Security Engineer, Enterprise Infrastructure Security, 6+ Years of Experience

Snap Inc is a technology company. We believe the camera presents the greatest opportunity to improve the way people live and communicate. Snap contributes to human progress by empowering people to express themselves, live in the moment, learn about the world, and have fun together. The Company’s three core products are Snapchat, a visual messaging app that enhances your relationships with friends, family, and the world; Lens Studio, an augmented reality platform that powers AR across Snapchat and other services; and its AR glasses, Spectacles.

Snap Engineering teams build fun and technically sophisticated products that reach hundreds of millions of Snapchatters around the world, every day. We’re deeply committed to the well-being of everyone in our global community, which is why our values are at the root of everything we do. We move fast, with precision, and always execute with privacy at the forefront.

We’re looking for a Senior Enterprise Security Engineer to join Snap Inc!

What you’ll do:

• Develop systems and tools to improve the security properties of Snap’s Enterprise Security domains including Client Platform Security, Specialized Infrastructure and SaaS Security.

• Own the roadmap for assigned areas to independently scope and lead a small group of engineers to achieve the desired security outcomes.

• Partners cross functionally across the team and organization to lead the requirements, architecture, and priorities for our roadmap to achieve the desired technical outcomes with internal and external teams and vendors.

• Participate in the team's operational duties (e.g. security reviews, consulting, and on-call), identify areas of improvement by delegating work, improving automation, and runbooks. 

Knowledge, Skills & Abilities:

• Proven impact in three or more of the following Enterprise Security Domains: Zero Trust (Beyond Corp), Endpoint Security, Data Loss Prevention, Cryptography and PKI, SaaS Security.

• Strong software engineering (beyond scripting or automation) skills in Python, Golang or Java.

• Proficiency in threat modeling risks to enterprise infrastructure and driving the implementation of preventative controls and detective controls in partnership with our Detection and Response organization.

• Advanced knowledge of operating system internals, and a core competency in three or more of the following: Identity and Access, Infrastructure Hardening (macOS, Windows, Linux, ChromeOS), SaaS Security or Assurance and Validation

• Ability to work autonomously to break-down ambiguous problem statements into their associated project charters, designs and tasks, perform technical program management in partnership with TPMs,  and collaborate with internal and external stakeholders independently with minimal supervision.

Minimum Qualifications: 

• Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field

• 6+ years of experience as an Enterprise Security focused Security Engineer

• Ability to design and develop new security controls taking an engineering first approach.

• Experience software engineering in one or more languages (e.g., Python, Golang or Java).

• Ability to execute and oversee execution of technical security assessments of large complex enterprise services.

• Core engineering competency in three or more of the following domains: Client systems, Server infrastructure, Cryptography and PKI, Networking and Systems administration, Identity and Access Management, SaaS Security.

Preferred Qualifications:

• Masters of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field

• Practical experience with Beyond Corp/Zero Trust architectures.

• Practical experience with data loss prevention architectures.

• Practical experience with large scale corporate identity management infrastructure.

• Exceptional written and verbal communication skills.

• Software engineering proficiency building production services in a language such as Python, Golang or Java.

• Strong understanding of federated authentication/authorization technologies (e.g., SAML, SCIM, OPA, OIDC).
   

If you have a disability or special need that requires accommodation, please don’t be shy and provide us some information.

"Default Together" Policy at Snap: At Snap Inc. we believe that being together in person helps us build our culture faster, reinforce our values, and serve our community, customers and partners better through dynamic collaboration. To reflect this, we practice a “default together” approach and expect our team members to work in an office 4+ days per week. 

At Snap, we believe that having a team of diverse backgrounds and voices working together will enable us to create innovative products that improve the way people live and communicate. Snap is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification, in accordance with applicable federal, state, and local laws. EOE, including disability/vets.

Our Benefits: Snap Inc. is its own community, so we’ve got your back! We do our best to make sure you and your loved ones have everything you need to be happy and healthy, on your own terms. Our benefits are built around your needs and include paid parental leave, comprehensive medical coverage, emotional and mental health support programs, and compensation packages that let you share in Snap’s long-term success!

Compensation

In the United States, work locations are assigned a pay zone which determines the salary range for the position. The successful candidate’s starting pay will be determined based on job-related skills, experience, qualifications, work location, and market conditions. The starting pay may be negotiable within the salary range for the position. These pay zones may be modified in the future.

Zone A (CA, WA, NYC):

The base salary range for this position is $209,000-$313,000 annually.

Zone B:

The base salary range for this position is $199,000-$297,000 annually.

Zone C:

The base salary range for this position is $178,000-$266,000 annually.

This position is eligible for equity in the form of RSUs.