Protect Granola's technology and users by building secure systems and fostering security culture

We're looking for a security engineer who is passionate about application security to help us protect our users and build trust as we scale.

In this role, you will be responsible for identifying and mitigating security vulnerabilities within Granola's applications, building security tools, and working closely with our development teams to integrate security throughout our software development lifecycle. You'll help establish a robust security culture as we unlock Granola for the next 100x users.

In this role, you will:

• Conduct security assessments, code reviews, and penetration testing to identify vulnerabilities in our applications
• Design and implement security tools, frameworks, and methodologies to protect against security threats
• Work closely with development teams to ensure secure coding practices are integrated throughout the SDLC
• Perform threat modeling and risk assessments to proactively identify potential risks and develop mitigation strategies
• Track, analyze, and manage vulnerabilities in applications, providing guidance for remediation efforts
• Support incident response by investigating and analyzing security incidents related to applications
• Stay current on the latest security threats, vulnerabilities, and technologies to enhance our security posture

Your background looks something like:

• Extensive experience in application security, cybersecurity, or related fields
• Strong understanding of secure coding practices, threat modeling, risk assessments, and incident response
• Proficiency in programming languages such as TypeScript, Python, or similar
• Experience with security tools, security protocols, encryption methods, and application security frameworks
• Experience with cloud security (we use AWS)
• Strong communication skills with the ability to explain complex security issues to both technical and non-technical audiences

As a person, you…

• Are first and foremost a builder who thinks like an attacker
• Are excited to work in-person from our office in London (most of the time)
• Love working in a startup environment (you either have experience working in a startup or are really drawn to the zero-to-one phase)
• Value working with people who are kind, ambitious, and pragmatic
• Have a passion for protecting users and building secure systems
• Thrive in a fast-paced environment where you can make a direct impact on product security

About the opportunity

We are living in the most exciting time for tool builders since Engelbart's demo in 1968. We want to assemble the best crew to build this future together, here in London. Our compensation philosophy is to pay slightly above market on salary and above market on equity.

We do our best work in person, and so our team spends time together five days per week in our new, bright, and spacious office at Old Street. We are happy to offer relocation assistance to candidates who'll be moving to London to join us.

Lastly, we think amazing talent comes from all kinds of life journeys and experiences. If what is written above speaks to you, whether you look like a fit on paper or not, please reach out.

We'll review your application and get back to you within a week

Flexible, parent-friendly culture We default to in-person, but feel free to WFH when you need to

A beautiful, light-filled office full of plants and good vibes in Shoreditch

Casa Granola: use our team house in sunny Majorca (yes, you read that right). It's a space for offsites, going deep on a project with a small group, or just inviting friends/family for a holiday

Private health insurance Free for you, subsidised for your family

Above-market compensation Competitive salary, a generous option grant on employee-friendly terms, employer pension matching, and 25 days (plus bank holidays) of paid time off