Security Engineer

Remote Full-time
PermitFlow is redefining how America builds. We’re an applied AI company serving the nation’s builders, tackling one of the largest information challenges in the economy: understanding what can be built, where, and how. Our AI agent workforce helps the fastest-growing construction companies navigate everything from permitting and licensing to inspections and project closeouts – accelerating housing, clean-energy, and infrastructure development across the country.Despite being a $1.6T industry, construction still suffers from massive delays, wasted capital, and lost opportunity. PermitFlow has already delivered unprecedented speed, accuracy, and visibility to over $20B in development, helping contractors reduce compliance time, de-risk projects, and scale with confidence.America is entering a CAPEX super-cycle, from data centers and factories to housing and renewables, and joining PermitFlow is building the AI at the heart of every construction project powering the next wave of re-industrialization.We’ve raised over $90M, most recently completing our Series B, from top-tier investors including Accel, Kleiner Perkins, Initialized, Y Combinator, Felicis, and Altos Ventures, with backing from leaders at OpenAI, Google, Procore, ServiceTitan, Zillow, PlanGrid, and Uber.Role OverviewAs a Security Engineer, you’ll join our growing platform team in building, scaling, and fine-tuning the systems that keep our platform secure and compliant. You’ll help architect the security backbone of our platform, focusing on compliance, risk reduction, security automation, and continuous improvement. While your primary responsibility will be security and governance, coding and problem-solving across the stack are core parts of the role. As a fast-growing startup, we all roll up our sleeves where needed, so flexibility and a collaborative, security-first mindset are key.What You'll DoArchitect, design, and implement secure, compliant, scalable, and cost-efficient infrastructure solutions to protect a rapidly growing product.Lead the execution and maintenance of our SOC2 compliance program and other security-related certifications.Design, implement, and audit Role-Based Access Controls (RBAC), Identity and Access Management (IAM), and secrets management systems.Design and implement security best practices for backend, frontend services, APIs, and data pipelines.Own security features end-to-end, from architecture and implementation to testing and production deployment.Develop and maintain security automation, Infrastructure as Code, and secure CI/CD pipelines.Implement and manage security monitoring, threat detection, and vulnerability management across our cloud infrastructure.Establish and enforce security best practices for authentication, authorization, logging, and alerting.Lead and participate in incident response, troubleshooting complex security issues and driving postmortem learning and improvements.Collaborate across engineering teams to embed security into the software development lifecycle and balance compliance, velocity, and cost.What We're Looking For5+ years of experience in Security Engineering, AppSec, GRC, or similar roles.Proven experience designing and implementing security controls for SOC2, ISO 27001, or similar compliance frameworks.Deep expertise in Role-Based Access Controls (RBAC), Identity and Access Management (IAM), and secrets management.Strong experience with container security and orchestration (Docker, ECS, Kubernetes a plus).Expertise with secure CI/CD pipelines and modern security automation tools.Coding and scripting proficiency (TypeScript, Python, Go, Bash, etc.).Hands-on experience with cloud security (GCP preferred) and securing distributed systems.Familiarity with monitoring, observability, and incident management best practices.Comfortable working in a fast-paced, compliance-focused startup environment, where adaptability and security ownership are essential.What We OfferCompetitive salary and meaningful equity in a high-growth companyComprehensive medical, dental, and vision coverageFlexible PTO and paid family leaveHome office & equipment stipendHybrid NYC office culture (3 days in-office/week) with direct access to leadershipIn-Office Lunch & Dinner ProvidedPermitFlow provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, genetics, sexual orientation, gender identity, gender expression, or family status, as protected by applicable law.We are committed to a diverse and inclusive workforce and welcome people from all backgrounds, experiences, perspectives, and abilities. All employment decisions are based on merit, qualifications, and business needs.Please mention the word **REFORM** and tag RMjYwNzo1MzAwOjIwZDo3ZDAwOjo= when applying to show you read the job post completely (#RMjYwNzo1MzAwOjIwZDo3ZDAwOjo=). This is a beta feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.

Apply Now
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

**Customer Service Representative – Inbound Call Center – blithequark**

Remote

Experienced Data Entry Specialist and Innovation Investigator Understudy – Delivering Operational Excellence in the Aviation Industry at blithequark

Remote

Experienced Full Stack Data Entry Specialist – Web & Cloud Application Development for a Magical World of blithequark as a Data Accuracy Ambassador

Remote

Engineering Manager

Remote

Get Paid Taking Surveys Online – Amazon Store

Remote

Principal Transactions and M&A Advisor

Remote

Join Today: Part-Time RDH / DH (Hygienist)

Remote

Utilization Management Assistant

Remote

Cloud Automation Engineer

Remote

100% Virtual Insurance Representative- Manager in Training

Remote
← Back