Senior Security Engineer- USA
Hopper · Chicago, IL · 2 wk ago
RemoteRemoteInformation Technology$110k–$300k/yrFull-time
About The Role
Hopper's Security team is small by design and consequential by impact—this role sits at the center of it. As a Senior Security Engineer, you'll own the tooling, automation, and processes that keep our applications secure across their entire lifecycle, building the systems that make security invisible to developers and unavoidable by default. This is a builder's role in every sense: you'll write code, ship tools, and use AI as a core part of how you work—not as a novelty, but as a force multiplier.
What Would Your Day-Today Look Like?
- Own and evolve our vulnerability management program with a focus on application security—container images, dependencies, code scanning, and runtime detection
- Build and maintain security tooling that integrates directly into CI/CD pipelines and developer workflows, so security happens automatically rather than as a gate
- Use AI extensively to write code faster, automate analyses that would otherwise require manual review, and build intelligent tooling that scales beyond what a small team could achieve manually
- Assess and improve how we leverage available telemetry across our systems
- Work directly with engineering teams to influence secure development practices—knowing how to make developers care without slowing them down
- Investigate and respond to security findings when needed, but spend more of your time building systems that prevent and detect issues than manually chasing them
- Adapt quickly as priorities shift—our team is agile and tomorrow's challenge may look different from today's
Qualifications
- At least 5 years experience software and/or platform engineering, with the ability to design, build, and maintain production-quality tools
- Deep experience in application security and vulnerability management—understanding CVEs, dependency risks, container security, and SDLC integration, and having opinions about what's worth fixing and what's noise
- Hands-on experience with cloud infrastructure, ideally GCP/GKE or equivalent, with the ability to adapt to our stack
- Demonstrated habit of using AI tools—coding assistants, LLMs—as a core part of how you build and analyze, not an occasional shortcut
- A bias toward automation—when you see a repetitive manual task, your instinct is to write a tool, not a runbook
- Comfort with ambiguity and ownership—being the only person on a problem and making judgment calls on priority, approach, and scope without waiting for direction
- Experience influencing engineering culture around security, knowing how to make developers care without slowing them down
- Strong written and verbal communication skills, including the ability to articulate our security posture clearly to customers when needed
Pay
Compensation Range: $110K - $300K