Security Engineer, Platform
Bangun fondasi keamanan platform Resend dengan fokus pada API keys, IAM, dan aud
Sebagai Security Engineer di Resend, Anda akan membangun dan meningkatkan fondasi keamanan platform internal, termasuk manajemen API keys, kontrol akses, dan audit logs. Anda akan bekerja secara remote dari timezone Amerika atau Eropa, dengan beberapa perjalanan untuk acara tim. Peran ini memerlukan pengalaman dalam keamanan infrastruktur produksi, cloud environments, dan multi-tenant SaaS products.
Kenapa Menarik?
Bergabung dengan tim yang sedang berkembang cepat dengan lebih dari 2 juta pengembang menggunakan platform mereka
Tanggung Jawab Utama
- Membangun dan meningkatkan fondasi keamanan platform Resend, termasuk API keys, service permissions, secrets management, tenant isolation, a
- Membantu merancang secure defaults untuk layanan baru, workers, queues, databases, internal tools, dan deployment pipelines
- Meningkatkan deteksi dan respons terhadap akses mencurigakan, credential yang bocor, perilaku pengiriman abnormal, perubahan privilege, dan
- Mereview dan memperbarui proses/pipeline untuk memastikan keamanan menjadi bagian dari desain, bukan tambahan
- Menaikkan standar keamanan
Persyaratan
- Pengalaman dalam menyecure production infrastructure, cloud environments, APIs, developer platforms, atau multi-tenant SaaS products
- Dapat menulis kode dan nyaman membaca application, infrastructure, dan deployment code
- Memahami authentication, authorization, secrets, IAM, logging, audit trails, incident response, dan secure deployment pipelines
- Dapat memprioritaskan dan mendorong day-to-day secara independen sebagai security hire pertama
Skills Wajib
Konteks Indonesia
- Overlap Jam Kerja:
- Fleksibel — atur jam kerjamu sendiri
Keywords
Lihat Deskripsi Asli dari Ashby Job Boards
Deskripsi asli dari Ashby Job Boards
Resend is growing fast, and there are now over 2 million developers using it. As the Platform Squad, we are responsible for the internal platform and reliability foundations that let Resend teams build, deploy, observe, and operate services safely. This role is fully remote based in Americas or European timezones, with some expected travel for team offsites, conferences, meetups, and more. Read more about how we work, how we hire, and what we value here https://resend.com/handbook. IN THIS ROLE, YOU WILL… - Build and improve the security foundations of Resend’s platform, including API keys, service permissions, secrets management, tenant isolation, audit logs, and internal access controls - Help design secure defaults for new services, workers, queues, databases, internal tools, and deployment pipelines - Improve detection and response for suspicious access, leaked credentials, abnormal sending behavior, privilege changes, and sensitive system events - Review and update our processes/pipelines so that security is “built-in”, not “bolt-on” - Raise the security bar YOU WILL BE A GREAT FIT IF YOU... - Have experience securing production infrastructure, cloud environments, APIs, developer platforms, or multi-tenant SaaS products - Can write code and are comfortable reading application, infrastructure, and deployment code - Understand authentication, authorization, secrets, IAM, logging, audit trails, incident response, and secure deployment pipelines. - Independently prioritize and drive your day-to-day as the first dedicated security hire - Prefer practical improvements over heavy processes - Are low-ego, direct, curious, and willing to learn from others - Care about developer experience and believe security should be easy to adopt YOU WILL BE AN EXCEPTIONAL FIT IF YOU ALSO... - Have experience with email infrastructure, transactional email, sender reputation, domain verification, SPF, DKIM, DMARC, webhooks, or abuse prevention - Have secured cloud infrastructure using tools like AWS, Terraform, Kubernetes, Cloudflare, or similar systems - Have experience with open source security, GitHub organization hardening, package publishing, dependency review, or supply-chain security - Have helped a company prepare for SOC 2, ISO 27001, GDPR, enterprise security reviews, or customer trust processes without turning engineering into a compliance machine - Have built security observability, alerting, detection pipelines, or incident response workflows - Have worked closely with Trust & Safety, anti-abuse, fraud, or platform integrity teams - Have experience designing security systems for high-scale developer products WHAT IT MEANS TO JOIN THE TEAM: - Autonomy to "just ship it" - 100% remote team with flexible working schedules - Modern tech stack (Next.js, Raycast, Notion, etc.) - Honest and low-ego team - Ownership of problems and solutions - Comp: $120,000 - $140,000 USD, commensurate with experience ABOUT RESEND We are building the modern email sending platform for developers. We care deeply about quality, craft, and the developer experience. Our fully remote team of 45 spans 13 countries and counting. We're backed by a16z, Y Combinator, and others. Meet the humans → https://resend.com/humans
Data & laporan pasar
Riset gaji & permintaan skill dari data lowongan kami sendiri.
- Lowongan IT Indonesia vs Remote Global (2026)Analisis data primer 2.049 lowongan: metodologi, klasifikasi, dataset bisa diunduh.
- Permintaan Skill AI: Indonesia vs Global (2026)10.000+ lowongan, classifier taxonomy-first, Wilson CI, pra-registrasi sebelum analisis.
- Laporan Hiring Indonesia: Tech vs Non-TechPermintaan lowongan per bidang dari hitungan agregat — bukan listing per-listing.
- Benchmark Gaji IndonesiaKisaran gaji agregat lintas peran, dengan metodologi dan dataset terbuka.
- Laporan Pasar Remote per PeranLaporan otomatis per kelompok peran — skill, senioritas, perusahaan, gaji.
