Security Engineer III

Mapbox is the leading real-time location platform for a new generation of location-aware businesses. Mapbox is the only platform that equips organizations with the full set of tools to power the navigation of people packages and vehicles everywhere. More than 4 million registered developers have chosen Mapbox because of the platform’s flexibility security and privacy compliance. Organizations use Mapbox applications data SDKs and APIs to create customized and immersive experiences that delight their customers.

What We Do

Mapbox is looking for a Staff Application Security Engineer to join our Security & Compliance team. As a member of our diverse and globally distributed team you’ll play an advisory role across the whole company. You will help all Mapbox engineers build secure-by-default systems and triage and mend vulnerabilities on their systems. Engineers on the Security & Compliance team build scanning and threat detection systems to monitor Mapbox’s cloud deployment (AWS-native mainly container-based 7 global regions) and other digital assets. They conduct risk assessments of new vendor integrations and product launches and facilitate a bug bounty program that leverages the diverse expertise of a global community of security researchers. Lastly they build and maintain core standards around security quality and privacy—reflected in our compliance certifications —and the automation to monitor and enforce these standards across Mapbox.

What You'll Do

We’re excited to share our passion for scalable engineering-driven security with you and for your perspective to help shape our team’s goals. You will be responsible for contributing to operating and improving all things related to our security and compliance services.

In this role you can expect to:

• Apply secure configuration baselines across AWS Kubernetes and containerized environments

• Design and implement proactive security controls integrating them into IaC workflows and CI/CD pipelines to support secure-by-default deployments using tools such as Terragrunt Atlantis and Argo CD

• Conduct security design reviews of application code working closely with developers to code securely and proactively address issues during coding and testing phases.

• Partner with internal product teams to implement a secure-by-default design into their own products.

• Perform security design reviews and conduct risk assessments for our products and services

• Serve as a hands on technical contributor and lead during critical security incidents tracing complex system behavior and enhancing response processes and playbooks.

What We Believe are Important Traits for This Role

• Bachelor’s or higher degree in Computer Science or similar

• 5+ years of experience in productapplication or infrastructure security and related software engineering roles

• Extensive experience with AWS services like API Gateway CodeBuild GuardDuty CloudTrail IAM Security Groups CloudFront VPCs CloudFormation ECS EKS Lambda DynamoDB S3 Athena and Glue.

• Expertise in threat modeling secure coding and various security tools such as SAST DAST/IAST SCA IDS/IPS WAF SIEM/SOAR

• Strong proficiency in a programming language (e.g. JavaScript or Node.js or Python) testing practices and thorough documentation.

• Subject matter expertise in security best practices and the ability to quickly make correct risk assessments that prioritize the overall benefit to the company.

• Exposure to compliance frameworks (SOC 2 ISO 27001 FedRAMP etc.) and a deep understanding of how engineering decisions affect auditability is a plus.

What We Value

In addition to our core values which are not unique to this position and are necessary for Mapbox leaders:

• We value high-performing creative individuals who dig into problems and opportunities.

• We believe in individuals being their whole selves at work. We commit to this through supportive health care parental leave flexibility for the things that come up in life and innovating on how we think about supporting our people.

• We emphasize an environment of teaching and learning to equip employees with the tools needed to be successful in their function and the company.

• We strongly believe in the value of growing a diverse team and encourage people of all backgrounds genders ethnicities abilities and sexual orientations to apply.

Our annual base compensation for this role ranges from $192950 - $261050 for most US locations and 5% to 10% higher for US locations with a higher cost of labor. Job level and actual compensation will be decided based on factors including but not limited to individual qualifications objectively assessed during the interview process (including skills and prior relevant experience potential impact and scope of role) market demands and specific work location. Please discuss your specific work location with your recruiter for more information.

By applying for this position you acknowledge that you agree to the Mapbox Privacy Policy which is linked here.

Mapbox participates in E-Verify to confirm employee work authorization. Please refer to the Notice of E-Verify Participation and Right to Work posters for more information.

We are committed to a fair and equitable hiring process. We do not discriminate against any protected class.

#LI-Remote