Security Engineer

Claylabs
US
Remote

Who this role is best for

Aimed at senior security engineers comfortable with hands-on coding and modern automation, particularly in cloud or application security domains.

Best fit for

  • Senior engineers who prefer building security solutions over advisory roles
    — “Ability to build, not just advise: You translate risk into concrete engineering work and ship solutions
  • Cloud security experts with infrastructure-as-code experience
    — “Improve cloud visibility and control using infrastructure-as-code and cloud security tooling
  • Application security specialists interested in AI-assisted vulnerability detection
    — “Integrate modern automated detection systems (including Claude Mythos-class models) to find vulnerabilities at scale

Things to consider

  • Expect significant time writing production code beyond security reviews
    — “You'll spend significant time writing production code—security tooling, detection systems, remediation pipelines
  • Must balance security rigor with enabling rapid product development
    — “Collaborate with Infrastructure and Product Engineering to make secure defaults the easiest path

How to stand out

  • Showcase production-grade security tooling you've built, not just assessments
    — “Build security primitives, tooling, and automation that scale with the product and engineering org
  • Demonstrate experience with AI/ML in security workflows
    — “Forward-thinking about tooling: Interest in leveraging modern automation and AI to scale security operations
  • Highlight frameworks you've created for secure-by-default patterns
    — “Build frameworks and reusable components for authentication, authorization, and secure-by-default patterns
Pace · Fast PacedCollaboration · MediumAutonomy · MediumDecision Impact · TeamLevel · Senior

Derived from job-description analysis by Serendipath's career intelligence engine.

What success looks like

  • successful implementation of security primitives
  • improved security operations through automation
Typical background
strong software engineering backgroundexperience in cloud or application security

Skills & requirements

Required

Software EngineeringCloud SecurityApplication SecurityAI Model Integration

Preferred

MythosSecurity Automation

Stack & domain

Cloud SecurityApplication SecurityMythosJavaPythonScalaComfort With AmbiguityForward-thinking About ToolingSecurityAI

About the role

As a Security Engineer at Claylabs, you will be at the forefront of developing and implementing cutting-edge security solutions, working closely with software engineers to integrate security into every aspect of the product lifecycle, ensuring that security is not just an afterthought but a core component of the product.

Original posting from Claylabs via Ashby

ABOUT CLAY

Our mission is to help organizations turn any growth idea into reality.

We see growth as a creative practice, not a formula. Finding and reaching your best-fit customers takes unique ideas and constant iteration. As AI makes execution faster and tactics easier to copy, creativity is the only lasting advantage. We're already helping thousands of customers https://clayrun.notion.site/Wall-of-Love-b243f2b67607438b9fad99341e6b8d47 — including Anthropic, Notion, Google, and Ramp — go to market with unique data, signals, and AI research.

In 2025, we raised a $100M Series C https://www.nytimes.com/2025/08/05/business/dealbook/clay-ai-marketing-fundraise.htmlbacked by world-class investors including Sequoia, CapitalG, and First Round — and crossed $100M in revenue.

In 2026, we announced our second employee tender offer https://www.nytimes.com/2026/01/28/business/dealbook/clay-start-up-tender-offers.html in 9 months at a new $5B valuation. We also launched a community equity round https://www.clay.com/blog/community-equity-offering, for our customers, agency partners, and club members.

Some things to know about us:

  • Our community http://community.clay.com includes 11,000+ customers, 150+ integration partners, 125+ agencies, 50+ Clay clubs https://luma.com/claylive, and 30k members on Slack.
  • Our culture https://nextplayso.substack.com/p/spotlight-clay is unique inside and outside of work. Our team members are also DJs, activists, writers, clowns, marathoners, skydivers, psychedelic therapists, social workers, and more.
  • All employees can work for free with world-class coaches who specialize in creativity, management, and more.
  • Our operating principles — including negative maintenance and non-attached action — guide our work. Read more about them here https://cdn.prod.website-files.com/61477f2c24a826836f969afe/685d83a71452245cc1129791_4d770abfd83e276ec15315a2e06945bd_Clay2025_OperatingPrinciples.pdf.
  • Read about us in the NYT https://www.nytimes.com/2025/08/05/business/dealbook/clay-ai-marketing-fundraise.html, Forbes First Round Review https://review.firstround.com/podcast/inside-clays-unconventional-path-to-1-25b/, and more https://www.clay.com/press.

Hear from our employees directly on our Glassdoor https://www.glassdoor.com/Overview/Working-at-Clay-EI_IE9850794.11,15.htm page!

SECURITY ENGINEERING @ CLAY

We're building a modern security organization from the ground up. We're hiring senior or staff-level security engineers who are strong software engineers first, with deep expertise in either Cloud Security or Application Security and working knowledge across both.

This is a hands-on role. You'll spend significant time writing production code—security tooling, detection systems, remediation pipelines, and frameworks that make secure defaults the easiest path. You'll also help define how we leverage modern automation, including frontier AI models (e.g. Mythos), to scale security operations: autonomously discovering vulnerabilities, reviewing AI-generated code, and building detection systems that understand context and intent.

WHAT YOU'LL DO

  • Build security primitives, tooling, and automation that scale with the product and engineering org
  • Define and implement our strategy for modern security workflows: AI-assisted vulnerability discovery, automated code review, threat detection, and remediation
  • Collaborate with Infrastructure and Product Engineering to make secure defaults the easiest path
  • Own projects end to end: design, implementation, rollout, and measurement

CLOUD SECURITY

  • Secure our cloud environment (IAM, network policies, container security, secrets management, and misconfiguration prevention).
  • Define and enforce least-privilege access patterns across services and humans.
  • Improve cloud visibility and control using infrastructure-as-code and cloud security tooling (we currently use Terraform, AWS Config, and AWS Security Hub).
  • Develop preventative controls and safe deployment patterns that reduce the probability and blast radius of incidents.

APPLICATION SECURITY

  • Lead secure design and secure coding practices, and prevent common vulnerability classes.
  • Perform architecture reviews and code-level security reviews, and work hands-on with engineers to ship fixes.
  • Own the vulnerability discovery and validation lifecycle: static and dynamic analysis, dependency checks, pen tests, and bug bounties. Integrate modern automated detection systems (including Claude Mythos-class models) to find vulnerabilities at scale.
  • Build and deploy security agents and automated workflows that can scan codebases, propose fixes, and in some cases autonomously deploy security patches.
  • Build frameworks and reusable components for authentication, authorization, and secure-by-default patterns.
  • Define practical policies and controls for code generation tools and coding agent changes, so they can be used safely and consistently.

WHAT YOU'LL BRING

  • Strong software engineering fundamentals and a track record of shipping production systems
  • Deep expertise in either cloud security or application security, with the ability to flex into the adjacent domain
  • Ability to build, not just advise: You translate risk into concrete engineering work and ship solutions
  • Comfort with ambiguity: You thrive when building from first principles and defining what good looks like
  • Forward-thinking about tooling: Interest in leveraging modern automation and AI to scale security operations while maintaining engineering rigor

OUT OF SCOPE

This is not an IT helpdesk or general operations role. We partner with other teams and vendors for routine operational work so you can stay focused on building scalable security foundations.

Source: Claylabs careers (Ashby)

Similar roles