Security Engineer, Patreon
$160.7-241.5k
+ Equity
More information about location
Funding platform for creatives
Job no longer available
Funding platform for creatives
1001+ employees
Job no longer available
$160.7-241.5k
+ Equity
More information about location
1001+ employees
Company mission
To put creators in control of their work and their futures by strengthening the bond between them and their communities.
Role
Who you are
- Minimum of 4 years of combined experience in Security Engineering, GRC, or related roles in an enterprise or cloud-native environment
- Bachelor’s degree in Computer Science, Information Security, or related field (or 6+ years of relevant experience in lieu of degree)
- Strong foundation in one or more programming/scripting languages (e.g., Python) for automation and tooling
- Hands-on experience implementing and managing security controls (SIEM, SOAR, EDR, IDS/IPS, IAM)
- Demonstrated ability to evaluate and secure cloud infrastructure using IaC tools (e.g., Terraform, CloudFormation)
- Proficiency in threat detection, incident response, and investigation methodologies (familiarity with MITRE ATT&CK)
- Working knowledge of key security standards and regulations (e.g., NIST CSF, ISO 27001, HIPAA, PCI-DSS, GDPR)
- Experience executing audits, risk assessments, and managing compliance programs; familiarity with GRC platforms preferred
- Ability to develop meaningful security metrics and translate technical details into business-impact language
What the job involves
- We are looking for a mid-level (L4) Security Engineer to join our growing Security team.
- In this role, you will be responsible for designing and implementing security automation, detection, and response capabilities while also owning and streamlining Governance, Risk, and Compliance (GRC) functions.
- Your contributions will help ensure our platform and corporate environment remain protected and compliant, empowering us to scale securely
- Design & Implement Security Solutions
- Architect and deploy tools and processes that strengthen our infrastructure and corporate security posture in cloud-native (AWS), containerized (Kubernetes/Docker), and on-prem environments
- Engineer and maintain controls across multiple security domains (e.g., Endpoint Detection and Response, Cloud Detection and Response, CI/CD, SIEM, IAM, PKI, etc.)
- Automate Security Detection & Response
- Develop and refine security detection rules, playbooks, and workflows to respond to threats in real time
- Build integrations and automated pipelines leveraging DevOps/SecOps tools (e.g., Python scripting, APIs, webhooks) to accelerate investigation and remediation
- Security Incident Handling
- Triage and investigate security alerts and incidents, leading cross-functional coordination when required
- Drive the continuous improvement of incident response processes and technologies used for detection and containment
- Governance, Risk & Compliance (GRC)
- Lead risk management efforts by conducting risk assessments, third-party vendor reviews, and compliance checks against frameworks (e.g., ISO, NIST, PCI, HIPAA)
- Develop and maintain security metrics (KRI/KPI/OKR) to communicate program effectiveness and inform strategic decisions
- Contribute to audits, assessments, and certification processes; maintain and optimize GRC tooling to manage evidence gathering and continuous monitoring
- Draft and evolve security policies, standards, and documentation in alignment with regulatory requirements and industry best practices
- Cross-Functional Collaboration
- Partner with Product, Engineering, Legal, and other business teams to embed security requirements into new and existing features
- Provide threat modeling and security architecture guidance to software development teams to ensure secure design from the ground up
- Continuous Improvement & Thought Leadership
- Participate in proactive threat hunting and vulnerability management programs to reduce risk exposure
- Remain current on industry trends, emerging threats, and new security technologies
- Act as an internal champion for security awareness, training, and best practices across the organization
Our take
Creatives face two major struggles in the online space: getting eyes (or ears) on their work, and getting paid for it. Patreon was founded to solve both problems with a platform that would provide a space for creators to host and promote their work, and offer supporters a way to show their support through a regular paid subscription.
Patreon has been a leader in the content subscription space since its founding, but recently has come under pressure from newer rivals such as Substack and Ko-fi. It has maintained its position by shifting its focus from being primarily a marketplace for supporters to find creatives that interest them to being a toolbox for content creators to promote their work. While the site's creatives value this approach it remains to be seen whether Patreon will be able to return to the growth it was enjoying in previous years.
Despite the inroads made by competitors and a troubling global economic outlook making finances tougher for content creators and their supporters, Patreon is still a leader in its space, with over 250,000 active creators having made $3.5B through the platform.
Steph
Company Specialist at Welcome to the Jungle
Insights
Company
Funding (last 2 of 6 rounds)
Apr 2021
$155m
SERIES F
Sep 2020
$90m
SERIES E
Total funding: $352.1m
Company benefits
- Health Coverage: Medical, dental, and vision plans are available to our US employees and their dependents. Our plans have a nationwide network and we also cover a primary care concierge membership.
- Balance & Wellness: We offer a generous Flexible Time Off policy, in addition to days throughout the year where everyone takes the same day off to recharge our batteries. Employees and their dependents also have access to therapy, coaching, and Employee Assistance Programs services.
- Family Planning: We provide 20 weeks of paid parental leave, fertility, adoption, and surrogacy benefits, as well as an annual stipend for new additions to your families (including pets!).
- Lifestyle & Learning: You’ll have stipends to fund your personal lifestyle and to support your favorite creators on Patreon, as well as an annual stipend for learning and development.
- Hybrid Work: Our offices are in San Francisco, New York, and Porto. Plus, we have more teammates working remotely around the world.
- Financial Support: We offer employer matching for our retirement plans and Health Savings Account (HSA), as well as access to 1:1 financial guidance with a Certified Financial Planner.
Company HQ
SoMa, San Francisco, CA
Leadership
Jack Conte
(Co-Founder & CEO)Graduated from Stanford with a degree in Music. Created musical content on Youtube as Pomplamoose before founding Patreon.
Sam Yam
(Co-Founder, CTO & President)Worked in Analytics and Engineering roles at Yahoo, Ning and Loopt. Previously founded mobile advertising company AdWhirl, which was acquired by Google.
Salary benchmarks
We don't have enough data yet to provide salary benchmarks for this role.
Submit your salary to help other candidates with crowdsourced salary estimates.
Share this job
View 28 more jobs at Patreon