Full Job Description
We're looking for a Security Engineer to join the Specs Security team at Snap Inc!
What you'll do:
- Design, build, and harden on-device security systems for Specs, including permissions, access control, secure IPC, sandboxing, and trusted execution boundaries.
- Develop security and privacy controls for on-device AI features, including model integrity, sensitive data handling, inference-time privacy protections, local policy enforcement, and secure access to sensors, user data, and system capabilities.
- Research, design, and implement security features that improve the security posture of Specs across Snap OS, firmware, applications, system services, and cloud-connected device surfaces.
- Improve fuzzing infrastructure, automated security testing, and continuous validation pipelines for OS components, IPC mechanisms, parsers, services, drivers, firmware interfaces, and AI-related data flows.
Knowledge, Skills & Abilities:
- Knowledge of Linux-based system security, embedded operating systems, trusted execution boundaries, secure software architecture, applied cryptography, authentication, authorization, attestation, key management, and platform hardening techniques.
- Knowledge of permission systems, access control, least-privilege design, sandboxing, secure IPC, service isolation, and privacy-preserving access to sensors, user data, and system capabilities.
- Develop security and privacy controls for on-device AI features, including model integrity, sensitive data handling, inference-time privacy protections, and local policy enforcement.
- Ability to perform security analysis, threat modeling, vulnerability assessment, secure code review, fuzzing, static analysis, dynamic analysis, and automated security validation across OS, firmware and AI/ML system boundaries.
Minimum Qualifications:
- Bachelor's degree in Computer Science, Computer Engineering, Electrical Engineering, a related technical field, or equivalent practical experience.
- 5+ years of experience developing production software in one or more programming languages such as C, C++, Rust.
- 3+ years of experience building security, privacy, or platform protection features for Linux-based, embedded, mobile, wearable, or connected device systems.
- Experience with applied cryptography, authentication, authorization, secure communications, key management, threat modeling, vulnerability assessment, or system security for embedded or Linux-based systems.
Preferred Qualifications:
- Master's degree or PhD in Computer Science, Computer Engineering, Electrical Engineering, or a related technical discipline.
- Experience designing or building on-device permission systems, access control frameworks, sandboxing, secure IPC, service isolation, least-privilege architectures, or privacy-preserving controls for sensor-rich devices.
- Experience securing on-device AI, ML, or assistant-like systems, including model integrity, sensitive data handling, inference-time privacy, AI feature permissions, local policy enforcement, and protection of model inputs and outputs.
- Experience with trusted execution technologies, secure manufacturing, device provisioning, attestation, anti-rollback, secure debug, lifecycle state management, fuzzing, automated security validation, or platform-level vulnerability hardening for Linux-based systems.
"Default Together" Policy at Snap: At Snap Inc. we believe that being together in person helps us build our culture faster, reinforce our values, and serve our community, customers and partners better through dynamic collaboration. To reflect this, we practice a "default together" approach and expect our team members to work in an office 4+ days per week.
Our Benefits: Snap Inc. is its own community, so we've got your back! We do our best to make sure you and your loved ones have everything you need to be happy and healthy, on your own terms. Our benefits are built around your needs and include paid parental leave, comprehensive medical coverage, emotional and mental health support programs, and compensation packages that let you share in Snap's long-term success!
Compensation
In the United States, work locations are assigned a pay zone which determines the salary range for the position. The successful candidate's starting pay will be determined based on job-related skills, experience, qualifications, work location, and market conditions. The starting pay may be negotiable within the salary range for the position.These pay zones may be modified in the future.
Zone A (CA, WA, NYC):
The base salary range for this position is $157,000-$235,000 annually.
Zone B:
The base salary range for this position is $149,000-$223,000 annually.
Zone C:
The base salary range for this position is $133,000-$200,000 annually.
This position is eligible for equity in the form of RSUs.