SeatGeek is looking for a security engineering professional for our Security team. As a Senior Software Engineer, Security, you'll be involved in a mix of security engineering, product security, incident response, and a trace of red teaming.

You'll be involved with critical security initiatives that strengthen our secure-by-default posture across our platform, products, and company. You'll pair architectural guidance with hands-on engineering - building paved roads, tooling, and automated detection/response that scale. You'll operate in a fast-paced, collaborative environment, partnering with both engineering and non-engineering teams to reduce risk without slowing builders down. As a senior engineer, you'll own meaningful work end-to-end and help make the secure path the easy path - from cloud and code to laptops, identity, email, and awareness - including the AI tools reshaping how we build.

If this role sounds interesting to you, we encourage you to apply even if your experience doesn't match every requirement - we value curiosity, collaboration, and a willingness to learn!
What you'll do

• Build and contribute to secure-by-default protections across the stack (cloud, CI/CD, applications, and endpoints) by creating paved roads and guardrails that make the secure path the easy path within your problem space
• Provide practical security guidance on new products and technologies, recommending secure-by-default patterns that fit into existing workflows
• Help secure SeatGeek's use of AI - from LLM-assisted development to AI-powered product features - by building guardrails and reviewing for risks like prompt injection, sensitive-data exposure, and insecure model and tool integrations
• Contribute to design reviews and threat modeling for high-impact features and services; surface risks early and help ensure mitigations are designed in
• Build security tooling that prevents issues at build/deploy time and helps automate detection and response in production
• Improve our detection and incident response capabilities - raise signal quality, tune detections, and implement automated responders that reduce manual toil and time to contain
• Partner with engineering and business teams on cross-functional security work: endpoint and device trust, identity and email protections, security awareness and training, vendor reviews and risk assessments, and supporting compliance efforts (e.g., PCI/SOX)
• Protect SeatGeek from abuse and bots at the edge and app layers through layered defenses and tuning
• Contribute to security incidents and tabletops, including writing incident reviews; help improve runbooks, processes, and stakeholder communications afterward
• Advocate for strong secure coding practices and contribute to a pragmatic, positive security culture across your team and partner teams

What you have

• 3+ years of broad, hands-on experience across multiple security domains, with strong software engineering fundamentals; track record of driving security projects end-to-end (from design through rollout and adoption)
• Proficiency in one or more programming languages (we use Python, Go, and C#); you write production-quality code and perform rigorous reviews for correctness and security
• Experience partnering across product, platform, and business functions to contribute to cross-team security outcomes
• Ability to build scalable, preventative security solutions across domains (platform/cloud, applications, CI/CD, identity and endpoints), favoring reusable guardrails over one-off fixes
• Ability to think like both an attacker and a defender - leveraging each perspective to strengthen the other and drive meaningful improvements in prevention, detection, and response
• Familiarity with the security implications of AI/LLM systems - LLM-assisted development, prompt injection, data leakage, and securing model/agent integrations - is a plus

Our stack

You do not need experience with all of these, but we thought you might be curious. What we care about is your experience, skills, and approach to problem solving. Tools can be learned.

• Central Logging and Monitoring: Datadog
• Cloud Platform: AWS
• Code Versioning: GitLab
• Container Orchestration: Kubernetes
• Dashboarding: Hex and Looker
• Data Warehouse: Redshift
• Endpoint Detection and Response: CrowdStrike
• Languages: C#, Go, Python, SQL, and Terraform

Perks

• Equity stake
• Discretionary annual bonus
• Flexible work environment, allowing you to work as many days a week in the office as you'd like or 100% remotely
• A WFH stipend to support your home office setup
• Unlimited PTO
• Eligible for the SG discretionary annual bonus based on individual and company performance
• Up to 16 weeks of fully-paid family leave
• 401(k) matching
• Student loan matching program
• Health, vision, dental, and life insurance
• Up to $25k towards family building, reproductive health services and Gender-affirming care
• $500 per year for wellness expenses
• Subscriptions to Headspace (meditation), Headspace Care (therapy), and One Medical
• $360 per quarter to spend on tickets to live events
• Annual subscription to Spotify, Apple Music, or Amazon music

The salary range for this role is $144,000 - $209,000 USD. This role is equity eligible. In addition, you may receive a discretionary annual bonus based on individual and company performance. Actual compensation packages within that range are based on a wide array of factors unique to each candidate, including but not limited to skill set, years and depth of experience, certifications, and specific location.

#LI-Remote