Software Engineer

Summary

Join PlanetScale, a rapidly growing company reinventing the database space, as a Software Engineer: Information Security. You will design and implement security controls for PlanetScale's cloud-native database platform, protecting millions of queries per second. Collaborate with engineering teams on security reviews, threat modeling, and secure coding guidance. Evaluate, procure, and implement security tools and technologies. Work with the compliance team to ensure adherence to security frameworks like SOC 2 and PCI DSS. Build security automation and tooling. Respond to security incidents and conduct post-incident reviews. This role requires strong experience in cloud security, application security, and securing distributed database systems. PlanetScale offers a competitive salary and benefits package.

Requirements

• 5+ years of software engineering experience with a focus on security engineering or application security
• Strong proficiency in Go, with experience in other languages like Python, Java, or C++
• Experience securing cloud-native applications and infrastructure (AWS, GCP, Azure)
• Knowledge of database security, encryption, and access controls
• Experience with security frameworks and compliance requirements (SOC 2, PCI DSS)
• Understanding of threat modeling, security architecture, and secure coding practices

Responsibilities

• Design and implement security controls for PlanetScale's cloud-native database platform, protecting millions of queries per second for some of the world's largest applications
• Collaborate with engineering teams to conduct security reviews, threat modeling, and provide secure coding guidance across our distributed systems
• Evaluate, procure, and implement proactive security tools and technologies to strengthen our security posture
• Work closely with our compliance team to ensure adherence to SOC 2, PCI DSS, and other security frameworks
• Build security automation and tooling to scale security practices across the engineering organization
• Respond to security incidents and conduct post-incident reviews to improve our security resilience

Preferred Qualifications

• Experience with database internals, distributed systems security, or infrastructure security
• Background in security tool evaluation, implementation, and automation
• Experience with Kubernetes security, container security, and cloud security posture management
• Knowledge of security monitoring, incident response, and vulnerability management
• Previous experience at a high-growth technology company or in a security engineering role
• Relevant security certifications (CISSP, CISM, CEH, etc.)

Benefits

Base salary range: $140,000 - $260,000 USD