About the Role
We are looking for a Security Architecture Lead to serve as the primary technical authority for Replit's security blueprint. In this Technical Lead capacity, you will steer the architectural direction for a team of security architects and engineers, ensuring our platform is resilient and secure by design.
What You'll Do
Technical Leadership & Mentorship
- Act as the lead technical voice for security architecture, defining the long-term vision and ensuring consistency across complex infrastructure and product projects.
- Provide high-level guidance and mentorship to security engineers, fostering a culture of technical excellence and rigorous security design without the overhead of administrative management.
- Lead cross-functional squads through complex security implementations, from initial design to final production deployment.
Architecture Strategy & Risk Management
- Define and maintain (document) the authoritative 'Source of Truth' for Replit's secure architecture, ensuring these patterns are consistently adopted across all engineering teams.
- Drive the design for secure bootstrapping and multi-layered trust. Enforce isolation principles at every level—from technical containerization and network segmentation to business logic and multi-tenant resource separation.
- Actively identify, document, and quantify architectural security risks. You will be responsible for ensuring these are accurately reflected in the Cybersecurity Risk Register, translating technical debt into actionable risk profiles for executive stakeholders.
Security Design & Review
- Oversee and conduct deep-dive security reviews for core product features and infrastructure, identifying potential threats and mitigating risks early in the development lifecycle.
- Own the architectural strategy for Availability, specifically defending against DoS threats to ensure a highly resilient platform.
Cross-Functional Enablement
- Partner with GRC teams to translate complex architectural designs into clear, audit-ready documentation and control frameworks. Evaluate required controls against architecture and assess readiness for future compliance certifications.
- Act as the technical bridge for the Sales team, addressing complex security inquiries from enterprise customers regarding Replit's architectural integrity.
Required Skills & Experience
- 8+ years of experience in security engineering or security architecture.
- Proven experience as a Technical Lead, steering large-scale projects and guiding the work of other senior engineers.
- Experience writing and maintaining Architecture documents.
- Deep expertise in cloud-native security architecture (GCP experience is a significant plus) for multi-tenant SaaS products.
- Experience designing secure boot, hardware/Cloud-KMS-rooted trust, and multi-layered defense systems.
- Strong understanding of isolation technologies and DDoS mitigation.
- Exceptional ability to communicate technical risk to both engineering and executive audiences.
- Strong track record of contributing to Cybersecurity Risk Register.
What We Value
- Systems Thinking: The ability to see the 'big picture' and understand how security decisions impact the entire stack.
- Technical Influence: The ability to drive technical alignment across the organization through expertise and collaboration rather than direct authority.
- Autonomy: Comfortable leading major technical initiatives and driving outcomes with minimal oversight.
- Problem-Solving Mindset: A passion for breaking down complex security challenges into elegant, scalable engineering solutions.
Full-Time Employee Benefits Include
- Competitive Salary & Equity
- 401(k) Program with a 4% match
- Health, Dental, Vision and Life Insurance
- Short Term and Long Term Disability
- Paid Parental, Medical, Caregiver Leave
- Commuter Benefits
- Monthly Wellness Stipend
- Autonomous Work Environment
- In Office Set-Up Reimbursement
- Flexible Time Off (FTO) + Holidays
- Quarterly Team Gatherings
- In Office Amenities
XML job scraping automation by YubHub
