Senior Security Engineer

At Vanta, our mission is to help businesses earn and prove trust.We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without it. 

As a Senior Security Engineer at Vanta, you’ll own projects with impact across the business to help us run an efficient and highly effective security team. The security team at Vanta ensures that we are a trustworthy steward of sensitive data. We also contribute subject matter expertise to the product, sales, marketing, support, and engineering functions, given the nature of our business.

You’ll join Vanta’s Security organization, which provides essential security operational services, is directly involved in the software development process and building tools to make it easy for developers to ship products securely, sets policies and standards regarding enterprise-wide security requirements, and offers advisory services to enable our business to thrive while effectively managing risk. If you’re someone who has high initiative and enjoys problem solving while having impact at a high-growth company, we would love to hear from you!

What you’ll do as a Senior Security Engineer at Vanta:

• Participate in team exercises to identify potential security risks, including threat modeling and tabletop scenarios

• Contribute to complex prioritization discussions around which risks are the most important to solve next

• Plan projects to address the risks we prioritize, and coordinate with cross-functional stakeholders across the company to execute those projects

• Build maintainable programs to implement operational excellence where ongoing work is needed to achieve our goals (e.g. vulnerability management)

• Partner with engineering teams to architect secure software, address security concerns, and build a strong security culture

• Build, customize, and run tools to increase the maturity of our security program without adding undue friction to the company’s operations

• Support ongoing bug bounty and penetration testing programs

• Establish and maintain a network of security champions

• Understand security knowledge gaps of the development organization and help to deliver training to address gaps

• Provide input into architectural discussions to enable teams to innovate in a secure and repeatable manner

How to be successful in this role:

• A track record of independent ownership of areas of responsibility

• Experience with threat modeling, red teaming, penetration testing, or other means of identifying security issues

• Experience with software development and the ability to read code to identify security issues

• Strong collaboration and communication skills, with deep developer empathy

• Highly organized project management skills

• Open to using AI to amplify their skills and strengthen their work - demonstrating curiosity, a willingness to learn, and sound judgment in applying AI responsibly to improve efficiency and impact.

What you can expect as a Vanta’n:

• Industry-competitive salary and equity

• Comprehensive medical, dental, and vision coverage, with 100% of employee-only benefit premiums covered for most medical plans

• 16 weeks paid Parental Leave for all new parents

• Health & wellness stipend

• Remote workspace, internet, and cellphone stipend

• Commuter benefits for team members who report to the SF and NYC office

• Family planning benefits

• Matching 401(k) contribution with immediate vesting

• Flexible PTO policy, plus 80 hours of Sick Time

• 11 company-paid holidays

• Virtual team building activities, lunch and learns, and other company-wide events!

• Offices in SF, NYC, London, Dublin, Tel Aviv, and Sydney

To provide greater transparency to candidates, we share base pay ranges for all US-based job postings regardless of state. We set standard base pay ranges for all roles based on function, level, and country location, benchmarked against similar-stage growth companies. Final offer amounts are determined by multiple factors and may vary based on candidate location, skills, depth of work experience, and relevant licenses/credentials.

#LI-remote

About Vanta

We started in 2018, in the wake of several high-profile data breaches. Online security was only becoming more important, but we knew firsthand how hard it could be for fast-growing companies to invest the time and manpower it takes to build a solid security foundation. Vanta was inspired by a vision to restore trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. 

Now more than ever, making security continuous—not just a point-in-time check— is essential. Thousands of companies rely on Vanta to build, maintain and demonstrate their trust— all in a way that's real-time and transparent.

Referral Instructions

If you are being referred for the role, please contact that person to apply on your behalf.