Senior Security Engineer

Remote - United States & Canada

Engineering

Remote

Full-time

For millions of teams working in dozens of industries, day-to-day business gets done on the phone. So why — despite the huge leaps we've taken in design and usability — does most business phone software still look, feel, and act like it was born in the 90s? Quo is changing that.

We're a new type of business phone with a mission to help people communicate better and be more productive.

We're backed by Y Combinator and some of the best venture firms around including Tiger Global, Craft Ventures, Slow Ventures, and others. We take pride in providing an exceptional customer experience and a product people love, which is why we're excited that our customers have rated us the #1 VoIP Provider on G2.

Quo is the modern, sophisticated answer to the clunky, outdated phone systems that have been slowing down businesses for years. With thousands of happy customers and several rounds of funding in just five years, it's safe to say we're onto something big.

About the role

As a Senior Security Engineer at Quo, you will join our Core Engineering team to help expand our Security function. You will spend a majority of your time monitoring, architecting, and owning moderate to complex components. Beyond your technical work, you may also lead a small team or a project. You might also spend time providing technical guidance, code reviews, and design and delivering on small/medium size projects end-to-end.

Some of the things you'll do:

• Working with the Security and Infrastructure teams to select, implement and operate SEIM, SAST, DAST, vulnerability scanning and other tooling.
• Engage with product and engineering teams to perform security design reviews.
• Participate in code reviews.
• Conduct or coordinate training in secure coding practices.
• Participate in tabletop exercises for incident response.
• Collaborate on fraud detection, response and analysis.
• Supporting audit and compliance efforts for SOC2, HIPPA or related programs.

Technical stack and tools:

• Our backend is built on Node using Typescript.
• We use Kubernetes on AWS to orchestrate our infrastructure setup and deployment.
• The overall architecture is event-driven microservices with RabbitMQ at the center of it.
• We use a variety of databases for different purposes: Postgres, Snowflake, Mongo, Elastic, and Redis.
• We use Kong as our public API Gateway.
• Observability Tools: Datadog
• Other Tools: Figma, Linear, Notion, and Slack

About you

• Strong experience in Application Security, Security Operations, Incident Response or a directly related Information Security discipline.
• Experience with Typescript, or experience with object-oriented languages such as Java or C# and Javascript/Node.
• Experience hardening containerized cloud environments (k8s)
• You effectively communicate and document security standards, ensuring alignment across engineering, product, and compliance teams.
• Experience with observability tools, including metrics, structured logging and distributed tracing
• You take ownership of your work and understand the importance of communication. You hold yourself to a high standard and help empower others to do the same.
• You are intentional about how your work impacts customers, the community, and each other. You practice empathy, generosity, and thoughtfulness as you evaluate tradeoffs in pursuit of the best solution.
• You are curious. You better seek to understand the 'why' behind things, so that you can better plan and build the 'how'. You support your teammates and customers through the continuous pursuit of knowledge. You're a lifelong learner.
• When working in the infrastructure and codebase, you leave things better than you found them.
• You embrace AI and find ways to use it to improve your work, rather than shying away from it.

Compensation

The annual base salary range for this position in the US is $168,000 - $186,000 USD, and in Canada is $192,000 - $212,000 CAD, plus equity and benefits. This range is designed to align with market rates in areas where we are actively recruiting across the US and Canada.

The range displayed reflects the target for new hire salaries, and within this range, individual pay is determined by your skills and experience, as well as relevant education. Your recruiter can share more and answer questions about the specific salary range during the hiring process.

Salary is just one component of Quo's total compensation package. Your total rewards package will include equity, extensive medical coverage, a monthly lifestyle stipend, and a flexible PTO policy.

Who we are

As a fully remote company, we thrive asynchronously as a team. We are curious, ambitious, and dedicated to our work. We value trust above all else, and have a strong bias for action. If you're looking for a place to do your life's work, please get in touch. We'd love to hear from you.

And remember, there's no such thing as a 'perfect' candidate. We're looking for optimists with grit and determination, who are excited to face the challenges of a growing startup. Quo is the type of company where you can grow, and we encourage you to apply for this role even if you don't think you meet all the requirements.

We are committed to creating an inclusive and diverse work environment. It is important that you are able to bring your authentic self to work every day. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. #LI-Remote #PostLI