Staff Product Security Engineer

4 weeks ago


San Francisco, United States Discord Full time

Discord empowers people to create spaces where they can find a sense of belonging in their lives. Millions of people trust Discord to keep their communications secure, private, and out of the hands of evildoers, so security and privacy are necessary to Discord's success. 

We are looking for a Security Engineer reporting to the Product Security Engineering Manager to join our team in building a secure and protected platform for Discord's users. If you are an Engineer with a wealth of experience making the secure way the easy way, a deep sense of curiosity, and an endless desire to improve Discord, read on 

What You'll Be Doing

  • Design and develop technical solutions to find and address security issues (including libraries and frameworks).
  • Build tools with an emphasis on self-service, automation, and performance, to help identify and mitigate application security flaws.
  • Perform reviews ranging from architectural design to threat modeling and source code level assessments, providing recommendations to make our products more secure.
  • Review development frameworks for security functionality, consistency, and uplift opportunities.
  • Deep-dive into the architectural and technical aspects of new projects, providing expert security guidance and/or writing technical security controls
  • Discover weaknesses in Discord by using both manual and automated methods (code reviews, threat models, static scans, penetration tests).

You Will Thrive In This Role If

  • You have 5+ years experience securing production applications.
  • You have 5+ years of experience with application security tooling and processes, including code review, static code analysis, penetration testing, and risk management.
  • You have 5+ years of experience programming in at least one general purpose programming language (e.g. Python, Rust, Go).
  • You have experience leading multiple security projects with a cross-functional group.
  • Expertise with common application vulnerabilities on the platforms Discord ships on (that's all of them).
  • You are well-experienced implementing and using application security tools.
  • You have experience operating in cloud-based environments (we use Google Cloud, but experience with other platforms is ok too).
  • You are an expert at reasoning about the security of complex systems, even if they contain components you aren't familiar with.
  • Experienced with Threat Modeling and analyzing complex designs.

Bonus Points

  • Experience programming in at least one systems programming language (e.g. C, C++).
  • Experience with Linux system administration (we use Ubuntu).
  • Experience developing, operating, and debugging distributed systems.


#LI-Remote

The US base salary range for this full-time position is $223,000 to $245,500 + equity + benefits. Our salary ranges are determined by role and level. Within the range, individual pay is determined by additional factors, including job-related skills, experience, and relevant education or training. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include equity, or benefits.

About Us

Discord is a voice, video and text app that helps friends come together to hang out, have fun, and play games. With over 150 million monthly users, Discord has grown to become one of the most popular communications services in the world. Discord offers a premium subscription called Nitro that gives users special perks like higher quality streams and fun customizations.

We’re working toward an inclusive world where no one feels like an outsider, where genuine human connection is a click, text chat, or voice call away. A place where everyone can find belonging. Challenging? Heck yes. Rewarding? Double heck yes. It’s a mission that gives us the chance to positively impact millions of people all over the world. So if this strikes a chord with you, come build belonging with us



  • San Francisco, United States Opal Security Full time

    Opal is building the next generation of access management. We've all felt the pain of not getting the access we need to do our job. At Opal, we’re building a central hub for authorization to make access management automated, intelligent, and easy to use. We are taking an age old problem in enterprise software and making it simple. Our product prioritizes...


  • San Francisco, CA, United States Opal Security Full time

    Opal is building the next generation of access management. We've all felt the pain of not getting the access we need to do our job. At Opal, we’re building a central hub for authorization to make access management automated, intelligent, and easy to use. We are taking an age old problem in enterprise software and making it simple. Our product prioritizes...


  • San Francisco, United States Abnormal Security Full time

    Job DescriptionJob DescriptionAbout the RoleAbnormal Security is looking for a Staff Software Engineer to drive large initiatives for our core R&D divisions. Our team builds the reusable components such as Account Management, Notifications and Feature Flags to enable other teams to rapidly develop their applications. At Abnormal, we keep our...


  • San Francisco, United States Abnormal Security Full time

    Job DescriptionJob DescriptionAbout the RoleAbnormal Security is looking for a Staff Software Engineer to drive large initiatives for our core R&D divisions. Our team builds the reusable components such as Account Management, Notifications and Feature Flags to enable other teams to rapidly develop their applications. At Abnormal, we keep our...


  • San Francisco, United States Discord Full time

    Discord empowers people to create spaces where they can find a sense of belonging in their lives. Millions of people trust Discord to keep their communications secure, private, and out of the hands of evildoers, so security and privacy are necessary to Discord's success. We are looking for a Security Engineer reporting to the Product Security Engineering...


