Invest in your career with a Madrona-funded company.


Senior Security Engineer

Spotnana Technology

Spotnana Technology

Software Engineering
Remote · United States
Posted on Friday, October 27, 2023

Are you ready for the best destination of your career?

Spotnana is modernizing the infrastructure of the $1.4 trillion travel industry in order to bring freedom, simplicity, and trust to travelers everywhere. With over $115M in funding from top tier investors, including ICONIQ and Madrona Venture Group, we are tackling the hardest problems the travel industry has to offer and we need your help.

Culture is always fluid. It evolves as a business grows, along with the people who drive it forward. We seek people who have different perspectives, but shared values. Before you embark on this journey, quickly check in on whether you are aligned with our company values:

  1. Obsessed with Customer Needs: We earn the trust and loyalty of our customers by solving their problems.
  2. Do the Impossible: We solve tough problems through innovation and are inspired by unprecedented challenges.
  3. Build Globally, Serve Locally: We embrace a global mindset and celebrate diversity as we serve customers around the world.
  4. Act Like Owners: We constantly find problems to solve. Decisions are not made in isolation. We work hard, work smart, and work together.
  5. Constantly Change, Learn & Evolve: We flourish by adapting quickly to new challenges and by learning from everyone around us. Building something new is not always glamorous work. Roll up your sleeves, get your hands dirty, and evolve.
  6. Respect Above All: We are humble and treat others with the same respect we desire for ourselves. Our work culture is a safe environment where everyone is open to feedback and new ideas.

How you’ll make an impact

Spotnana is searching for a staff level security engineer to join our growing global security and trust team.

This passionate individual is someone who lives in the details of security engineering, and can thrive in a fast- paced environment where both individual drive and team collaboration are the keys to success. This is a technical hands-on role that is focused on our SaaS platform and overall enterprise. You’ll be working to identify problems, establish a vision for how to address those problems, and unite the relevant owners within the business on achieving that vision!

What you’ll own

  • Be part of the global incident response team and contain security incidents when they happen
  • Apply deep expertise in threat intelligence and hunting, incident detection at scale, to incident containment and response practices efficient at Spotnana
  • Enrich detection capabilities for Spotnana using attack models (such as MITRE’s ATT&CK framework) and studies related to emerging threats in the industry
  • Create and deploy the instrumentation and data capturing capabilities to ensure visibility in large-scale distributed, multi-region cloud services powering Spotnana platform
  • Build and own detection-as-code and pipelines for our incident response and monitoring platform
  • Write unit tests for security detections
  • Write automations to support our threat and vulnerability management program across the enterprise
  • Build integrations between various security products
  • Write scripts and tools to enable identity and access management governance activities and forensic activities at scale
  • Build and own security orchestration (no code, low code, functions, etc)
  • Build and own the security data lake and data pipelines
  • Design and evaluation of security solutions that fit well into an API driven, multi-region SaaS platform
  • Creating prototypes and/or proof of concepts to demonstrate that a proposed solution would work
  • Research on industry landscape and technology developments
  • Partnering with leaders and engineers to influence and define execution plans
  • Mentorship of junior engineers

Experience to bring with you

  • 8+ years of experience in security software engineering
  • 5+ years of industry experience developing with Python or Golang
  • You must be able to influence without authority, innovate to tackle tough problems, and communicate clearly to all levels of the organization
  • Significant technical depth in security incident detection and response:
  • Deep understanding of information security intelligence and threat-hunting, preferably with hands-on experience deploying an activity-based intelligence (ABI) model
  • Practical application of detection and response methodologies in a variety of environment types, including on premises, private cloud, and public cloud providers
  • Hands-on experience with effective incident response and containment practices
  • Fluency in building and deploying software using modern engineering practices
  • Familiarity with the application of Machine Learning in a security context, including its capabilities and limitations
  • A broad base of technical knowledge spanning many of the fields of information technology: Examples: software engineering, system administration, network engineering, governance and compliance
  • Experience delivering results in an enterprise environment, ideally from a position of little or no direct authority, ideally in efforts that span teams or organizations
  • Communicate clearly and effectively and have excellent writing skills
  • You must be able to target your communications to the audience, whether technical or not, whether an executive or a front-line individual

Let’s talk compensation

Spotnana strives to offer fair, industry-competitive and equitable compensation. Our approach holistically assesses total compensation, including cash, company equity and comprehensive benefits. Our market-based compensation approach uses data from trusted third party compensation sources to set salary ranges that are thoughtful and consistent with the role, industry, company size, and internal equity of our team. Each employee is paid within the minimum and maximum of their position’s compensation range based on their skills, experience, qualifications, and other job-related specifications.

The annual cash compensation for this role is: $180,000-$220,000

We care for the people who make everything possible - our benefits offerings include:

  • Equity in the form of stock options which provides partial ownership in the company so you can share in the success of the company as it grows
  • Pre-tax and ROTH 401(k) options via Fidelity with up to a 4% company match
  • Comprehensive benefit plans covering medical, dental, vision, life, and disability effective on your hire date. We cover 100% of your employee premiums and 85% of your eligible dependents
  • Pre-tax flexible spending account options for health, dependent care and commuter expenses
  • 20 vacation days per year in additional to 10 company holidays, 4 company recharge/wellness days and an end of year company shutdown
  • Up to 26 weeks of Parental Leave
  • Monthly cell phone / internet stipend
  • Additional benefits including access to RocketLawyer’s online legal platform, International Airlines Travel Agent Network (IATAN) membership, Pet Insurance through Fetch, Financial Wellness through Origin and SoFi, EAP through Mutual of Omaha, The Calm app through Kaiser, pre-tax parking/transit program and more

We are committed to fostering a diverse, inclusive environment and to encourage these values in everyone on our team. We provide an environment of mutual respect where opportunities are available without regard to race, color, religion, sex, pregnancy (including childbirth, lactation and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by applicable law. We believe that diversity and inclusion for people from all walks of life is key to our success as a company.