Security Engineer

Rokt

  • New York City, NY
  • Permanent
  • Full-time
  • 8 days ago
  • Apply easily
We are Rokt, a hyper-growth ecommerce leader. Rokt is the global leader in ecommerce, unlocking real-time relevance in the moment that matters most. Rokt’s AI Brain and ecommerce Network powers billions of transactions connecting hundreds of millions of customers, and is trusted to do this by the world’s leading companies.We are a team of builders helping smart businesses find innovative ways to meet customer needs and generate incremental revenue. Leading companies drive 10-50% of additional revenue—and often all their profits—from the extra products or services they sell. This economic edge unleashes a world of possibilities for growth and innovation.The Rokt engineering team builds best-in-class ecommerce technology that provides personalized and relevant experiences for customers globally and empowers marketers with sophisticated, AI-driven tooling to understand consumers better. Our bespoke platform handles millions of transactions per day. It considers billions of data points which give engineers the opportunity to build technology at scale, collaborate across teams, and gain exposure to a wide range of technology.At Rokt, we practice transparency in career paths and compensation. At Rokt, we believe in transparency, which is why we have a well-defined career ladder with transparent compensation and clear career paths based on competency and ability. Rokt’stars constantly strive to raise the bar, pushing the envelope of what is possible.We are looking for Security EngineerTarget Total Compensation: $245,000 - $260,000, including a fixed annual salary of $170,000 - $185,000, employee equity grant, and world-class benefits.Equity grants are issued in good faith, subject to company policies, board approval, and individual eligibility.Rokt is looking for a Security Engineer with a strong foundation in threat intelligence, detection, response, and forensics. In this role, you will be at the forefront of protecting the platform and customer data that are fundamental to maintaining trust and delivering a smarter, faster, and better e-commerce experience. You have a product builder's mindset and will help improve our capabilities to meet the threat of AI-based threats.You will be responsible for providing the core capabilities of our threat management and incident response program. You will develop and maintain tools to provide threat awareness and intelligence, security incident and event management (SIEM), and security automation and response (SOAR), adapting them to address the modern threat of harmful, autonomous, and intelligent AI agents. You will establish an agentic SOC to ensure potential compromises or bad actors in our environment are quickly identified, contained, and eradicated on a 365/7 basis with minimal human effort. By leveraging AI code generation and workflow tools, you will scale threat intelligence gathering and ensure threat catalogues are effectively maintained and appropriate mitigating controls are put in place.Collaboration is central to this position. You will work closely with system and product owners, Legal and Public Relations teams, and the broader Senior Leadership team to ensure our detection and response capabilities are effective across the business. You will translate incident detection and response requirements into practical and scalable solutions and will ensure all key stakeholders are aware of their role and responsibility and appropriately trained to respond to incidents.As a Security Engineer at Rokt, you will pioneer how we use ‘good’ AI to protect against ‘bad’ AI. You will work alongside top-tier developers, platform teams, and governance professionals. This is a high-impact builder role for someone ready to lead the future of application security.Responsibilities
  • Develop AI-Driven Security Solutions — Design and implement log management capabilities, detection rules and behaviour baselines, security event triage, incident response and forensic workflows, and associated reporting. You will utilize AI workflow tools to provide 365/7 response with consistency.
  • Automate Threat Assessments — Leverage AI to automate threat intelligence gathering, maintain catalogues of threat actors, tactics, techniques, and procedures as they apply to our business processes and technologies, identify possible mitigations, and ensure we are prepared and ready to respond to incidents.
  • Subject Matter Expertise —You will provide deep expertise in application security threats, particularly in modern API-based architectures and Kubernetes-based operating environments. You will address security challenges associated with detecting and responding to actors empowered with Large Language Models (LLMs) and Agentic AI.
  • Collaborate Across Teams — Work closely with system and product owners, Legal and Public Relations teams, and Senior Leadership to ensure incident readiness. Translate complex detection and response requirements into practical and scalable solutions.
  • Stay Informed on Security Trends — Keep abreast of the latest security trends, threat actors, vulnerabilities, and technologies. Apply this knowledge to improve existing security measures and develop new strategies to protect against emerging threats.
  • Mentor and Educate — Provide guidance and mentorship to the business on the threat landscape and how that translates to security requirements, including logging guidelines, secure coding and architectural practices, vulnerability remediation, or compliance adherence. Conduct security training and outreach for business teams.
  • Drive Continuous Improvement — Continuously seek opportunities to improve security processes and tools. Advocate for new technologies and methodologies to enhance the organization's ability to detect, prevent, and respond to security threats effectively.
  • Be a Force for Good — Uphold our commitment to being a "Force for good" by considering the ethical implications of AI in security and ensuring our protective measures are aligned with our company values and respect for user privacy
RequirementsAbout you:
  • Threat Expertise — Strong understanding of application security threats, particularly in modern API-based architectures, Kubernetes-based operating environments, CI/CD pipelines and newer threats related to LLMs and Agentic AI. Familiar with threat modelling and use of threat catalogues to capture threat actors, tactics, techniques, and procedures.
  • Detection Expertise — Technical ability to establish user and entity behavioural analysis (UEBA) and rule-based detections to provide security events in a large scale, high log volume environment. Experience with automated event correlation to improve our signal-to-noise ratio and minimise alert fatigue.
  • Response & Forensics — Experience providing hands-on incident response and forensics to contain and eradicate.
  • Programming Skills — Desired proficiency in at least one modern programming language such as Go or Python.
  • Cloud Platforms — Experience with cloud platforms, notably AWS or GCP, and containerized environments.
  • Security Tools — Familiarity with relevant open-source and commercial software, notably security data lake technologies and network, host and Cloud-based detection and forensic tools.
BenefitsAbout Rokt’stars:As a mission-driven, hyper-growth community of curious explorers, our ambition is to unlock real-time relevancy in ecommerce and beyond. Our bias for action means we are not afraid to quickly venture into uncharted territories, take risks, or challenge the status quo; in doing so we either win or learn. We work together as one aligned team, never letting egos get in the way of brilliant ideas. We value diversity, transparency, and smart humble people who enjoy building a disruptive business together. We pride ourselves on being a force for good as we make the world better.About The Benefits:We leverage best-in-class technology and market-leading innovation in AI and ML, with all of that being underlined by building and maintaining a fantastic and inclusive culture where people can be their authentic selves, and offering a great list of perks and benefits to go with it:
  • Become a shareholder. Every Rokt’star gets equity in the company
  • Enjoy catered lunch every day and healthy snacks in the office. Plus join the gym on us!
  • Access generous retirement plans like a 4% dollar-for-dollar 401K matching plan and get fully funded premium health insurance!
  • Dog-friendly office
  • Extra leave (bonus annual leave, sabbatical leave etc.)
  • Work with the greatest talent in town
  • See the world! We have offices in New York, Seattle, Sydney, Tokyo and London
We believe we’re better together. We love spending time together and are in the office most days (teams are in the office 4 days per week).We at Rokt choose to create a company that is as diverse and inclusive as the world we live in by attracting, growing & keeping the best talent. Equal employment opportunities are available to all applicants without regard to race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.If this sounds like a role you’d enjoy, apply here, and you’ll hear from our recruiting team.

Rokt