Software Engineer, Security

Glean • San Francisco Bay Area • 1m ago

Why This Job is Featured on The SaaS Jobs

Security engineering roles in SaaS are increasingly defined by product surface area: identity, APIs, service-to-service communication, and data access patterns that evolve as platforms add integrations and new features. This position stands out because it is anchored in foundational controls—authentication, authorization, and secure storage—rather than perimeter-only work, reflecting how modern SaaS security is built into core application architecture. The hybrid SF Bay Area setup also suggests close collaboration with product and engineering stakeholders where security decisions are made.

For a long-term SaaS career, the remit offers durable leverage. Building automated security testing, running code reviews, and participating in incident response develops the practical loop between prevention, detection, and recovery that SaaS companies rely on for trust and uptime. Experience applying OWASP principles and cloud/container security across a production codebase is broadly transferable across B2B SaaS, especially for teams operating microservices and API-heavy products.

This role is best suited to an engineer who prefers hands-on implementation over policy-only security, and who is comfortable influencing development workflows through reviews, tooling, and standards. It fits someone who enjoys cross-functional problem solving and wants to own security outcomes across both small fixes and larger platform capabilities.

The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.

Job Description

About the Role:

Glean is seeking a talented security-focused software engineer to join our growing team. In this role, you will play a critical role in developing and maintaining the security foundation of our platform. You will be responsible for designing, implementing, and testing security features across various software components.

You will:

Design, develop, and maintain secure software for core platform functionalities, particularly focusing on:
- Authentication and authorization systems
- Secure communication channels between services (e.g., API security)
- Secure data storage and access controls
Collaborate with cross-functional teams (engineering, product) to integrate security best practices throughout the development lifecycle.
Stay up-to-date on the latest security threats, vulnerabilities, and mitigation strategies.
Conduct security code reviews and identify potential security risks in existing codebases.
Develop and implement automated security testing procedures.
Respond to security incidents and participate in incident response procedures.
Continuously improve the platform's security posture by identifying and implementing security enhancements.
Document security processes, procedures, and best practices.

About you:

BA/BS in computer science, or related degree, MS a strong plus
Minimum 5+ years of experience in software development with a strong focus on security aspects
Proven experience in designing and implementing secure authentication and authorization systems
In-depth understanding of secure coding principles and best practices (e.g., OWASP Top 10)
Experience with secure communication protocols (e.g., TLS/SSL)
Familiarity with security testing tools and methodologies (e.g., static code analysis, penetration testing)
Excellent problem-solving and analytical skills
Strong communication and collaboration skills
Ability to work independently and as part of a cross-functional team
Passion for security and a commitment to building secure and reliable systems

Key knowledge and skills

Thrive in a customer-focused, tight-nit and cross-functional environment - being a team player and willing to take on whatever is most impactful for the company is a must.
A proactive and positive attitude to lead, learn, troubleshoot and take ownership of both small tasks and large features.
An interest/desire to learn and own various aspects of security.
Strong coding skills (for example in Go/Python/Java/C++ etc) with an emphasis on designing for reliability and scale, and writing well-tested components.
Experience with cloud security principles and tools (AWS Security, GCP Security)
Experience with container security (Docker Security, Kubernetes Security)

Location:

This role is hybrid (3-4 days a week in one of our SF Bay Area offices)

Compensation & Benefits:

The standard base salary range for this position is $185,000 - $280,000 annually. Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for variable compensation, equity, and benefits.

We offer a comprehensive benefits package including competitive compensation, Medical, Vision, and Dental coverage, generous time-off policy, and the opportunity to contribute to your 401k plan to support your long-term goals. When you join, you'll receive a home office improvement stipend, as well as an annual education and wellness stipends to support your growth and wellbeing. We foster a vibrant company culture through regular events, and provide healthy lunches daily to keep you fueled and focused.

We are a diverse bunch of people and we want to continue to attract and retain a diverse range of people into our organization. We're committed to an inclusive and diverse company. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race.

#LI-HYBRID

Apply