Security Engineer

Overview

AI has changed software development. Security hasn't caught up – until now. Corridor is changing the game of product security, giving developers the ability to secure their AI coding.

Our team operates at the intersection of AI and cybersecurity. We've led security at some of the world's largest companies, driven U.S. cybersecurity policy, and published AI research at Stanford.

As Corridor grows, we're hiring a Security Engineer to strengthen both our customers' security posture and our own. This is a highly technical role focused on working directly with customers to implement secure coding practices, hardening Corridor's internal systems, and supporting our compliance efforts.

This role reports to our CPO/CSO.

What You'll Do

Drive Customer Security Success

• Work directly with customers to understand their codebases and help them implement secure coding guardrails.

• Improve Corridor's detection and remediation capabilities based on real-world customer environments.

• Partner with customers to demonstrate security value and outcomes.

Secure Corridor's Systems

• Harden Corridor's software and infrastructure through threat modeling, code review, and red teaming.

• Identify vulnerabilities and work with engineering to drive resolution.

• Monitor Corridor's production and IT systems, investigate anomalies, and respond to incidents.

• Contribute to security documentation, policies, and incident response procedures.

Support Compliance

• Partner with the CISO on compliance requirements including SOC 2, ISO 27001, and customer security questionnaires.

• Help maintain and improve Corridor's security posture as we scale.

Qualifications

• At least 2 years of experience on a corporate application security or corporate security team.

• Experience with cloud security (AWS, GCP, or Azure).

• Familiarity with security tools such as Burp Suite, Semgrep, OWASP ZAP, or similar security testing tools.

• Ability to clearly communicate technical concepts to both engineers and non-engineers.

• High ownership mindset and ability to operate autonomously.

• BS in Computer Science or equivalent practical experience.

Nice to Have

• Experience with Datadog or similar observability platforms.

• Familiarity with compliance frameworks (SOC 2, ISO 27001, PCI-DSS, FedRAMP).

• Contributions to open source security tools or research.