Security Engineer

Join to apply for the Security Engineer role at Delve

Get AI-powered advice on this job and more exclusive features.

This range is provided by Delve. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

$/yr - $/yr

About Us Delve is building an AI-native platform that transforms compliance from tedious, manual work into effortless, automated workflows. We’re the fastest growing compliance company on the market. Delve helps 100s of companies save 100s of hours (e.g. Lovable, 11x, Wispr Flow) by eliminating compliance busywork and helping them focus on what matters — securely supporting their customers. Our team is a tight-knit group of builders—former founders, operators, and engineers—obsessed with solving real problems for real customers.

We come from Stanford, MIT, Berkeley, OpenAI, and international olympiads. Backed by Insight Partners
, General Catalyst
, Y Combinator
, and top-tier investors, we just raised our 32M Series A and are scaling quickly! One step at a time, we’re on a mission to eliminate busywork for humanity.

As our first Security Engineer, you'll wear multiple hats in this high-impact position. You'll be responsible for establishing and managing our internal security controls, infrastructure, and processes while leading our penetration testing efforts and occasionally participating in customer conversations to provide technical expertise. This is a unique opportunity to build security foundations from the ground up at a company that deeply understands the security landscape.

• Design, implement, and maintain comprehensive security controls across our infrastructure and operations
• Set up and manage essential IT security tools including endpoint protection, SIEM, identity management, and monitoring systems
• Conduct security assessments, vulnerability management, and incident response
• Ensure compliance with relevant frameworks (SOC 2, ISO 27001, etc.) to support customer trust and sales efforts
• Manage access controls, privileged accounts, and security awareness training programs
• Plan, execute, and document internal penetration tests across applications, infrastructure, and networks
• Manage and coordinate a small team of internal and external penetration testing contractors
• Develop internal penetration testing capabilities and methodologies
• Participate in customer security discussions and technical deep-dives during sales processes
• Support customer onboarding by addressing security questions and requirements
• Provide technical expertise during customer calls when security architecture questions arise

• 3-5 years of hands‑on security engineering or IT security experience
• Proven penetration testing experience with ability to perform manual testing across web applications, networks, and cloud environments
• Experience managing security contractors or external testing teams
• Extremely comfortable using AI tools for productivity and security tasks, including AI‑powered red team tools and security testing platforms
• Strong background in cloud security (AWS, Azure, or GCP) and infrastructure security
• Experience with identity and access management, network security, and endpoint protection
• Demonstrated ability to work independently and drive initiatives in fast‑paced startup environments
• Excellent communication skills with ability to explain technical concepts to both technical and non‑technical audiences
• Self‑starter mentality with strong problem‑solving abilities and attention to detail

• Experience at early‑stage startups or high‑growth technology companies
• Background in AI/ML security considerations and challenges
• Relevant security certifications (OSCP, CISSP, CISM, Security+, CEH, etc.)
• Experience with compliance frameworks and audit processes
• Previous customer‑facing experience in technical roles
• Familiarity with Dev Sec Ops  practices and security automation tools
• Understanding of B2B SaaS security requirements and customer expectations
• Experience with automated penetration testing tools and frameworks
• Background in managing vendor relationships and security service providers