Security Engineer

As a Security Engineer you will identify and drive impactful projects to improve the security of Figma's product, platform, and IT systems. We are hiring for multiple teams within Security Engineering: AI Security, Platform Security, Product Security, and Anti-Abuse. This is a remote first role.

You will partner closely with teams across the company and focus on systemic security improvements and risk reduction. You will also participate in operational security responsibilities like security reviews, consulting, vulnerability triage, and security incident response.

Examples of what you may work on across teams:

AI Security

• Perform technical security assessments, code audits, and design reviews for new AI infrastructure, platforms, and products.
• Design and develop technical solutions to secure AI models, tooling, debugging workflows, and data pipelines.
• Advocate for secure practices across Figma's AI infrastructure, platforms, and data systems.
• Build the next generation of internal AI-powered access insights and security tooling.
• Help run penetration testing and offensive security exercises against Figma's AI infrastructure, platforms, and products.

Platform Security

• Perform technical security assessments, code audits, and design reviews for changes to Figma's cloud and corporate infrastructure.
• Design and develop solutions to prevent or mitigate cloud and corporate security risks.
• Advocate for secure practices within Figma's cloud and corporate infrastructure.
• Build platforms and tooling to detect and respond to infrastructure and corporate security threats.

Product Security

• Perform technical security assessments, code audits, and design reviews for new product features.
• Design and develop solutions to prevent or mitigate product security vulnerabilities.
• Advocate for secure development practices across Figma's products and services.
• Help run penetration testing, offensive security exercises, and support our bug bounty program.
• Help respond to product security incidents.

Anti-Abuse

• Design and build technical systems to prevent spam, fraud, and abuse.
• Partner closely with product teams to identify and address potential abuse vectors.
• Develop new signals and improve the use of existing signals to detect abusive behavior.
• Help respond to spam, fraud, and abuse incidents.

This is a full-time role that can be held from one of our US hubs or remotely in the United States., * Holding interviews in an accessible location

• Enabling closed captioning on video conferencing
• Ensuring all written communication be compatible with screen readers
• Changing the mode or format of interviews

To ensure the integrity of our hiring process and facilitate a more personal connection, we require all candidates keep their cameras on during video interviews. Additionally, if hired you will be required to attend in person onboarding.

• 5+ years of proven engineering experience working in either a Security Engineering or a Software Engineering role. In the case of the latter, some security experience is preferred.
• Strong security judgment in threat modeling and risk prioritization and/or strong technical judgment in designing and building maintainable, scalable systems.
• Proficiency in at least one general-purpose coding language.
• Strong communication and interpersonal skills, with demonstrated experience collaborating across functions.

While not required, it's an added plus if you also have:

• Subject matter expertise in Application Security, Cloud Security, Corporate Security, Data Access Governance, and/or IAM (Identity and Access Management).
• Demonstrated ability to make hard prioritization decisions in security controls., Job level and actual compensation will be decided based on factors including, but not limited to, individual qualifications objectively assessed during the interview process (including skills and prior relevant experience, potential impact, and scope of role), market demands, and specific work location. The listed range is a guideline, and the range for this role may be modified. For roles that are available to be filled remotely, the pay range is localized according to employee work location by a factor of between 80% and 100% of range. Please discuss your specific work location with your recruiter for more information.

Figma offers equity to employees, as well a competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave & reproductive or family planning support, mental health & wellness benefits, generous PTO, company recharge days, a learning & development stipend, a work from home stipend, and cell phone reimbursement. Figma also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles. Figma's compensation and benefits are subject to change and may be modified in the future.

Annual Base Salary Range:

$153,000-$376,000 USD

Figma is growing our team of passionate creatives and builders on a mission to make design accessible to all. Figma's platform helps teams bring ideas to life-whether you're brainstorming, creating a prototype, translating designs into code, or iterating with AI. From idea to product, Figma empowers teams to streamline workflows, move faster, and work together in real time from anywhere in the world. If you're excited to shape the future of design and collaboration, join us!