remote

Core Software Engineer, Security & Platform - CARTO

Software Engineer

Core Software Engineer focused on building and securing a cloud‑native spatial analytics platform, leveraging Python, SQL, AWS, Docker, Kubernetes, and GIS technologies to enable scalable, AI‑driven spatial analysis for enterprise clients.

About the role

Built by a diverse team of over 150 people across the US, APAC, and Europe, CARTO ’s cloud-native Agentic GIS platform provides a modern, future-proof alternative to legacy GIS. Backed by Insight Partners, Accel, Salesforce Ventures, Earlybird, and others, CARTO is fundamentally changing the way location data is analyzed, making it an integrated and accessible part of modern data and AI workflows.

What are we looking for?

We are looking for a Senior Software Engineer focused on Security & Platform Hardening to join our Core Team. This is a role for someone who is comfortable jumping between layers and domains, has a bias for automation, and gets genuine satisfaction from making the whole organization more secure and more productive at the same time. You'll touch many different technologies and codebases, and your impact will be felt across the whole company.

Location

You will

Improve the security of the platform through code. Work directly in the CARTO codebase to identify, prioritize, and fix security weaknesses. This may involve refactoring existing components, redesigning risky flows, improving authorization boundaries, strengthening input validation, removing unsafe patterns, or building new platform capabilities that make secure development easier for everyone.
Strengthen our cloud and infrastructure foundations. Work with our infrastructure and platform teams to harden CARTO ’s cloud-native environments across GCP and AWS. You will contribute to areas such as IAM, Kubernetes, containerized workloads, networking, workload isolation, Infrastructure as Code, and secure-by-default deployment patterns.
Make security part of the development workflow. Build and improve tools, checks, libraries, CI/CD integrations, and engineering practices that help developers catch security issues early. The goal is not to create gates that slow teams down, but to make the secure path the easiest path.
Improve supply-chain security. Help protect CARTO from modern supply-chain attacks by improving dependency management, build integrity, container security, artifact provenance, CI/CD security, and automated scanning. Stay up to date with emerging attack techniques and translate that knowledge into practical protections.
Use AI to improve security. Experiment with the latest AI models and tools to assess and improve CARTO ’s security posture. This could include AI-assisted code review, automated vulnerability discovery, codebase analysis, threat modeling, dependency analysis, or internal agents that continuously look for risky patterns and misconfigurations.
Secure AI and agentic systems. CARTO is building an Agentic GIS platform, which creates new security challenges. You will help us reason about and defend against risks such as prompt injection, tool misuse, data leakage, privilege escalation through agents, untrusted content flowing in

About the role

What are we looking for?

Location

You will

Improve the security of the platform through code. Work directly in the CARTO codebase to identify, prioritize, and fix security weaknesses. This may involve refactoring existing components, redesigning risky flows, improving authorization boundaries, strengthening input validation, removing unsafe patterns, or building new platform capabilities that make secure development easier for everyone.
Strengthen our cloud and infrastructure foundations. Work with our infrastructure and platform teams to harden CARTO ’s cloud-native environments across GCP and AWS. You will contribute to areas such as IAM, Kubernetes, containerized workloads, networking, workload isolation, Infrastructure as Code, and secure-by-default deployment patterns.
Make security part of the development workflow. Build and improve tools, checks, libraries, CI/CD integrations, and engineering practices that help developers catch security issues early. The goal is not to create gates that slow teams down, but to make the secure path the easiest path.
Improve supply-chain security. Help protect CARTO from modern supply-chain attacks by improving dependency management, build integrity, container security, artifact provenance, CI/CD security, and automated scanning. Stay up to date with emerging attack techniques and translate that knowledge into practical protections.
Use AI to improve security. Experiment with the latest AI models and tools to assess and improve CARTO ’s security posture. This could include AI-assisted code review, automated vulnerability discovery, codebase analysis, threat modeling, dependency analysis, or internal agents that continuously look for risky patterns and misconfigurations.
Secure AI and agentic systems. CARTO is building an Agentic GIS platform, which creates new security challenges. You will help us reason about and defend against risks such as prompt injection, tool misuse, data leakage, privilege escalation through agents, untrusted content flowing in

Core Software Engineer, Security & Platform - CARTO

About the role

Core Software Engineer, Security & Platform - CARTO

About the role

Skills