Security Engineer, Platform

Resend Inc.

Job Overview

Location

Americas / Remote / Full-time

Job Type

Full-time

Full Job Description

📋 Description

• Build and enhance the security foundations of Resend’s platform, focusing on API keys, service permissions, secrets management, tenant isolation, audit logs, and internal access controls.
• Design secure defaults for new services, workers, queues, databases, internal tools, and deployment pipelines to ensure security is embedded from inception.
• Improve detection and response capabilities for suspicious access patterns, leaked credentials, abnormal email sending behavior, privilege escalations, and sensitive system events.
• Review and evolve internal processes and pipelines to integrate security as a core component rather than an afterthought or bolt-on layer.
• Raise the overall security bar across the platform by identifying gaps and implementing practical, scalable solutions that align with engineering velocity.
• Collaborate with engineering teams to harden cloud infrastructure using tools such as AWS, Terraform, Kubernetes, and Cloudflare.
• Contribute to the development of security observability systems, alerting mechanisms, detection pipelines, and incident response workflows.
• Work closely with Trust & Safety, anti-abuse, fraud, and platform integrity teams to align security controls with platform-wide integrity goals.
• Support the company’s preparation for enterprise security reviews, SOC 2, ISO 27001, GDPR, and other compliance frameworks without burdening engineering teams with bureaucratic processes.
• Harden GitHub organizations, enforce package publishing policies, conduct dependency reviews, and mitigate supply-chain security risks for open source components.
• Apply knowledge of email infrastructure including domain verification, SPF, DKIM, DMARC, webhooks, and abuse prevention to secure Resend’s transactional email platform.
• Independently prioritize and drive daily security initiatives as the first dedicated security hire, balancing proactive hardening with reactive threat response.
• Advocate for developer experience by ensuring security controls are intuitive, non-intrusive, and seamlessly integrated into existing workflows.
• Participate in occasional team offsites, conferences, and meetups requiring travel within Americas or European timezones.
• Operate within a fully remote, low-ego, and autonomous culture that values direct communication, curiosity, and ownership of problems and solutions.

🎯 Requirements

• Experience securing production infrastructure, cloud environments, APIs, developer platforms, or multi-tenant SaaS products
• Ability to write code and comfortably read application, infrastructure, and deployment code
• Strong understanding of authentication, authorization, secrets management, IAM, logging, audit trails, incident response, and secure deployment pipelines
• Independence in prioritizing and driving day-to-day security initiatives as the first dedicated security hire
• Preference for practical, scalable improvements over heavy, process-heavy security frameworks
• Low-ego, direct, curious, and willing to learn from others

🏖️ Benefits

• 100% remote team with flexible working schedules
• Compensation range of $120,000 - $140,000 USD, commensurate with experience
• Modern tech stack including Next.js, Raycast, Notion, and similar tools
• Autonomy to "just ship it" with ownership over problems and solutions
• Opportunity to work with a fully remote team of 45 spanning 13 countries
• Participation in team offsites, conferences, and meetups with travel support

Skills & Technologies

JavaScript

Next.js

AWS

Kubernetes

Terraform

Remote

$120k-140k

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

Resend Inc.

Visit Website

About Resend Inc.

Resend Inc. provides cloud-based email infrastructure APIs for developers at high-growth companies. The platform offers REST endpoints and SDKs to send, receive, and track transactional and marketing emails while handling DNS, authentication, and deliverability monitoring. Features include real-time analytics, webhooks, suppression list management, and collaborative inboxes. Built on AWS SES with additional routing and observability layers, Resend targets SaaS teams needing reliable, developer-friendly email services without maintaining SMTP servers.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.