Security Engineer
San Francisco, CA • New York, NY • Seattle, WA • United States
Figma is growing our team of passionate people on a mission to make design accessible to all. Born on the Web, Figma helps entire product teams brainstorm, design and build better products — from start to finish. Whether it’s consolidating tools, simplifying workflows, or collaborating across teams and time zones, Figma makes the design process faster, more efficient, and fun while keeping everyone on the same page. From great products to long-lasting companies, we believe that nothing great is made alone—come make with us!
As a Security Engineer, you will help identify and drive impactful projects to improve the security of Figma's product, platform, and our IT systems. The mission of the Figma Security team is to help Figmates ship the most secure product to our users. We are looking for security generalists with a strong grasp of Computer Science and security fundamentals. You will partner closely with teams across the company and focus on systemic security improvements and risk reduction. You will also maximize your security skills to support and participate in operational security responsibilities like security reviews and consulting, external research/bug-bounty triage, incident response, and risk management.
What you’ll do at Figma:
- Perform technical security assessments, code audits and design reviews.
- Develop technical solutions to help mitigate security vulnerabilities.
- Advocate security and secure practices throughout Figma
- Conduct assessments to identify current and new attack vectors against Figma products and services.
- Help run our pen-testing and offensive security exercises as well as our bug bounty program.
We'd love to hear from you if you have:
- 6+ years of proven experience working in a Security team
- Good understanding of at least two of Linux/Unix/Mac based systems security, AWS security, Cloud SaaS Security, and web application security
- Proficient in at least one general purpose coding language
- Demonstrated experience engineering security-based tooling and/or software
- Strong communication and interpersonal skills, with demonstrated experience collaborating across functions
While not required, It’s an added plus if you also have:
- Demonstrated ability to make hard prioritization decisions in security controls
- Experience in a software engineering role and interested in working on security related projects
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Collaborative environment Generous PTO Opportunity for growth Parental leave Remote work flexibility Work from home stipend
Tasks- Perform security assessments
AWS Cloud Security Coding Communication Go Interpersonal Linux Mac Security Engineering UNIX Web application security
Experience6 years
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9