Lead Software Engineer, Security

About The Position

Requirements

• 5+ years of broad, hands-on experience across multiple security domains, with strong software engineering fundamentals; track record of leading cross-domain security projects end-to-end (from design through rollout and adoption)
• Proficiency in one or more programming languages (we use Python, Go, and C#); you write production-quality code and perform rigorous reviews for correctness and security
• Track record of partnering across product, platform, and business functions to drive company-wide security outcomes
• Proven ability to deliver holistic, scalable prevention across security domains (platform/cloud, applications, CI/CD, identity and endpoints), favoring paved roads and default guardrails over one-off fixes
• Ability to think like both an attacker and a defender — leveraging each perspective to strengthen the other and drive meaningful improvements in prevention, detection, and response

Nice To Haves

• Community contributions (research, talks/blogging/OSS) and hands-on bot/abuse mitigation experience are a plus

Responsibilities

• Deliver proactive, secure-by-default protections across the stack (cloud, CI/CD, applications, and endpoints) by creating paved roads and guardrails that reduce risk at scale and become the default way to build
• Provide practical security guidance on new products and technologies, emphasizing secure-by-default patterns that fit seamlessly into existing workflows
• Lead design reviews and threat modeling for high-impact features and services; identify risks early and ensure mitigations are designed in
• Build and scale security tooling that prevents issues at build/deploy time and automates detection and response in production
• Evolve our detection and incident response capabilities — improve signal quality, tune detections, and implement automated responders to reduce manual toil and time to contain
• Partner across business functions to strengthen company-wide security: endpoint and device trust, identity and email protections, security awareness and training, vendor reviews and risk assessments, and support for compliance (e.g., PCI/SOX)
• Protect SeatGeek from abuse and bots at the edge and app layers through layered defenses and tuning
• Lead and participate in notable security incidents and tabletops; improve runbooks, processes, and stakeholder communications after each event
• Mentor engineers, uplevel secure coding practices, and contribute to a positive, pragmatic security culture across the company

Benefits

• Equity stake
• Flexible work environment, allowing you to work as many days a week in the office as you’d like or 100% remotely
• A WFH stipend to support your home office setup
• Unlimited PTO
• Up to 16 weeks of fully-paid family leave
• 401(k) matching
• Student loan matching program
• Health, vision, dental, and life insurance
• Up to $25k towards family building, reproductive health services and Gender-affirming care
• $500 per year for wellness expenses
• Subscriptions to Headspace (meditation), Headspace Care (therapy), and One Medical
• $120 per month to spend on tickets to live events
• Annual subscription to Spotify, Apple Music, or Amazon music