SIGN IN
Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Profound · 1 day ago

Security Engineer

positionNew York City
timeFull-time
remoteOnsite
seniorityMid Level
money$160K/yr - $220K/yr
date3+ years exp
Profound is on a mission to help companies understand and control their AI presence, and they are seeking a Security Engineer to own the security posture of their platform, infrastructure, and corporate environment. This role involves building and maintaining security controls, compliance programs, and threat defenses to protect customer data and enable rapid growth.
Artificial Intelligence (AI)Big DataMarketingAnalyticsSEO
check
H1B Sponsorednote

Responsibilities

Design, implement, and maintain role-based and attribute-based access control across production systems, cloud infrastructure, and corporate tools
Own identity and access management including SSO, SCIM provisioning, and lifecycle automation across Google Workspace, AWS, and internal systems
Conduct regular access reviews and enforce least-privilege principles across environments
Build automated workflows for onboarding, offboarding, and role change provisioning
Build and run a vulnerability management program across infrastructure, applications, and dependencies
Integrate security scanning into CI or CD pipelines including SAST, DAST, SCA, and container image scanning
Triage and respond to security findings from automated tools, bug bounty programs, and third-party assessments
Own SOC 2 Type II compliance end to end, including defining controls, collecting evidence, managing auditor relationships, and closing gaps
Build and maintain security policies, standards, and procedures aligned with operational reality
Support customer security reviews, vendor assessments, and due diligence processes
Conduct risk assessments and maintain a risk register that informs prioritization decisions
Secure AWS infrastructure including VPC architecture, security groups, IAM policies, and network segmentation
Implement and maintain logging, monitoring, and alerting for security-relevant events across cloud and corporate systems
Oversee physical security controls for the Union Square office including access management, visitor policies, and asset tracking
Build and maintain an incident response plan, run tabletop exercises, and lead incident response when necessary
Implement detection capabilities using log aggregation, SIEM tooling, and anomaly detection
Conduct post-incident reviews and drive systemic improvements

Qualification

Security engineering experienceAccess control modelsAWS security servicesSOC 2 complianceVulnerability management toolingPython scriptingInfrastructure as codePenetration testingClear communicatorSystems thinkerSelf-directedMotivated builderData infrastructure securityRelevant certifications

Required

3 or more years of experience in security engineering, including experience in high-growth SaaS or infrastructure-heavy environments
Deep understanding of access control models, identity management systems, and authentication protocols such as OAuth, SAML, and OIDC
Hands-on experience building or maintaining a SOC 2 compliance program
Strong knowledge of AWS security services and cloud security architecture including IAM, VPC, CloudTrail, GuardDuty, and Security Hub
Experience integrating vulnerability management tooling into CI or CD workflows
Familiarity with network security fundamentals including firewalls, DNS, VPNs, segmentation, and traffic analysis
Practical scripting skills in Python or Bash for automation of security workflows
Clear communicator who can translate security risks into business terms for engineering, leadership, and customer-facing teams
Systems thinker who understands root causes, blast radius, and scalable control design
Self-directed with strong judgment and comfort operating with significant autonomy
Motivated by building the security foundation for a category-defining AI company
Experience with infrastructure as code security such as Terraform or CloudFormation
Familiarity with data infrastructure security for systems such as ClickHouse or PostgreSQL
Background in penetration testing or application security assessments
Relevant certifications such as CISSP, CCSP, AWS Security Specialty, or similar
Experience with data processing compliance in analytics-heavy environments

Benefits

Equity
A full range of benefits and perks

Company

Profound

twittertwittertwitter
company-logo
Profound is an AI visibility and content optimization platform that that helps brands optimize their visibility in generative AI search.
dateFounded in 2024
location
New York, New York, USA
people-size51-200 employees
web-link
https://www.tryprofound.com

H1B Sponsorship

Profound has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (4)

Funding

Current Stage
Growth Stage
Total Funding
$58.5M
Key Investors
Sequoia CapitalKleiner PerkinsSaga Ventures
2025-08-12Series B· $35M
2025-06-18Series A· $20M
2024-08-13Seed· $3.5M

Leadership Team

leader-logo
James Cadwallader
Co-Founder, CEO
linkedin
leader-logo
Dylan Babbs
Co-founder, CTO
linkedin

Recent News

Digiday
Agencies are racing to offer zero-click analysis tools, but monetizing them isn’t easy
2025-11-19
Notified
New SOAR Content Framework™ Case Study by Notified Reveals Key Factors That Boost AI Visibility
2025-11-19
PR Newswire
Profound Launches Shopping Analysis as AI Assistants Become the New Front Door to Retail
2025-11-14
Company data provided by crunchbase