Senior Software Engineer, Security Partner
Remote - United States
Role Overview:
As a Software Engineer, Security Partner, you will play a crucial role in building and maintaining strong relationships with our internal and external partners to ensure the security and integrity of our systems and data. You will be a trusted advisor, working closely with various teams to identify security risks, develop mitigation strategies, and drive security features in products Reddit delivers. This role requires a blend of technical expertise, business acumen, and exceptional communication skills.
Responsibilities:
- Partnership Management:
- Develop and maintain strong relationships with key internal stakeholders (engineering, product, legal, etc.) and external partners (vendors, clients, etc.).
- Act as a primary point of contact for security-related inquiries and issues for a particular subset of Reddit products.
- Facilitate effective communication and collaboration between security teams and partner organizations.
- Security Risk Assessment & Mitigation:
- Conduct threat modeling assessments of partner integrations, collaborations, and planned features.
- Identify and evaluate potential security vulnerabilities and develop mitigation strategies.
- Make recommendations and ship those recommendations with partner development teams to mitigate identified risks.
- Ensure compliance with relevant security standards and regulations.
- Security Awareness & Training:
- Promote security awareness and best practices among partners and internal teams.
- Develop and deliver security training materials and presentations.
- Stay up-to-date on the latest security trends and technologies.
- Evangelize paved paths developed by Reddit security teams for adoption within product teams they cover.
- Software Engineering
- Perform peer reviews of code related to security and privacy components.
- Able to provide input and value to technical design discussions and decisions that touch on security and reliability features.
- Act as a glue between infrastructure and development teams, flexing security troubleshooting skillset and ability to connect the dots and cross functional problems.
- Incident Response:
- Participate in security incident response activities, providing technical expertise and support related to product security incident response.
- Conduct post-incident reviews and develop recommendations for improvement.
Qualifications:
- Deep experience with Golang programming languages, and familiarity with DevOps technologies and capabilities to deploy code to production environments.
- Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
- 5+ years of experience in security partnerships, information security, or a related role.
- Strong understanding of security principles, best practices, and industry standards (e.g., ISO 27001, NIST, SOX).
- Experience with threat modeling, security risk assessment and mitigation techniques.
- Excellent communication, interpersonal, and presentation skills.
- Ability to work effectively in a fast-paced, dynamic environment.
- Strong project management skills and ability to manage multiple priorities.
- Knowledge of cloud security (AWS, GCP), infrastructure components (Redis, Postgres, Cassandra), and distributed systems design.
- Experience with vendor security assessments.
- Experience with security compliance.
Preferred Qualifications:
- Experience with security automation, tooling, and LLM/AI usage.
- Software engineering experience in a production environment.
- Mobile security experience (native apps and mobile SDKs)
Ideal Candidates
- Strong Development Foundation with Leadership Potential: You are a highly skilled developer with a proven ability to lead and mentor teams. Development proficiency is prioritized, with security expertise being a valuable, but secondary, asset.
- Clear and Impactful Communication: You effectively convey complex security insights to diverse audiences, both in written and verbal formats.
- Collaborative Partnership: You readily establish and maintain strong relationships with cross-functional teams and stakeholders.
- Broad and Deep Security Expertise (Beneficial): While development is key, a comprehensive understanding of various Information Security domains, with specialized depth in key areas, is a plus.
- Proven Program Development and Measurement: You have a track record of building and scaling successful security services and programs, and you understand how to quantify their impact.
- Proactive and Adaptable: You are highly self-motivated and thrive in environments characterized by ambiguity and change.
- Inclusive Team Leadership: You foster a safe and inclusive team environment, empowering members to perform at their peak.
Benefits:
- Comprehensive Healthcare Benefits and Income Replacement Programs
- 401k Match
- Family Planning Support
- Gender-Affirming Care
- Mental Health & Coaching Benefits
- Flexible Vacation & Reddit Global Days off
- Generous paid Parental Leave
- Paid Volunteer time off
Pay Transparency:
This job posting may span more than one career level.
In addition to base salary, this job is eligible to receive equity in the form of restricted stock units, and depending on the position offered, it may also be eligible to receive a commission. Additionally, Reddit offers a wide range of benefits to U.S.-based employees, including medical, dental, and vision insurance, 401(k) program with employer match, generous time off for vacation, and parental leave. To learn more, please visit https://www.redditinc.com/careers/.
To provide greater transparency to candidates, we share base pay ranges for all US-based job postings regardless of state. We set standard base pay ranges for all roles based on function, level, and country location, benchmarked against similar stage growth companies. Final offer amounts are determined by multiple factors including, skills, depth of work experience and relevant licenses/credentials, and may vary from the amounts listed below.
The base pay range for this position is:$190,800—$267,100 USDReddit is proud to be an equal opportunity employer, and is committed to building a workforce representative of the diverse communities we serve. Reddit is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, please contact us at ApplicationAssistance@Reddit.com.
ApplyJob Profile
Remote - United States
Benefits/PerksCommission Comprehensive healthcare Comprehensive Healthcare Benefits Dental Equity Equity in the form of restricted stock units Family Planning Family Planning Support Flexible Vacation Gender-affirming care Generous Paid Parental Leave Generous time off Healthcare Healthcare Benefits Income Income replacement programs Medical Medical, dental, and vision insurance Paid parental leave Paid Volunteer time off Parental leave Pay Transparency Reddit Global Days Off Restricted Stock Units Vision Insurance Volunteer time off Wide range of benefits
Tasks- Automation
- Collaboration
- Conduct security risk assessments
- Develop security training materials
- Make recommendations
- Manage partnerships
- Participate in incident response
- Risk Assessment
AI Automation AWS Cassandra Cloud Security Coaching Collaboration Communication Compliance Computer Science Design Development DevOps Distributed Systems Engineering GCP Golang Incident Response Infrastructure Integrations Interpersonal ISO 27001 Leadership Legal Management Planning Postgres Presentation Privacy Production Project Management Redis Risk Assessment SDKs Security Security principles Security risk assessment Software Engineering SOX Systems Design Team Leadership Technical Design Threat modeling Tooling Troubleshooting
Experience5 years
EducationBachelor's Bachelor's degree Bachelors degree in a related field Bachelor's degree in Computer Science Bachelor's degree in information security Computer Science Degree in Computer Science Engineering Equivalent experience Related Field
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9