Product Security Engineer, Infrastructure

Why Harvey

Harvey is a secure AI platform for professionals in law, tax, and finance that augments productivity and automates complex workflows.

Harvey uses algorithms with reasoning-adept LLMs that have been customized by our expert team of lawyers, engineers and research scientists.

We’ve found product market fit and are scaling our team very quickly. Some reasons to join Harvey are :

Do not wait to apply after reading this description a high application volume is expected for this opportunity.

Exceptional product market fit : We have partnered with the largest law firms and professional service providers in the world like A&O , PwC , and many others.

Strategic investors : Raised over $100 million from strategic investors including Sequoia, Kleiner Perkins, and the OpenAI Startup Fund.

World-class team : Harvey is hiring the best technical and non-technicaltalentfrom places like DeepMind, Google Brain, Stripe, FAIR, Tesla Autopilot, Superhuman, and Glean.

Partnerships : Our engineers and researchers work directly with OpenAI to build the future of generative AI and redefine professional services.

Performance : $0-20M ARR in the last 12 months.

Value : Top of market cash and equity compensation.

Role

You will report to our Head of Security and take ownership of securing the infrastructure that powers our main product, Harvey.

As an early member of our Security team, you will help lay the foundations of the security and privacy. Your focus will be to secure customer data in our main product, for example by designing and implementing process and technologies for least privilege, isolating different components, managing attack surface, and by implementing layers of tenant isolation on our multi-tenant SaaS offering.

As the company grows, you will work towards allowing our research and engineering teams to move more quickly and autonomously by building guardrails and repeatable patterns for managing their infrastructure.

Responsibilities

Incorporate secure design principles into our cloud architecture.

Deploy infrastructure security solutions in collaboration with our infrastructure team, e.g. for production access management, certificate management, and audit logging

Develop isolation mechanisms (e.g. sandboxing) in collaboration with our product engineering team

Review security-critical configuration changes and act as Codeowner for security-critical parts of our cloud configurations (everything is IaC)

Audit our existing cloud environment for vulnerabilities

Develop policies and procedures for the secure creation and operation of our cloud environments

Qualifications

4+ years experience in Security, Software Engineering, or Site Reliability Engineering roles

Strong fundamentals in networking, operating systems, and cryptographic protocols

In-depth knowledge of Kubernetes, common misconfigurations, and privilege escalation vectors

Demonstrated ability to find weaknesses (e.g. privilege escalation) in real-world cloud environments

Experience applying security best practices in cloud environments (AWS, Azure, or Google Cloud)

Software development experience

This role is based in San Francisco, CA. We use an in-person work model and offer relocation assistance to new employees.

Compensation

In consideration of market analysis and relevant factors, the salary range for this position is set between 200,000 and 280,000.

However, adjustments outside of this range may be considered for candidates whose qualifications significantly differ from those outlined in the job description.

Additionally, this role is eligible to participate in our equity plan and benefits program. Benefits include, but not limited to : Comprehensive health, dental and vision coverage, retirement benefits (401k match up to 4%), and flexible PTO.

Harvey is an equal opportunity employer and does not discriminate on the basis of race, gender, sexual orientation, gender identity / expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition, or any other basis protected by law.

J-18808-Ljbffr