ARCHIVED
This job listing has been archived and is no longer accepting applications.
MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Lead Security Engineer

Coderabbit

San Francisco, CA, United States Remote permanent

Posted: January 7, 2026

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Quick Summary

We are looking for a Lead Security Engineer to join our team in San Francisco, CA, USA.

Required Skills

Security Incident Response Threat Modeling Secure Design Reviews CI/CD Integration Incident Commander Tools & Automation Developer-Centric Approach Compliance & Policy

Job Description

About CodeRabbit

CodeRabbit is an innovative research and development company focused on building extraordinarily productive human-machine collaboration systems. Our primary goal is to create the next generation of Gen AI-driven code reviewers: a symbiotic partnership between humans and advanced algorithms that significantly outperforms individual engineers. We combine language models with human ingenuity to push the boundaries of software development efficiency and quality.

Role Overview:

CodeRabbit is on a mission to empower developers with lean, high-performance tools—they move fast, and so do the threats. That's why we're looking for a battle-tested Lead Security Engineer who’s been in the trenches and can architect, harden, and defend our infrastructure, tooling, and ecosystem.

As our Lead Security Engineer, you’ll lead security engineering at CodeRabbit, infusing security into every layer of our product and infrastructure. You become the steward of resilience, incident response, and proactive defense at scale.

Responsibilities:

• Own the security roadmap — craft and execute a strategic security engineering plan that aligns with CodeRabbit’s fast-paced engineering cadence.

• Boost resilience — champion defense-in-depth tactics: threat modeling, secure design reviews, hardening, CI/CD integration.

• Be Incident Commander — spearhead security incident response and recovery: triage, resolve, root cause, and turn those learnings into stronger systems.

• Tools & automation — build or integrate security tooling (SAST, DAST, SIEM, EDR, monitoring) into the developer workflow without slowing delivery.

• Embed security fluently — partner with engineering and product teams to bring secure practices early into planning and daily workflows.

• Talent & culture — help to hire, coach, and mentor a scrappy, resilient security engineering team; elevate security awareness across the company.

• Compliance & policy — establish security standards, frameworks, or processes that evolve as we scale—but remain lean and developer-friendly.

Qualifications:

• Battle-tested experience: 8+ years in security engineering, incident response, or correlated fields—bonus if you've led through a major production breach or targeted attack.

• Technical depth: Extensive experience with security across software and infrastructure—threat modeling, pen testing, secure CI/CD pipelines, cloud security, incident response.

• Strategic mindset: Ability to translate risk into actionables, communicate trade‑offs with engineering/product leadership.

• Praxis over theory: You’ve taken production systems down (intentionally or unintentionally) and built them back stronger.

• Security in chaos: Experience in pressure situations—with clarity, direction, and calm.

• Developer‑centric approach: You can speak fluent dev-tools, empathize with fast-moving teams, and secure them without slowing them down.

Bonus Points:

• You’ve implemented DevSecOps tooling and orchestrated shift‑left security in developer pipelines.

• You’ve recovered from (or prevented) a critical security event, and turned that into an engineering culture improvement.

• Experience in a dev‑tools, SDK, or platform-heavy company.

• Hacker mindset + operational discipline - pentests, disaster recovery, threat hunting, tooling, cloud environments.

• Certifications like CISSP, CISM, CEH, or relevant cloud security certs.

Why Join Us?

• Defend a Developer-First Future: At CodeRabbit, you’re not just protecting infrastructure—you’re securing the next evolution of developer tools. Help fortify a product that’s reshaping how code gets reviewed.

• Real Authority & Ownership: You won’t be on the sidelines. As Lead Security Engineer, you’ll define the security roadmap, lead critical incident responses, and gain full ownership of outcomes—from threat modeling to hardened deployment.

• Impact at Velocity: Join an agile, cross-functional squad of engineers, designers, and researchers. You’ll move fast but not recklessly - embedding security in every release without slowing delivery.

• Build, Break, Rebuild Stronger: Ideal for someone battle-tested; someone who's faced breaches, recovered systems, and evolved engineering culture through adversity.

• Grow and Lead: We're investing in you. This role offers ongoing leadership development, mentorship opportunities, and real ownership as you eventually scale your team and operations.

• Compensation That Reflects Responsibility: We deliver a competitive package—salary, equity, and benefits—to match the importance and intensity of this role.

• Hybrid Culture That Adapts to You: We collaborate in person in the Bay Area every week, but leave room for remote heads-down focus. It’s security, not surveillance.

Our Values

• 🤝 Collaborative Humans: Prioritizing collective intelligence

• 🚀 Fearless Innovators: Turning obstacles into growth opportunities

• 💪 Persistent, Passionate Developers: Thriving on complex, long-term challenges

• 🎯 Impact-Driven Creators: Crafting intuitive tools for developers

• 🧠 Rapid Learners and Un-learners: Adapting quickly in our fast-paced technological world

Apply Now — If you're excited to build tools that blend intelligent systems with world-class software engineering, we'd love to meet you.

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply