Security Engineer, Corporate Security

About Persona

Persona is the configurable identity platform built for businesses in a digital-first world. Verifying individuals and organizations is harder — but more important — than ever, with AI enabling fraudsters to launch sophisticated accounts at scale and regulations evolving rapidly.

We’ve built Persona to support practically every use case and industry — that’s why we’re able to serve a wide range of leading companies. For example, Reddit relies on Persona for age assurance and verification to comply with online safety regulations, protecting younger users while maintaining a seamless experience. Meanwhile, OpenAI relies on Persona to keep bad actors out, protecting one of the world’s most powerful AI platforms from large-scale abuse in a time when AI is reshaping the way we work and live.

We’re growing rapidly and looking for exceptional people to join us!

About the Role

Persona builds identity verification infrastructure where security isn't a layer we add later, it's core to everything we ship. When security fails at most companies, systems go down. At an identity verification company, real people's identities are compromised.

This is an enterprise security role embedded in a generalist security team. You'll work alongside experienced security engineers to defend Persona's people, devices, and systems against evolving threats - and build the tooling and automation that lets us do it at scale.

What you’ll work on

• Develop, tune, and operate endpoint detection and response (EDR) rules and tooling across our macOS environment

• Partner with TechOps to implement security best practices across SaaS and endpoint environments, including 2FA enforcement, automated device encryption, and DLP. You will develop and deploy these controls - not ask other teams to do so for you

• Build tools and automation to scale security controls and monitoring without scaling headcount

• Harden corporate infrastructure and SaaS applications against attack

• Translate endpoint and SaaS telemetry into actionable mitigations and control recommendations

• Build and operate insider threat detection and response programs

Must-haves

• 3+ years of experience in IT security, corporate/enterprise security, or a related technical role. We'll flex on years of experience and specific tool background for candidates who demonstrate strong fundamentals, high aptitude, and a track record of figuring things out fast

• Hands-on experience with macOS endpoints, MDM platforms, and EDR tooling

• Experience with endpoint hardening. You’ve hardened endpoints, not written requirements asking someone else to do it

• Experience with DLP concepts and insider threat scenarios

• Experience with email security fundamentals and social engineering defense

• Ability to write scripts and automate workflows in Python, Ruby, Bash, or similar; comfortable with SQL

• Communicates clearly about security topics with non-technical stakeholders

• Experience in a high-growth startup or other fast-moving, resource-constrained environment

Nice to have

• Familiarity with identity and access management tooling (Okta, SCIM provisioning, SSO)

• Experience with Zero Trust or network access tools (Twingate, Cloudflare Access, or similar)

• Exposure to SIEM platforms, log aggregation, or detection engineering

• Familiarity with SaaS security posture management (SSPM) or CASB concepts

• You've worked somewhere where PII or sensitive data was the core product

The team

Small and senior by design. High ownership from day one — this isn't a team where your work disappears into a large org.

Based in SF. Relocation assistance available. Our in-office days are Tuesday - Thursday, with the option to work from home on Monday and Friday.

Full-time Employee Benefits and Perks

For full-time employees (excluding internship and contractor opportunities), Persona offers a wide range of benefits, including medical, dental, and vision, 3% 401(k) contribution, unlimited PTO, quarterly mental health days, family planning benefits, professional development stipend, wellness benefits, among others. While we believe competitive compensation and benefits are a critical aspect of you deciding to join us, we do hope you consider why our core values and culture are right for you. If you’d like to better understand what it’s like working at Persona, feel free to check out our reviews on Glassdoor.