Security Engineer

About Modular

At Modular, we’re on a mission to revolutionize AI infrastructure by systematically rebuilding the AI software stack from the ground up. Our team, made up of industry leaders and experts, is building cutting-edge, modular infrastructure that simplifies AI development and deployment. By rethinking the complexities of AI systems, we’re empowering everyone to unlock AI’s full potential and tackle some of the world’s most pressing challenges.

If you’re passionate about shaping the future of AI and creating tools that make a real difference in people’s lives, we want you on our team. You can read about our culture and careers to understand how we work and what we value.

About The Role:

As Modular’s first Security Engineer, you will establish and scale the foundation of our security program. You’ll design and implement security practices that enable our teams to build, deploy, and operate AI infrastructure safely and with confidence. This role combines hands-on technical depth with strategic influence, embedding “shift-left” security into the developer experience, driving secure software supply chain practices, and shaping incident response and governance across the organization. You’ll collaborate across Platform, Product, and IT teams to ensure that security accelerates, rather than constrains, our innovation.

LOCATION: Candidates based in the US or Canada are welcome to apply. You can work in our office in Los Altos, CA or remotely from home. Onboarding for new hires is conducted in-person in our Los Altos, CA office.

What You Will Do:

• Define the strategy, metrics, and implementation plan for a successful security program that measurably improves Modular’s security maturity while supporting development velocity and business objectives.
• Analyze and strengthen the security of Modular’s software, infrastructure, and supply chain to prevent, detect, and respond to attacks.
• Stay up to date with the latest threats, vulnerabilities, and countermeasures across application, infrastructure, and supply chain security.
• Build and automate "shift-left" security practices within the software development lifecycle to help teams deliver secure code faster.
• Conduct risk assessments on third-party vendors, services, and software dependencies to identify and mitigate potential vulnerabilities.
• Develop and implement security policies and procedures for evaluating new technologies, software acquisitions, and integrations.
• Collaborate with engineering, IT, and procurement teams to ensure secure deployment and sourcing practices.
• Monitor for and investigate security incidents, coordinating response, containment, and remediation across teams.
• Educate and train staff on security best practices, awareness, and secure development principles.
• Contribute to the creation and maintenance of disaster recovery and business continuity plans to ensure resilience.

What You Bring To The Table:

• 7+ years of experience in security engineering, software engineering, or infrastructure security roles, with a strong understanding of secure system design and architecture.
• Deep knowledge of software supply chain security, including build system hardening, artifact signing, dependency management, and vulnerability scanning.
• Hands-on experience implementing “shift-left” security practices, integrating security into CI/CD, IaC, and developer workflows.
• Familiarity with incident response, threat modeling, and risk assessment processes, especially in fast-moving engineering environments.
• Proficiency in at least one systems language (C, C++, Go, or Rust) and one scripting language (Python, Bash, or similar).
• Strong collaboration skills, with the ability to work closely with developers, IT, and leadership to embed security into everyday operations.
• Excellent written and verbal communication skills, you can explain complex security issues clearly to both technical and non-technical audiences.
• Curiosity and creativity for solving complex problems, and a pragmatic, engineering-driven approach to building secure systems that empower innovation.
• Strongly identifies with our core company cultural values.

What Modular Brings To The Table:

• Amazing Team. We are a progressive and agile team with some of the industry’s best engineering and product leaders.
• World-class Benefits. In order to attract the best, we need to offer the best. Premier insurance plans, up to 5% 401k matching, flexible paid time off, and more are available to you! Please note that specific benefit packages may vary based on your location.
• Competitive Compensation. We offer very strong compensation packages, including stock options. We want people to be focused on their best work and believe in tailoring compensation plans to meet the needs of our workforce. 
• Team Building Events. We organize regular team onsites and local meetups in Los Altos, CA as well as different cities. Traveling 2-4 times a year is expected for all roles. 

Working at Modular will enable you to grow quickly as you work alongside incredibly motivated and talented people who have high standards, possess a growth mindset, and a purpose to truly change the world.

The estimated base salary range for this role to be performed in the US, regardless of the state, is $234,000.00 - $286,000.00 USD. 
The estimated base salary range for this role to be performed in Canada, regardless of the province, is $221,000.00 - $270,000.00 CAD.
The salary for the successful applicant will depend on a variety of permissible, non-discriminatory job-related factors, which include but are not limited to education, training, work experience, business needs, or market demands. This range may be modified in the future. The total compensation for a candidate will also include annual target bonus, equity, and benefits, with equity making up a significant portion of your total compensation.

For candidates who fall outside of the listed requirements, we nevertheless encourage you to apply as we may have openings that are lower/higher level than the ones advertised. 

Modular is proud to emphasize an equal opportunity, safe environment for people to do their best work. Modular is an affirmative action employer. We are committed to providing equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.
If you require reasonable accommodations to participate in the interview process, please let your recruiter know, and we will work with you to meet your needs in compliance with the ADA.

This employer participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. If E-Verify cannot confirm that you are authorized to work, this employer is required to give you written instructions and an opportunity to contact Department of Homeland Security (DHS) or Social Security Administration (SSA) so you can begin to resolve the issue before the employer can take any action against you, including terminating your employment. Employers can only use E-Verify once you have accepted a job offer and completed the Form I-9.