Data Security Engineer

Whatnot

2w ago โ€ข 2 views โ€ข 0 applications
San Francisco, CA Onsite
$215,000 - $260,000
Full-time
Security Engineer

Job Description

๐Ÿ›ก๏ธ Secure the Future of Live Commerce at Whatnot!
Whatnot is revolutionizing e-commerce as the leading live shopping platform in North America and Europe. We're building a vibrant community where people connect, discover, and buy the things they love. Join our passionate, globally distributed team and help us shape the future of online marketplaces.

As a Data Security Engineer, you'll play a critical role in safeguarding our platform and user data. You'll be at the forefront of protecting our systems from cyber threats and ensuring the confidentiality, integrity, and availability of our data assets.

๐Ÿ’ป Your Mission:
Design, implement, and manage comprehensive data protection solutions, including encryption, tokenization, and data loss prevention (DLP).
Develop and enforce data classification, labeling, and handling policies aligned with regulatory requirements (PCI-DSS, GDPR, CCPA) and business needs.
Lead incident response efforts for data exfiltration and unauthorized access events, minimizing impact and ensuring rapid recovery.
Integrate robust data security controls into our CI/CD pipelines and DevSecOps framework, ensuring security is baked into every stage of the development lifecycle.
Conduct thorough risk assessments and threat modeling to identify and mitigate data-related vulnerabilities.
Collaborate with Infrastructure, Cloud, and AppSec teams to secure data across diverse environments, including at rest, in transit, and in use.
Continuously monitor the threat landscape, identifying emerging data security risks and recommending proactive mitigation strategies.
Partner with Compliance and Legal teams to ensure audit readiness and support data privacy initiatives.
Maintain meticulous documentation of data security architecture, standards, and controls.
Develop and implement security systems for increased protection across all systems.
Conduct continuous testing and re-testing of systems for known vulnerabilities.
Monitor systems for security breaches, investigating anomalies and responding effectively.

Location: This role requires you to be within commuting distance of our San Francisco, Los Angeles, Seattle, or New York hubs.

๐Ÿ‘‹ What You'll Bring:
We're looking for a driven and experienced cybersecurity professional with a passion for data security. You're a problem-solver, a collaborator, and a strong communicator who thrives in a fast-paced environment.

Bachelorโ€™s degree in Computer Science, Computer Engineering, Cybersecurity, or a related field.
7+ years of experience in cybersecurity, with at least 2 years specializing in data security.
Proven experience with DLP platforms, encryption and key management, CASB solutions, and data tokenization/masking tools.
Deep understanding of data privacy regulations and standards (GDPR, CCPA, SOX, NIST).
Familiarity with cloud platforms (AWS, GCP) and securing cloud-based data stores (S3, RDS, Snowflake).
Proficiency in writing and reviewing secure infrastructure-as-code (Terraform, CloudFormation) and scripting (Python, Bash).
Excellent communication skills, with the ability to articulate technical risks to business stakeholders.
A proactive and independent approach to problem-solving, with the ability to work with minimal guidance.
Exceptional ability to collaborate effectively across teams in high-pressure situations.
Strong organizational skills and the ability to manage multiple priorities effectively.

๐ŸŽ Perks of Joining Whatnot:
Flexible Time Off: Enjoy a flexible time off policy and company-wide holidays, including spring and winter breaks.
Comprehensive Health Benefits: Access a range of health insurance options, including medical, dental, and vision.
Work From Home Support: Receive a home office setup allowance and a monthly allowance for cell phone and internet.
Care Benefits: Benefit from a monthly wellness allowance, an annual childcare allowance, and a lifetime benefit for family planning expenses.
Retirement Plan: Secure your future with a 401k offering (US) or pension plans internationally, with an employer match up to 4% of your base salary (US).
Dogfooding Allowance: Get a monthly allowance to experience Whatnot as a buyer and seller, deepening your understanding of our product.
Parental Leave: Enjoy 16 weeks of paid parental leave, plus one month of gradual return to work.

๐Ÿ’› EOE
Whatnot is an Equal Opportunity Employer, committed to building a diverse and inclusive workplace where everyone feels valued and respected.