Lead Security Engineer

Replit is the fastest way to turn ideas into software. With our powerful AI-powered Agent and Assistant, anyone can create and launch apps from natural language in just one click. Build and deploy full-stack applications directly from your browser—no setup required. Never written a line of code in your life? No problem. Replit makes software creation accessible, collaborative, and lightning-fast. Join us in our mission to empower the next generation of builders.

About the role:

Join us at the forefront of AI coding security as we tackle one of the most critical challenges in software development today. You'll pioneer industry-leading research on "vibe coding" security, working directly with our cutting-edge AI Agent to make code generation safer and more secure. This is a unique opportunity to shape the future of AI-assisted development while collaborating with security industry leaders and protecting millions of developers worldwide.

• Lead the industry on vibe coding security research and prevention techniques

• Improve Replit’s security posture through improved use of static and dynamic analysis, cloud security posture, and access control management.

• Respond to security incidents and communicate security advisories to Replit users

• Partner with security industry leaders on vibe coding security research and best practices

• Model threats on new features in development, shaping them to be more secure

• Improve Replit’s AI Agent to produce more secure code, and to detect and fix issues when they occur

• Bachelor’s degree in Cybersecurity, Computer Science, or related field, OR equivalent real-world experience in security engineering roles

• 7+ years of experience in information security with at least 3 years in a senior/lead role

• Experience with cloud security posture management (GCP, AWS, or Azure)

• Experience with security tools and technologies (SIEM, SAST, DAST)

• Strong understanding of cryptography, PKI, and secure communication protocols

• Experience with compliance frameworks (SOC 2, ISO 27001, PCI DSS)

• Experience supporting engineering teams to build secure-first software

• Experience securing platform as a service environments

• Knowledge of sandbox technologies and secure code execution environments

• Experience with threat intelligence and security research

• Previous experience at a high-growth technology company

Bonus Points

• Advanced degree in Cybersecurity or related field

• Experience with securing AI/agentic systems

• Experience partnering with leading companies on security research

• Open source security project contributions

• Problem-solving mindset: Ability to approach complex operational challenges systematically and devise effective solutions

• Self-directed and autonomous: Capable of working independently while collaborating effectively with cross-functional teams

• Strong communication skills: Ability to explain complex technical concepts to both technical and non-technical audiences

• Continuous learning: Passion for staying current with industry best practices and new technologies

• Focus on automation: Strong belief in automating repetitive tasks and building self-healing systems

Full-Time Employee Benefits Include

Competitive Salary & Equity

401(k) Program

️ Health, Dental, Vision and Life Insurance

???? Short Term and Long Term Disability

Paid Parental, Medical, Caregiver Leave

Commuter Benefits

Monthly Wellness Stipend

Autonoumous Work Environement

In Office Set-Up Reimbursement

Flexible Time Off (FTO) + Holidays

Quarterly Team Gatherings

In Office Amenities

Want to learn more about what we are up to?

• Meet the Replit Agent

• Replit: Make an app for that

• Replit Blog

• Amjad TED Talk

Interviewing + Culture at Replit

• Operating Principles

• Reasons not to work at Replit

To achieve our mission of making programming more accessible around the world, we need our team to be representative of the world. We welcome your unique perspective and experiences in shaping this product. We encourage people from all kinds of backgrounds to apply, including and especially candidates from underrepresented and non-traditional backgrounds.

This is a full-time role that can be held from our Foster City, CA office. The hybrid role has an in-office requirement of Monday, Wednesday, and Friday.