Security Engineer

About Cartesia

Our mission is to build the next generation of AI: ubiquitous, interactive intelligence that runs wherever you are. Today, not even the best models can continuously process and reason over a year-long stream of audio, video and text—1B text tokens, 10B audio tokens and 1T video tokens—let alone do this on-device.

We're pioneering the model architectures that will make this possible. Our founding team met as PhDs at the Stanford AI Lab, where we invented State Space Models or SSMs, a new primitive for training efficient, large-scale foundation models. Our team combines deep expertise in model innovation and systems engineering paired with a design-minded product engineering team to build and ship cutting edge models and experiences.

We're funded by leading investors at Index Ventures and Lightspeed Venture Partners, along with Factory, Conviction, A Star, General Catalyst, SV Angel, Databricks and others. We're fortunate to have the support of many amazing advisors, and 90+ angels across many industries, including the world's foremost experts in AI.

About the Role

We are seeking a Security Engineer with a strong software engineering and DevOps background to enhance our engineering team. This role combines security, compliance, and DevSecOps to ensure our infrastructure is secure, compliant, and efficiently managed. As a key member of the Information Security group, you will maintain and enhance our established compliance programs while driving security excellence across our engineering organization. This role combines hands-on technical and deep compliance expertise to ensure continued customer trust as we scale.

Your Impact

• Architect, implement, and manage security across our cloud infrastructure, applications, and data.

• Collaborate with engineering teams to embed secure coding, automated testing, and hardened architecture into the development lifecycle.

• Implement security tools aligned with architectural strategy and apply them consistently.

• Secure AWS, GCP, and other cloud environments for web, API, database, and mobile services.

• Rapidly evaluate and contribute to POCs for new security technologies.

• Conduct code reviews, automate security testing, and support incident response.

• Lead security documentation and awareness efforts across the company.

What You Bring

• 5+ years of combined software engineering and security engineering experience, with significant exposure to product security.

• Hands-on expertise in development and infrastructure, particularly in Python, TypeScript, Kubernetes, Terraform, and CI/CD tools.

• Proven ability to develop, review, and ship secure software as part of agile product teams.

• Demonstrated experience securing cloud platforms like AWS and GCP.

• Strong understanding of application, network, and container security.

• Familiarity with compliance frameworks such as SOC-2, HIPAA, ISO 27001, and GDPR.

• Comfortable in fast-paced, ambiguous startup environments, with a strong bias for action and the ability to quickly learn, adapt, and figure things out independently.

• A collaborative team player who easily gels with engineers across disciplines.

• Proven track record of influencing security strategy and driving impactful improvements.

What We Offer

🍽 Lunch, dinner and snacks at the office.

🏥 Fully covered medical, dental, and vision insurance for employees.

🏦 401(k)

✈️ Relocation and immigration support.

🦖 Your own personal Yoshi.

Our Culture

🏢 We’re an in-person team based out of San Francisco. We love being in the office, hanging out together, and learning from each other every day.

🚢 We ship fast. All of our work is novel and cutting edge, and execution speed is paramount. We have a high bar, and we don’t sacrifice quality or design along the way.

🤝 We support each other. We have an open & inclusive culture that’s focused on giving everyone the resources they need to succeed.