Senior Security Software Engineer

As a Security Software Engineer, you will build foundational security systems that protect our users and infrastructure. You will design and implement robust, scalable security services, acting as a primary partner for engineering teams to build secure-by-design solutions into our platform. You will take ownership of core functions such as authentication (login, MFA), identity management (SCIM, RBAC), secret management, and more. Your work will be crucial in maintaining and hardening compliance (e.g., SOC 2) and protecting sensitive data across our organization.

The Infrastructure and Security team at Hover ensures the scalability, reliability, and security of our platform, empowering engineers to build and deploy applications faster, safer, and with greater stability. This collaborative team is composed of engineers with expertise in cloud infrastructure, security, automation, and CI/CD best practices. We handle everything from Kubernetes environments and cloud architecture to securing user authentication and automating vulnerability detection.

Our mission is to make the best path the easiest path by providing robust automation, consistent patterns, and secure-by-design principles. We partner with engineering teams to tackle challenges like managing rich geospatial and machine learning workloads, hardening cloud infrastructure, and implementing security features across our stack (Ruby, TypeScript, Docker, GCP, Terraform, and more).

Team members are supported with professional growth opportunities, a strong focus on learning, and a culture that values collaboration, innovation, and the continuous improvement of

• Security Service Development: Design and build core security services (e.g., permissions management, secrets orchestration, secure MLOps). Develop secure-by-default libraries and frameworks that empower other engineering teams to write secure code.
• Security Infrastructure Automation: Enhance our CI/CD pipeline with automated self-serve security controls (e.g. SAST, supply chain security controls)
• Architecture & Code Review: Conduct secure code and architecture reviews, enforce secure-by-design principles, and lead threat modeling.
• System Hardening: Build and maintain resilient cloud infrastructure. Implement network isolation, automated vulnerability detection, and defense-in-depth strategies to harden our production environment.
• Compliance & Process: Run security incident response, document risks, and support audits.
• Collaboration & Education: Advise teams on security best practices, identify and solve for developer security friction points, and bring security awareness to engineering.

• 5+ years of hands-on software engineering experience.
• 3+ years of hands-on security-focused engineering experience.
• Proficient in at least one programming language (Ruby, TypeScript, Python, C++, etc.) and willingness to ramp up in others.
• Experience building scalable security systems (e.g., secret management, service authorization, data encryption) in a production environment.
• Experience with threat modeling, security design reviews, or security incident response.
• Experience integrating security directly into the software development lifecycle (SDLC).
• Meticulous attention to detail; able to be the final checkpoint on security decisions.
• Excellent communication and collaboration skills for cross-team interactions.
• Ability to mentor and train engineers on secure development processes.
• A proactive approach to continuous learning and staying current with emerging security trends.

Hover has Hubs in San Francisco and New York City, where we expect that all employees living within a 50-mile radius of our offices will come into their local Hover office at least three times a week to build rapport and foster organic connection. At this time, Hover is not considering fully remote roles.

The US base salary range for this full-time position is $194,000 - $239,000 annually. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position across all applicable US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

#LI-JN1 #LI-Hybrid