ProductSecurityEngineer

ABOUT THE ROLE At StackAI, security is how we earn the trust of the enterprises building AI assistants on our platform. We're hiring a hands-on (Senior) Product Security Engineer to design, build, and harden the secure architecture at the core of the product, working as a technical partner to our Core engineering lead. This is a hands-on engineering role. You'll write production code and own the security-critical systems the whole platform depends on: encryption and key management, customer data protection, and how security is built into the way every team ships. If you want deep ownership of these systems and the chance to harden and scale them as the platform grows, we'd love to meet you. WHAT YOU'LL DO - Own encryption and signing. Take ownership of our KMS, key management, BYOK, envelope encryption, and signing pipeline across both cloud and on-prem deployments—operating, hardening, and evolving them as the platform scales. - Protect the most sensitive customer data. Extend our PHI/PII scrubbing and strengthen the data-protection foundations that regulated enterprises already rely on. - Secure the storage layer. Own encryption at rest and tenant isolation. - Keep security the default in how we ship. Maintain and expand the secure-by-default templates and reference implementations embedded in our SDLC—the ones engineers actually want to adopt. - Threat-model the platform. Lead threat modeling on the seams between systems (the execution engine, connector trust boundaries, and multi-tenant isolation), using modern, AI-assisted threat-modeling tooling. - Raise the bar on tooling. Push our scanning further on coverage, signal, and CI enforcement, so critical findings never reach production. - Be the technical point of contact for security standards. Translate audit, compliance, and incident-response requirements into real implementation in our codebase. WHAT WE'RE LOOKING FOR - 4+ years building security-critical systems in production, with significant time spent imp