Software Engineer - Security

📋 Description

• • Perplexity is at the forefront of revolutionizing information discovery, and to maintain this cutting-edge advantage, robust security is paramount. We are seeking a highly skilled and hands-on Software Engineer to join our dynamic team, focusing on the critical mission of building and evolving the sophisticated software, automations, and systems that underpin our security operations. This role is not just about maintaining security; it's about proactively engineering innovative solutions, including internal AI-driven agents, that significantly enhance our detection and response capabilities, streamline vulnerability management, and elevate the overall security posture of our products and infrastructure.
• • As a Software Engineer on our security team, you will be instrumental in designing, building, and maintaining the essential software and automation infrastructure that powers our detection and response program. This includes developing intelligent alert enrichment systems, creating efficient triage workflows, and crafting robust investigation tooling. Your work will directly contribute to our ability to swiftly identify, analyze, and mitigate security threats, ensuring the resilience of our platform.
• • A key aspect of this role involves implementing and enhancing our internal AI agents and security bots. These intelligent systems will be designed to assist with a wide range of security operations tasks, from continuous monitoring and in-depth investigations to automated reporting and proactive threat hunting. By leveraging AI, we aim to augment our security team's capabilities, enabling them to focus on more complex challenges and strategic initiatives.
• • You will also play a pivotal role in developing and operating the systems and workflows that support our bug bounty and vulnerability disclosure program. This encompasses the entire lifecycle of vulnerability management, from the initial intake and meticulous triage of reported issues to their prioritization and the tracking of remediation efforts. Your contributions will ensure that we efficiently address security vulnerabilities, maintaining the trust of our users and partners.
• • Collaboration is at the heart of our security philosophy. You will partner closely with our product and engineering teams to conduct thorough threat modeling for new features and systems. This proactive approach involves identifying potential security risks early in the development lifecycle, proposing effective mitigations, and embedding security guardrails directly into designs and implementations. By fostering a security-first mindset across the organization, you will help us build secure-by-default products.
• • Furthermore, you will contribute to the development and maintenance of secure-by-default libraries, services, and architectural patterns. The goal is to create reusable components and best practices that empower other engineering teams to build secure features with ease, reducing the burden of security implementation and promoting consistency across our codebase.
• • Integrating diverse security signals is crucial for comprehensive visibility. You will build and manage pipelines that ingest and correlate security signals from various sources, including cloud environments, endpoints, SaaS applications, and internal services. These cohesive data models will be the foundation for advanced detection, analysis, and incident response.
• • Automation is a key lever for efficiency in security operations. You will develop automation to significantly reduce manual effort in critical incident response processes, including containment, eradication, and remediation. By automating repetitive tasks, we can accelerate our response times and minimize the impact of security incidents.
• • This role offers a unique opportunity to collaborate with a talented team of security engineers and software engineers. You will actively participate in design and code reviews, providing constructive feedback and continuously improving our security tooling and platforms. Your insights and contributions will directly shape the future of Perplexity's security engineering capabilities.
• • We are looking for an individual who is not only technically proficient but also possesses a strong sense of ownership and a pragmatic approach to problem-solving. The ability to work effectively within cross-functional teams and deliver high-impact improvements is essential for success in this role. You will have the autonomy to own projects from inception to completion, making a tangible difference in the security and reliability of Perplexity's services.