Staff Security Engineer - a16z

Key Responsibilities

• Architect and enforce robust security controls across cloud and on‑prem environments, ensuring alignment with industry standards and regulatory requirements.
• Lead threat modeling and risk assessment initiatives, translating findings into actionable mitigation plans for product and infrastructure teams.
• Coordinate and manage incident response activities, including investigation, containment, and post‑mortem analysis to strengthen defenses.
• Collaborate with engineering, product, and operations to embed secure coding practices and automated security testing into CI/CD pipelines.
• Advise on encryption strategy, key management, and data protection across the organization’s technology stack.
• Mentor junior security staff and foster a culture of security awareness throughout the organization.

Requirements

• 10+ years of experience in security engineering, with a proven track record in large‑scale, cloud‑native environments.
• Deep expertise in threat modeling, incident response, and security architecture for AWS and GCP platforms.
• Strong knowledge of secure coding practices, OWASP Top 10, and automated security testing tools.
• Experience with encryption technologies, key management, and compliance frameworks such as SOC 2, ISO 27001, and GDPR.
• Excellent communication skills, able to translate complex security concepts to technical and non‑technical stakeholders.