Jobs Companies Zip Senior Security Engineer

About this Senior Security Engineer role at Zip

Zip · Hybrid · San Francisco

About Zip

Zip is the AI platform for enterprise procurement — built for humans and agents working together. By orchestrating procurement across teams, tools, and suppliers with the help of AI agents, companies can secure the resources they need to innovate faster than ever before.

The world’s most influential enterprises trust Zip, including T-Mobile, OpenAI, AMD, Mars, Dollar Tree, and more. Together they’ve saved over $8 billion and processed over $500 billion in spend. Zip’s team includes product leaders from Apple, Airbnb, and Meta, as well as former procurement leaders from United Health, Sanofi, MGM Resorts, Discover, and NASA.

Backed by Adams Street, Alkeon, BOND, CRV, DST, Tiger Global, and Y Combinator, Zip has raised $371 million, most recently at a $2.2 billion valuation and has been recognized by Forbes Fintech 50, Fast Company's Most Innovative Companies, Inc. Best in Business, and LinkedIn Top Startups.

Your Role

The Security team at Zip is responsible for protecting the confidentiality and integrity of our customers' data. As a Security Engineer, you'll take on a dynamic, high-impact role focused on securing the cloud infrastructure that Zip runs on. You'll lead efforts to harden our AWS environment, build foundational security guardrails, and launch key initiatives that solidify the trust customers place in us. Your contributions will be pivotal to the success of Zip's rapid growth as we launch new products, such as AI Agents and an App Marketplace, and enter new markets. We move quickly to solve a wide range of complex technical challenges. While we're an experienced team that provides constant guidance and mentorship, we value engineers who can autonomously scope and solve hard problems.

You Will

  • Design, harden, and operate Zip's AWS architecture – multi-account structure, VPC networking, IAM, and KMS, to eliminate or mitigate entire classes of misconfiguration and vulnerability.

  • Build and maintain golden images and a patch management program across our compute fleet (EC2, containers, and Kubernetes nodes) so infrastructure stays current and secure by default.

  • Codify security into infrastructure as code and CI/CD pipelines through secure baselines, drift detection, and policy-as-code.

  • Lead cloud security initiatives spanning workload identity, secrets management, vulnerability management, and logging and detection across our AWS footprint.

  • Partner on secure design through architecture reviews, threat models, and hands-on assessments of cloud services and infrastructure.

  • Validate, triage, and coordinate security findings from bug bounty, third-party pentests, and cloud security posture scans.

  • Mentor security analysts and security champions on cloud security best practices and techniques.

Qualifications

  • Hands-on experience designing and securing AWS environments, including IAM, VPC networking, KMS, and core services.

  • Experience writing production-quality code for security tooling, automation, and infrastructure as code. At Zip, our stack includes Python, Terraform, Kubernetes, and AWS.

  • Familiarity with containers and Kubernetes security.

  • Strong written and verbal communication with internal and external stakeholders.

  • A solid understanding of security risk and the ability to balance security with business requirements.

  • Has to be a US citizen or permanent resident.

Nice to haves

  • Familiarity with compliance frameworks such as SOC 2, ISO 27001, and ISO 42001

  • Hands-on experience in offensive security (eg, through bug bounty programs or CTFs)

The salary range for this role is $160,000 - $240,000. The salary for this position is determined based on a variety of job-related factors that may include location, relevant experience, education, or particular skills and expertise.

Perks & Benefits

At Zip, we’re committed to providing our employees with everything they need to do their best work.

  • 📈 Start-up equity

  • 🦷 100% health, vision & dental coverage options

  • 🍽️ Catered breakfast, lunch, & dinner

  • 🌴 Flexible PTO

  • 🏋️‍♀️ ClassPass membership

  • 🚍 Monthly commuter benefit

  • 🚠 Team building events & happy hours

  • 💻 Home office stipend

  • 🛜 Phone/internet reimbursement

  • 🍼 Paid parental leave

  • 🧑‍🧑‍🧒‍🧒 Fertility stipend

  • 💸 401k plan

  • 🤖 Unlimited AI token usage

We're looking to hire Zipsters and that means hiring people who take ownership, communicate openly, have an underdog mindset, and are excited to increase the pace of innovation for every business in the world. We encourage all candidates to apply even if your experience doesn't exactly match up to our job description. We are committed to building a diverse and inclusive workspace where everyone (regardless of age, religion, ethnicity, gender, sexual orientation, and more) feels like they belong. We look forward to hearing from you!

Ready to apply to Zip?
Apply to Zip

How this Security Engineer salary compares

This role pays $200,000/yrin line with the typical range for Security Engineer roles.

$177,500 median $231,500 $339,000

Typical range $198,000–$267,300/yr, from 208 comparable Security Engineer listings on JobsRadar (pay annualized to USD). See Security Engineer salary insights →

Similar jobs

CD
Security Engineer
Chai Discovery
⚡ Apply early San Francisco office Onsite
● New 👁 Seen ✓ Applied 8h ago
Anthropic
Platform Security Engineer, OpenBMC
Anthropic
⚡ Apply early San Francisco, CA | New York C... Onsite $405,000–$405,000
● New 👁 Seen ✓ Applied 2d ago
Block
Principal Security Engineer
Block
⚡ Apply early Bay Area, CA, United States of... Onsite $319,000–$478,600
● New 👁 Seen ✓ Applied 2d ago
Aurora Innovation
Staff Security Engineer, Enterprise Security Engineering
Aurora Innovation
⚡ Apply early San Francisco, California Onsite $189,000–$303,000
● New 👁 Seen ✓ Applied 3d ago
Aurora Innovation
Staff Security Engineer, Enterprise Security Architecture
Aurora Innovation
⚡ Apply early San Francisco, California Onsite $189,000–$303,000
● New 👁 Seen ✓ Applied 3d ago
Aurora Innovation
Senior Cloud Security Engineer
Aurora Innovation
⚡ Apply early San Francisco, California Onsite $162,000–$235,000
● New 👁 Seen ✓ Applied 3d ago
Anthropic
Staff+ Application Security Engineer
Anthropic
⚡ Apply early Remote-Friendly (Travel-Requir... · location restricted $320,000–$485,000
● New 👁 Seen ✓ Applied 3d ago
Pinterest
Security Software Engineer II, Detection and Response
Pinterest
⚡ Apply early San Francisco, CA, US; Remote,... · location restricted $123,696–$254,667
● New 👁 Seen ✓ Applied 3d ago
Nooks
Security Engineer
Nooks
⚡ Apply early San Francisco Hybrid $200,000–$315,000
● New 👁 Seen ✓ Applied 3d ago

Sign up for suggestions tailored to the jobs you open and the searches you save.

Apply now
🤖

Whoa — hold up

JobsRadar was built for real people having a rough time in their job search — not for automated requests. You're clicking way too fast and you're now temporarily blocked.

Come back later. If you're genuinely job hunting, we've got your back — just act like a human.

Catch your next role the second it’s posted.

Create a free account and we’ll watch the boards for you — the instant a job matches your search, it lands in your inbox or Telegram. No digging, no refreshing.

Create free account

Free forever · takes 30 seconds · already have one?

Get an edge on your job hunt.

Join our Telegram channel for the stuff that helps you land the role — salary benchmarks, the weekly market pulse, and new-feature drops. No spam, just signal.

Join the channel — it's free