  • San Francisco, California, United States Block Full time

    Company DescriptionBlock is one company built from many blocks, all united by the same purpose of economic empowerment. The blocks that form our foundational teams - People, Finance, Counsel, Hardware, Information Security, Platform Infrastructure Engineering, and more - provide support and guidance at the corporate level. They work across business groups...


  • San Francisco, CA, United States Discord Full time

    Discord empowers people to create spaces where they can find a sense of belonging in their lives. Millions of people trust Discord to keep their communications secure, private, and out of the hands of evildoers, so security and privacy are necessary to Discord's success. We are looking for a Security Engineer reporting to the Product Security Engineering...


  • San Francisco, United States Opal Security Full time

    Opal is building the next generation of access management. We've all felt the pain of not getting the access we need to do our job. At Opal, we’re building a central hub for authorization to make access management automated, intelligent, and easy to use. We are taking an age old problem in enterprise software and making it simple. Our product prioritizes...


  • San Francisco, United States Opal Security Full time

    Opal is building the next generation of access management. We've all felt the pain of not getting the access we need to do our job. At Opal, we’re building a central hub for authorization to make access management automated, intelligent, and easy to use. We are taking an age old problem in enterprise software and making it simple. Our product prioritizes...


  • San Francisco, CA, United States Discord Full time

    Discord empowers people to create spaces where they can find a sense of belonging in their lives. Millions of people trust Discord to keep their communications secure, private, and out of the hands of evildoers, so security and privacy are necessary to Discord's success. We are looking for a Security Engineer reporting to the Product Security...


  • San Francisco, CA, United States Opal Security Full time

    Opal is building the next generation of access management. We've all felt the pain of not getting the access we need to do our job. At Opal, we’re building a central hub for authorization to make access management automated, intelligent, and easy to use. We are taking an age old problem in enterprise software and making it simple. Our product prioritizes...


  • San Francisco, California, United States Block Full time

    Company DescriptionBlock is one company built from many blocks, all united by the same purpose of economic empowerment. The blocks that form our foundational teams - People, Finance, Counsel, Hardware, Information Security, Platform Infrastructure Engineering, and more - provide support and guidance at the corporate level. They work across business groups...


  • San Francisco, United States Hex Full time

    === Excerpt: Design and implement scalable security infrastructure and help build a culture of security for a rapidly growing team. Status: Open === About the role Don’t you wish the security practice at your company was more modern, effective and not chasing its tail? Are you excited by the idea of tackling novel security problems while empowering a...


  • San Francisco, United States Hex Full time

    === Excerpt: Design and implement scalable security infrastructure and help build a culture of security for a rapidly growing team. Status: Open === About the role Don’t you wish the security practice at your company was more modern, effective and not chasing its tail? Are you excited by the idea of tackling novel security problems while empowering a...


  • San Francisco, California, United States Crusoe Energy Systems Full time

    Crusoe Energy is on a mission to unlock value in stranded energy resources through the power of computation.Take a look at what we do - We aim to align the long term interests of the climate with the future of global computing infrastructure. As data centers consume an exponentially growing power footprint to deliver technology to all connected devices, we...


  • San Francisco, California, United States Crusoe Energy Systems Full time

    Crusoe Energy is on a mission to unlock value in stranded energy resources through the power of computation.Take a look at what we do - We aim to align the long term interests of the climate with the future of global computing infrastructure. As data centers consume an exponentially growing power footprint to deliver technology to all connected devices, we...


  • San Francisco, California, United States Crusoe Energy Systems Full time

    Crusoe Energy is on a mission to unlock value in stranded energy resources through the power of computation.Take a look at what we do - We aim to align the long term interests of the climate with the future of global computing infrastructure. As data centers consume an exponentially growing power footprint to deliver technology to all connected devices, we...


  • San Francisco, California, United States Crusoe Energy Systems Full time

    Crusoe Energy is on a mission to unlock value in stranded energy resources through the power of computation.Take a look at what we do - We aim to align the long term interests of the climate with the future of global computing infrastructure. As data centers consume an exponentially growing power footprint to deliver technology to all connected devices, we...


  • San Francisco, United States Square Full time

    Company Description Founded in July 2021, TBD is one of Block's four business units, alongside Square, Cash App, and TIDAL.  At TBD, we believe in a decentralized future that returns ownership and control over your finances, data, and identity. Guided by this vision, TBD is building an open source platform and developer infrastructure that enables everyone...


  • San Francisco, United States Square Full time

    Company Description Founded in July 2021, TBD is one of Block's four business units, alongside Square, Cash App, and TIDAL.  At TBD, we believe in a decentralized future that returns ownership and control over your finances, data, and identity. Guided by this vision, TBD is building an open source platform and developer infrastructure that enables everyone...