Senior Information Security Engineer

About Algolia

Algolia is a pioneer and market leader in AI Search, empowering over 17,000 businesses to deliver blazing-fast, predictive search and browse experiences at internet scale. We power over 30 billion search requests weekly, a volume significantly higher than several major search engines combined. In 2021, Algolia secured $150 million in Series D funding, elevating our valuation to $2.25 billion. This robust foundation supports our continued investment in our platform and commitment to serving esteemed customers like Under Armour, PetSmart, Stripe, Gymshark, and Walgreens.

The Opportunity: Senior Information Security Engineer

Algolia powers search and discovery for thousands of companies, handling billions of queries monthly. Our services operate at a massive internet scale, processing vast data volumes in real time. This extensive visibility and reach present unique Information Security challenges. We are seeking a North-American based, pragmatic, technically strong, and collaborative Senior Information Security Engineer, ideally located in the Central or Eastern timezone, to strengthen our Information Security posture and enable secure innovation. At Algolia, Information Security is not an afterthought; it's a core design and operational principle, ensuring trust, privacy, and resilience across our infrastructure, products, and internal processes.

What You’ll Do

• Design and automate controls, detection mechanisms, and tooling to enhance the Information Security of Algolia’s infrastructure and products.
• Research, evaluate, and recommend new Information Security technologies, techniques, and frameworks.
• Design, implement, and maintain information security monitoring and remediation systems to protect Algolia’s customers’ data and internal systems.
• Partner with engineering and product teams to integrate Information Security into new features, systems, and development pipelines.
• Contribute to improving Information Security standards, processes, and best practices across the company.
• Conduct Information Security risk assessments and threat models for core systems, services, and third-party vendors (excluding customer third-party risk assessment questionnaires).
• Participate in and sometimes lead Information Security incident response activities and post-incident analysis.
• Support ongoing and emerging Information Security and compliance initiatives (e.g., SOC 2, Type II, ISO 27001, C5, GDPR).
• Manage and enhance Algolia’s public bug bounty and vulnerability disclosure programs.

What We’re Looking For

• 3–6 years of experience in Information Security engineering, infrastructure protection, or related technical domains.
• Strong understanding of Information Security principles for modern cloud environments (AWS, GCP, or Azure).
• Strong understanding of, comfort with, and at least three years of experience in operating, configuring, and managing log management / SIEM, threat detection and posture management, endpoint detection and response, SAST, SOAR, and other table-stakes information security systems.
• Knowledge of common internet Information Security threats, attack vectors, and mitigation strategies.
• Proficiency in scripting or automation with at least one language (Python, Bash, Go, or similar).
• Solid understanding of computer systems, networks, and low-level protocols from an Information Security perspective.
• Experience in incident detection, response, and vulnerability management.
• Excellent communication skills, with the ability to explain Information Security risks and concepts to both technical and non-technical audiences.
• Full professional proficiency in English.

Nice to Have

• Experience scaling Information Security programs in high-growth SaaS organizations (10,000+ customers, $50–200M ARR range).
• Cloud-specific Information Security certifications or equivalent training (e.g., AWS Security Specialty, GCP Professional Security Engineer).
• Experience with complex secrets management systems such as Hashicorp Vault.
• Experience contributing to Information Security communities (e.g., bug bounty triage, open-source security tools, Capture the Flag).
• Background in privacy engineering, threat modeling, or secure software design.

Why You’ll Love Working Here

• A culture valuing continuous learning, curiosity, and collaboration in Information Security.
• A global, remote-friendly team treating Information Security as an enabler of innovation.
• Opportunities to make a measurable impact on the Information Security of systems used by millions of end users.
• Ongoing professional development and support as the Information Security landscape evolves.

Our Values

Algolia is built on core values that guide our work:

• GRIT: Problem-solving and perseverance in an ever-changing environment.
• TRUST: Willingness to trust co-workers and take ownership.
• CANDOR: Ability to receive and give constructive feedback.
• CARE: Genuine care about team members, clients, and company decisions.
• HUMILITY: Aptitude for learning from others, putting ego aside.

Key skills/competency

• Information Security Engineering
• Cloud Security (AWS, GCP, Azure)
• Threat Detection & Response
• Vulnerability Management
• Incident Response
• Security Automation (Python, Bash, Go)
• SIEM & Log Management
• Risk Assessment & Threat Modeling
• Compliance (SOC 2, ISO 27001, GDPR)
• Secrets Management (Hashicorp Vault)