat signal queries or analyses, or developing techniques to analyze multiple indicators of compromise, to find threats.

Demonstrable experience automating and optimizing the efficacy of threat intelligence, monitoring or prevention services or products.

Expertise integrating security services into a cloud-based applications.

Founded in 2016 and based in San Francisco, the company is backed by ICONIQ Capital, Andreessen Horowitz, Lightspeed Venture Partners, Y Combinator and others. In 2019, People.ai was recognized as a winner of the 2019 Bay Area Best Places To Work, an awards program presented by the San Francisco Business Times and the Silicon Valley Business Journal.