Software Engineer, Security & Platform

About GC AI

GC AI is the fastest-growing and most trusted legal AI platform for in-house legal teams. We're building the future of legal work, and we're doing it fast. You'll join at a pivotal moment—when decisions matter, impact is immediate, and the runway to shape your career is wide open. We’re a high-performing team where you'll have real ownership and influence from day one.

More than 1,300 companies use GC AI to drive their business forward, including 150+ public companies, 25+ unicorns, and brands such as News Corp, Miro, Bass Pro Shops, Snyk, Skims, Liquid Death, Vercel, Zscaler, and TIME.

We've 10x'd revenue in 12 months, raised a $60 million Series B ($555 million valuation), and are growing faster than ever. We are backed by incredible investors, including Scale Venture Partners, Northzone, Sound Ventures, and Guillermo Rauch, CEO of Vercel.

If you thrive when the stakes are high and the path isn't paved, you'll love it here. Our six guiding principles are: 1% better every day, customer obsession, ship today, find a way, care deeply, and own it completely. Come shape the future of legal work with us.

Location

We are hiring for this role to be based in the United States or Canada. This is a remote role unless you fall within the following parameters. If you live within approximately 50 miles of our San Mateo, CA or Provo, UT office, the position follows a hybrid schedule with in-office days on Mondays, Wednesdays, and Fridays.

About The Software Engineer, Security & Platform Role

Help harden, simplify, and operationalize a TypeScript-based production system used by security-conscious, legal/regulatory, and enterprise customers.

This is not a feature-churn role – though you may contribute directly to product experiences. The core need centers on security, auditability, infrastructure correctness, and customer trust, with occasional forward-deployed and sales-adjacent work when deep technical context is required.

A major component of this role will be to collaborate to form and evangelize engineering direction and culture with respect to security needs. If you’re comfortable owning security surfaces end-to-end—code, cloud, and customer conversations—this role will suit you.

We’re an AI-forward environment and (responsibly) use AI tools like Cursor and Claude Code for our work.

What You'll Do

• Help unify logging, security events and other auditability functionality within our platform.
• Work with legal and sales to help communicate security posture, functionality, and compliance.
• Work with DevOps and other engineering functions to promote and maintain strong security positions, clear auditability, tight network boundaries, and alignment with security, compliance, and customer needs.

What You Bring

• Strong experience with TypeScript across backend and frontend.
• Production experience with Google Cloud Platform (IAM, service accounts, project isolation).
• Experience with infrastructure as code (Terraform, Pulumi, or similar).
• Practical experience designing or implementing:
  • Audit logs and SIEM experience
  • Access controls / complex roles, organizations, and permissioning
  • Security-relevant telemetry
• Ability to reason about real risk vs. checklist compliance.

Nice to Have

• Experience acting as a technical lead either on a team or a vertical, strong soft skills.
• Familiarity with security questionnaires, vendor risk reviews, SOC 2, and audits.
• Prior work in regulated or compliance-heavy environments.
• Comfort working directly with customers or sales in technical contexts.

Key skills/competency

• TypeScript
• Google Cloud Platform (GCP)
• Infrastructure as Code (IaC)
• Security Engineering
• Audit Logs
• SIEM
• Access Control
• Compliance
• DevOps Collaboration
• Risk Assessment