About this role
Hightouch is the modern AI platform for marketing and growth teams. Our AI agents reimagine marketing workflows, allowing marketers to create content, plan campaigns, and execute strategies with transformational velocity. Built on advances in LLMs, agentic AI, and cloud data warehouses like Snowflake and Databricks, we partner with leaders like Domino’s, Chime, and Spotify.
This is our first dedicated security hire, a rare chance to define the function from the ground up. You'll own Hightouch's application security posture end-to-end as we scale from 70 to 140+ engineers. It's a hands-on, high-autonomy role focused on the codebase, not meetings.
Solve hard problems at the intersection of security and distributed systems, including multi-tenant isolation on a system running ~1M data syncs per day and ingesting 100K+ events/sec. Handle sub-tenant access control, security architecture for compute isolation, threat modeling, and hardening of internet-facing APIs. Support multi-region and multi-cloud backends to meet global data residency needs.
Our team approaches challenges with first-principles thinking, moves quickly and efficiently, and treats each other with compassion and kindness. We seek strong communicators with a growth mindset, motivated and persistent in achieving goals. You'll own your roadmap, identifying and fixing the highest-leverage security problems.
Requirements
- Early security hire (first 1-3) at a SaaS or data infrastructure company
- Experience securing multi-tenant platforms including tenant isolation and authorization models
- Cloud security expertise on systems spanning multiple clouds and operating against customer-owned accounts
- Designed and built data infrastructure as an early engineer, understanding how it scales and is secured
- Privacy-adjacent security experience with PII handling, data residency, and GDPR/CCPA technical controls
- Ability to read application code, threat model distributed systems, and ship production fixes
- Significant distributed systems expertise to influence product teams from a place of trust
Responsibilities
- Own Hightouch's application security posture end-to-end
- Implement multi-tenant isolation on a system running ~1M data syncs per day and ingesting 100K+ events/sec
- Build sub-tenant access control for multi-team and multi-brand use cases
- Develop security architecture frameworks for compute isolation and perform threat modeling and hardening of new products
- Improve rate limiting, abuse detection, and granularity of access control for high-throughput, internet-facing APIs
- Support and extend multi-region and multi-cloud backend for data residency requirements
- Identify highest-leverage security problems and ship production fixes
Similar roles
DevSecOps Engineer
1w1 week agoWade Trim
Detroit, US · Full-time · $130,000 – $170,000
Principal Governance Analyst - Application Security
1w1 week agoFifth Third Bank
US · Full-time · $96,500 – $207,500
Cybersecurity Architect III
1w1 week agoJPMorgan Chase & Co.
Hyderābād, IN · Full-time · INR 4,000,000 – INR 8,000,000
OT Cybersecurity Engineer
1w1 week agoVantage Data Centers
GB · Full-time · £70,000 – £100,000