Skip to content
Back to jobs

Posted 2 weeks, 2 days ago

Obsidian Security

Staff Software Engineer

Apply View on Hacker News Company site

Roles

Staff Software Engineer

Compensation

USD 176000 - 196000

$176k-$196k + equity + 401k

Salary period
yearly
Equity
equity

Benefits

  • equity
  • 401k

Tech stack

Security tooling Postgres AI security (prompt injection Kafka Kubernetes Python Rust Typescript Elasticsearch exfiltration) SIEM JavaScript detection engineering

Required

TypeScriptPythonRustKafkaPostgreSQLElasticsearchJavaScriptKubernetes

Nice to have

AI security (prompt injection, exfiltration)Detection engineeringSIEMSecurity tooling

Location

REMOTE (US)

Work setup

Employment
Full-time
Level
Senior
Remote policy
Remote (US)
Remote scope
country-limited
Visa
Select...
Authorization
If you have a need that requires accommodation, please contact accommodations@obsidiansecurity.com

Role details

Responsibilities

  • Work on Threat product team to secure SaaS apps
  • Develop browser extension code (content/background scripts, manifest v3, message passing)
  • Build backend services that process millions of events
  • Build data pipelines that feed a detection engine
  • Debug browser extension behavior for capturing form submissions on SPAs
  • Fix Kafka consumers that fall behind
  • Optimize hot paths in a telemetry collector using Rust
  • Build systems to detect shadow AI when employees paste sensitive data into ChatGPT or Claude

Requirements

  • ~8+ years experience
  • Real browser knowledge (DOM, event loop, SPA routing, CORS)
  • Prior browser extension work
  • Strong TypeScript
  • Comfortable in Python
  • Willing to write Rust
  • Data-at-scale experience (event streaming, PostgreSQL, Elasticsearch, Kafka)

Application

Apply via the link above

Portfolio
not required
GitHub
not required
Cover letter
not required
Apply flow
ats

Company context

We secure the SaaS apps companies actually run on and build detection systems to catch shadow AI when sensitive data is pasted into LLMs.

Product
Threat product for securing SaaS apps and detecting shadow AI
Industry
Security

Description

We secure the SaaS apps companies actually run on: M365, Salesforce, and hundreds more. You’d be on the Threat product team working full-stack. That means browser extension code (content/background scripts, manifest v3, message passing), backend services chewing through millions of events, and the data pipelines feeding our detection engine. One day you’re in TypeScript debugging why a content script won’t capture form submissions on some vendor’s weird SPA. The next you’re in Python fixing a Kafka consumer that’s falling behind. Sometimes you’re in Rust optimizing a hot path in the telemetry collector. Big current focus is shadow AI, i.e. catching when employees paste sensitive data into ChatGPT, Claude, or whatever LLM showed up this week. You’d build the systems that detect it. Looking for ~8+ yrs experience, real browser knowledge (DOM, event loop, SPA routing, CORS, not just “I used React”), prior browser extension work, strong TypeScript, comfortable in Python, willing to write Rust, plus data-at-scale chops (event streaming, Postgres, Elasticsearch, Kafka). Bonus: AI security (prompt injection, exfiltration), detection engineering/SIEM, or security tooling. Apply via the link above, or see all our open roles at https://www.obsidiansecurity.com/careers

Similar jobs

  • Loading similar jobs...