Staff Security Engineer
We're transforming the grocery industry
Instacart is the North American leader in online grocery and one of the fastest-growing companies in e-commerce. Since 2012, we’ve been working towards creating a world where everyone has access to the food they love and more time to enjoy it together.
Groceries delivered to your door in as little as an hour. It seems simple, right? Well, it’s more complex than that. From re-routing deliveries during snowstorms, to connecting customers with coupons and deals for their favorite brands, to updating over half a billion grocery data lines every night...our efforts bring Instacart closer to being the operating system for the grocery industry.
Solving these problems is what helps our customers get back time in their day, so they can do more of what they love.
Introducing Our Hybrid Working Model
As the future of work evolves, so do we. We have a hybrid model where our roles are open to in-office, flex, or remote work. Learn more about our flexible approach to where we work.
OVERVIEW
We're looking for experienced Security Engineers to join our fast moving team. We work on a range of interesting and challenging problems, from supporting thousands of concurrent shoppers and processing millions of data points in real time, to determining the best route for deliveries and predicting store inventory levels.
Our goal is to run the world's most trusted and secure grocery delivery platform. We work across all layers of our infrastructure to ensure we deploy trustworthy systems and protect our customers’, shoppers’, and partners’ data.
As one of the early members of the Security Team, you will have a tremendous impact on Instacart's security posture and engineering culture. This is a great opportunity for someone who wants to have a large sense of ownership, grow extraordinarily in their career, develop cross-functional technical and soft skills. Our platform is complex, rapidly scaling and processing millions of transactions in real-time, all of the time.
ABOUT THE JOB
- Delivering and executing a compelling security strategy spanning across multiple product teams and acquisitions
- Evaluate, prototype, implement, and support security-focused tools and services
- Partner with senior leaders across Instacart to help deliver company-wide security initiatives
- Oversee the analysis of business requirements and the interpretation into security deliverables
- Maintain strong knowledge of current security threats, mitigations and operational best practices
- Lead cross-functional projects and establishing cutting-edge security development lifecycle practices
- Develop new secure security protocols, frameworks and reference architecture spanning multiple layers
- Provide consultation in security architecture design/review of new products and services
- Establish credibility as a trusted advisor to stakeholders including partners, executives, and peers
ABOUT YOU
- 8+ years of technical security leadership at top-tier cloud-native companies
- 8+ years of experience with cryptography, security products, threat modeling, security design, infrastructure security, security architecture, PKI, and broader security technologies
- 8+ years of relevant Security Engineering experience within a technology organization, including software development, cloud computing and mobile applications
- Experience with large-scale web applications and backend services, including API design, access management, authorization, authentication, data protection and encryption
- Experience defining security policy, technology requirements, and security best-practices
- Solid understanding of common application and infrastructure security vulnerabilities and mitigations
- Experience implementing SDLC process, technology, and automation in a DevOps environment
- Superior communication skills - ability to serve as a security advocate and evangelist
- Demonstrated technical foundation (Computer Science / Engineering degree or equivalent) with a business-savvy mindset and an innate ability to translate technical vulnerabilities into comprehensive organizational risks for senior leadership
- Strong ties with the broader security community to attract and hire great talent
- Bonus Points – Active contributor to the security community (Security research, CVEs, bug-bounty recognitions, open-source, blogs, publications…)
#LI-Remote