Senior Security Engineer

Plaud

$130K — $180K *
San Francisco, CA 94112In-Person
Information Technology
5 - 7 years of experience
2 weeks ago
Job Overview by Ladders

Qualifications

  • 5+ years of hands-on security engineering experience in cloud security and security operations.
  • Ability to build security infrastructure from scratch, including tool selection and policy definition.
  • Strong knowledge of MITRE ATT&CK and cloud security benchmarks.
  • Familiarity with SOC 2 TII control requirements, particularly access and monitoring standards.
  • Experience leveraging LLMs in security workflows, with recent hands-on use.

Responsibilities

  • Lead security detection and response activities across cloud infrastructure.
  • Remediate credential exposure and implement security measures in AWS/GCP environments.
  • Deploy SIEM platform and develop 30+ detection rules based on MITRE ATT&CK.
  • Own complete incident response lifecycle and develop playbooks for critical incident categories.
  • Maintain operational evidence for SOC 2 TII audits, ensuring compliance across security domains.
  • Publish monthly security reports for leadership and track vulnerability compliance.

Benefits

  • Employee Stock Ownership Plan (ESOP) for investment in the company's success.
  • Fast-paced, innovative environment impacting AI productivity development.
  • Access to leading AI tools to enhance engineering efficiency.
  • Provision of top-tier equipment and technology for all staff.
  • Engaging company culture with annual events promoting teamwork and ownership.
Full Job Description
What you will do
  • You will own both the detection & response layer and the cloud infrastructure security foundation at Plaud - two domains that must operate in lockstep to deliver SOC 2 Type II audit readiness by Q4 2026.
  • Cloud & Infrastructure Security - Remediate credential exposure across AWS/GCP production environments, deploy and tune CSPM across all accounts, embed IaC security gates (Checkov/Terraform) into CI/CD, and implement Zero Standing Privileges via JIT/CIEM.
  • SIEM Build & Detection Engineering - Deploy the SIEM platform and author 30+ MITRE ATT&CK-mapped detection rules spanning cloud telemetry, endpoint, and SaaS - with ongoing tuning to reduce false positives and maintain coverage fidelity.
  • Incident Response - Own the IR lifecycle end-to-end: develop playbooks across a minimum of 4 incident categories, lead cross-functional response for P1/P2 events, and drive MTTD to 60 minutes.
  • SOC 2 TII Operational Evidence - Produce and maintain the continuous evidence package required for audit - log retention, alert records, control review cadences, and written control narratives for Cloud Security and SecOps domains.
  • Security Reporting & Risk Governance - Publish monthly security reports to leadership, deliver H1 risk governance reports, and maintain vulnerability SLA compliance 90% with clear remediation tracking.


Skills, qualifications and experience we look for
  • 5+ years of hands-on security engineering experience with demonstrable depth in at least one of: cloud security (AWS/GCP, CSPM, IAM, IaC) or security operations (SIEM, IR, SOAR, detection engineering) - and working fluency in the other.
  • Proven ability to build security infrastructure from zero: tool selection, baseline configuration, and policy definition without inheriting a mature program or existing runbook.
  • Strong working knowledge of MITRE ATT&CK, CIS Benchmarks (L1/L2), cloud-native security tooling (AWS Security Hub, GCP SCC, or equivalent CSPM), and log source integration across cloud and endpoint layers.
  • Familiarity with SOC 2 TII control requirements - specifically CC6 (logical access), CC7 (monitoring & detection), and the operational evidence standards expected by a third-party auditor.
  • Routinely uses LLMs as part of daily security workflow - alert summarization, detection rule generation, SOAR playbook drafting, or IaC policy automation. Will demo last-2-weeks AI usage during interview.


What we offer
  1. Meaningful Ownership An Employee Stock Ownership Plan (ESOP) that gives a real stake in Plaud9s long-term success.
  2. High-Impact Environment Work in a fast-moving, product-driven environment where your ideas directly shape the future of AI productivity.
  3. Cutting-Edge AI Tools for Productivity Access to best-in-class AI tools, including Cursor, GPT models, Gemini, Claude, and other frontier AI systems to maximize engineering and execution efficiency.
  4. Best-in-Class Equipment Choice of top-spec laptops, high-performance workstation setups, and cutting-edge Plaud devices for all new hires.
  5. Team & Culture Annual company offsites, team events, and a culture that values craftsmanship, ownership, and velocity.
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at Plaud

More Information Technology Jobs

Find similar Senior Security Engineer jobs:

NationwideSan Francisco, CA