Join Nectar Social: Pioneer Security for the Future of Social Commerce
About Nectar Social
The landscape of commerce is transforming. Today's consumers forge authentic relationships with brands through social interactions, trust community recommendations, and expect deeply personalized experiences. Nectar Social is at the forefront of this revolution, building the AI-native social operating system that empowers brands to connect, engage, and convert in this new era.
Founded by ex-Meta product and engineering leaders, we've secured over $30M in capital from top-tier investors like GV and True Ventures. We partner with industry-leading brands such as Oura Health, Caraway, e.l.f. Cosmetics, Kosas, and OLIPOP. At Nectar Social, we're not just building a product; we're defining the future where community, conversation, and commerce seamlessly converge.
The Opportunity: First Security Engineer
This is a rare opportunity to be our foundational Security Engineer, taking complete ownership of security across our enterprise SaaS platform. We handle sensitive social and customer data at scale, and our clients demand nothing less than enterprise-grade security with rigorous proof of compliance.
As our first dedicated security hire, you will have unparalleled ownership and impact. You'll architect, implement, and fortify the security of our cutting-edge AI infrastructure and applications, lead critical compliance initiatives to unlock major enterprise partnerships, and establish the robust security foundations that will guide our entire engineering organization as we scale.
What You'll Tackle
Architect and fortify the security of our deployed applications, including comprehensive threat modeling, secure design reviews, and actively identifying and remediating vulnerabilities across our services and AI infrastructure.
Lead new compliance initiatives from inception to certification (e.g., SOC 2, and scaling to frameworks like ISO 27001, GDPR, CCPA), establishing necessary controls, policies, and evidence gathering processes.
Drive the security aspects of our sales cycle: expertly completing customer security questionnaires, supporting enterprise security reviews, and serving as our technical security expert in vendor assessments.
Design, build, and operate our core security programs, including vulnerability management, secrets management, identity and access management (IAM), and security monitoring practices.
Manage third-party risk and orchestrate our penetration-testing program.
Who You Are
5+ years of hands-on experience in security engineering, application/product security, or a similar role within a software company.
Strong fundamentals in application and cloud security; you can critically assess and reason about the security of complex production systems and AI workloads, not just theoretical policy.
Proven experience leading or operating a compliance program (SOC 2, ISO 27001, or similar) from end to end.
Solid programming skills, enabling you to build security tooling and automation, and to collaborate credibly with fellow engineers.
Comfortable and effective operating in fast-moving startup environments, demonstrating high ownership and autonomy.
Bonus Points
Experience establishing a security and compliance function at an early-stage or rapidly scaling SaaS company.
Familiarity with our tech stack: AWS, Pulumi, Postgres, ClickHouse, Turbopuffer, or Temporal.
Why Join Nectar Social?
Competitive compensation and significant early equity in a fast-growing, well-funded startup.
Comprehensive health, vision, and dental benefits, plus 401(k) matching.
Clear career growth opportunities as we scale, with your role evolving into a leadership position.
Enjoy complimentary lunch in the vibrant heart of University Ave. in Palo Alto.
Deep exposure to cutting-edge AI tooling and the unique opportunity to shape how brands leverage it.
Join a collaborative, ambitious team that is defining a brand new category of AI-native marketing infrastructure.