Job Overview
Location
Austin, TX, United States; Chicago, IL, United States; Dallas, TX, United States; Denver, CO, United States; Los Angeles, CA, United States; San Diego, CA, United States; San Francisco, CA, United States
Job Type
Full-time
Category
Software Engineering
Date Posted
June 3, 2026
Full Job Description
đź“‹ Description
- • Partner with engineering and product teams to embed security practices from the earliest stages of feature design, including participation in design reviews and threat modeling.
- • Balance delivery speed with security requirements by communicating risks clearly to non-technical stakeholders and determining appropriate trade-offs between velocity and security posture.
- • Identify, assess, and mitigate security risks introduced by AI tools, AI-generated code, and AI system integrations across the development lifecycle.
- • Apply AI-assisted tooling (e.g., GitHub Copilot, Claude Code) to accelerate security tasks including code review, vulnerability triage, threat detection, and documentation generation.
- • Configure, tune, and maintain SAST, SCA, and DAST security tooling within CI/CD pipelines built on GitHub Actions or Azure DevOps YAML.
- • Conduct risk and vulnerability assessments of web applications, APIs, third-party suppliers, and integrations to ensure secure third-party dependencies.
- • Collaborate with external penetration testing firms to validate findings, prioritize remediation efforts, and track resolution progress.
- • Assist in implementing and refining security alerting, detection rules, and automation workflows to improve incident response and reduce manual toil.
- • Support operational security initiatives including EDR alerts, MDM configurations, and corporate IT security process improvements.
- • Deliver and facilitate security training sessions for developers and cross-functional teams to build organizational security awareness and capability.
- • Contribute to the evolution of Karbon’s security roadmap by identifying gaps, proposing solutions, and measuring progress through defined security metrics.
- • Work across multiple security domains with flexibility—ranging from cloud infrastructure reviews to application security assessments to corporate endpoint security.
- • Build trust and relationships across the organization to foster a culture of shared security ownership and proactive collaboration.
- • Take full ownership of security outcomes, ensuring high-quality, reliable, and customer-impacting solutions from design through post-release support.
- • Maintain up-to-date knowledge of emerging security technologies and foundational practices such as least privilege, MFA, account hygiene, and attack surface reduction.
- • Bring authenticity, curiosity, and creativity to the team, contributing positively to a culture of transparency, low bureaucracy, and mutual respect.
- • Help shape Karbon’s AI-enabled engineering culture by confidently integrating AI tools into security workflows while upholding strong technical fundamentals.
🎯 Requirements
- • 4+ years of experience in security or development roles with hands-on work in application security, cloud security, and secure software development practices
- • Proven experience collaborating with engineering teams to review designs, implement security controls, and remediate vulnerabilities
- • Working knowledge of at least one major cloud platform (Azure, AWS, or GCP), with Azure preferred
- • Proficiency in at least one programming language or framework: .NET/C#, JavaScript (React/EmberJS), or Python
- • Experience using AI-assisted development tools such as GitHub Copilot, Claude Code, or similar
- • Demonstrated ability to configure and tune SAST, SCA, DAST tools and integrate them into CI/CD pipelines
🏖️ Benefits
- • Flexible Time Off with encouragement to use at least 4 weeks per year
- • Company-paid medical, dental, and vision coverage for employee and eligible dependents
- • 401(k) with company matching
- • Up to 8 weeks paid parental leave
- • Work-from-home stipend
- • Opportunity to gain global experience working with teams across the US, Australia, New Zealand, UK, and Canada
Skills & Technologies
About Karbon, Inc.
Karbon provides cloud-based practice management software for accounting firms. Its platform combines email, workflow, tasks, client management, and team collaboration in one system. Features include work templates, time and budget tracking, client portals, and integrations with QuickBooks, Xero, and other tools. Designed for mid-sized and larger accounting practices, Karbon centralizes communication and standardizes processes to improve efficiency and visibility across client engagements. Founded in 2014, the company is headquartered in San Francisco with offices in Sydney and Toronto.
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
Similar Opportunities
8 months ago
2 months ago
Anyone AI Inc.
13 days ago
