Security & Compliance Engineer

Summary

Join Clarity, a company modernizing the relationship between schools and families through its platform, and lead infrastructure and application security initiatives. You will own internal access controls, monitor for suspicious activity, partner with engineers to assess security in product features, and manage system vulnerabilities. Responsibilities also include vendor security reviews, risk assessments, incident response, and security training. You will maintain security documentation, act as a consultant to engineering and product teams, and define a security roadmap. Clarity offers a fully remote work environment, generous PTO, company-sponsored events, stock options, competitive compensation, and 100% company-sponsored health, medical, and dental insurance.

Requirements

• You are proficient with Django and React, or comparable modern web frameworks
• Experience leading both technical and compliance-oriented security work at a SaaS company
• Strong written communicator with the ability to drive cross-functional initiatives
• You are eager to provide secure experiences for millions of families
• You are low ego, focused on collective success, and practical about meeting goals

Responsibilities

• Lead infrastructure and application security initiatives, managing secrets, dependency hygiene, and maintaining secure CI/CD practices
• Own internal access controls and role management, enforcing least-privilege principles and improving how we grant, revoke, and manage permissions across environments
• Monitor for suspicious activity; extend our audit tooling; grow coverage of logging and traceability
• Partner with engineers to assess security in product features, with a particular focus on sensitive areas like uploads, payments, and data exports
• Manage and resolve system vulnerabilities on an ongoing basis, including addressing findings from automated scans, third-party tools, and annual penetration tests
• Build internal tools to enforce and/or strengthen Clarity’s security policies
• Own vendor inventory and security reviews, internal risk assessments, incident response procedures & simulations, vulnerability tracking, and change management tracking
• Support SOC2 security policy reviews, onboarding and offboarding procedures, and business continuity simulations
• Complete and manage responses to school security questionnaires and vendor risk assessments
• Deliver onboarding and annual security training, including phishing simulations and refreshers
• Maintain centralized documentation on security policies, processes, and best practices
• Act as a consultative partner to engineering and product by helping teams assess risk without becoming a blocker
• Define and maintain a rolling security roadmap; report to engineering leadership on posture, risk exposure, and readiness in monthly status updates

Benefits

• Growing company with lots of opportunities to grow with us
• Fully remote team and work environment
• Generous PTO
• Company sponsored get togethers / off sites
• Stock - every team member has some level of ownership in Clarity
• Competitive compensation
• 100% Company sponsored health, medical and dental insurance