Cypress HCMRemote
Anti-Abuse Security Engineer, Product Security
United States
Contract
2 hours ago
$54 - $36 USD
H1B Sponsor
Key skills
PythonJavaGoSQLMLSnowflakeCypressAWSAzureGCPLeadershipNetwork Security
About this role
Cypress HCM is committed to building the world’s greatest data and applications platform, and they are seeking an Anti-Abuse Security Engineer to protect their platform and customers from abuse. This role involves designing and operating systems to mitigate abuse activity while collaborating with various teams to develop prevention controls and detections.
Responsibilities:
- Understand the abuse risks faced by us and our customers
- Design and deploy the anti-abuse controls for our features, including compromised account detections, data exfiltration detections, LLMs, the newest, highest risk, features such as Snowflake Intelligence, data sharing, and future engineering challenges as we grows
- Work directly with senior engineers and management to illustrate abuse risks, threats, exploits, to guide business decisions
- Research, plan, and build anti-abuse architectures for our products and features
- Provide designs and reference implementations for new anti-abuse features
- Research new services, controls, or features that can help protect the product and our customers from abuse
Requirements:
- Bachelor's degree in Computer Science or related technical field or equivalent practical experience
- 4+ years of experience with anti-abuse AppSec, threat modeling, and/or secure architecture
- Understanding of common abuse patterns (e.g., ATO, scraping, spam, fraud, privilege misuse)
- Proficiency in Python, SQL, or a similar language for building detections and data pipelines
- In-depth knowledge of anti-abuse solutions, cloud, application security, network security, and/or infrastructure security, LLMs
- Applied knowledge of securing AWS, Azure, and other public cloud providers
- Experience performing source code reviews across various languages (e.g. Java, Go)
- Working knowledge of malware detection and best practices
- Ability to assess engineering designs and architecture diagrams for abuse risks
- Ability to assess abuse risks within an application or feature
- Experience communicating abuse risks and roadmaps to senior leadership
- Experience designing and implementing anti-abuse solutions
- Experience contributing to the security anti-abuse community such as presenting at conferences or meetups
- Master's degree or PhD in Computer Science or related technical field
- Skilled in writing, debugging, and optimizing SQL queries to support data-driven decisions and operations
- Experience with cloud environments (AWS, GCP, Azure) and their security/abuse detection tooling
- Familiarity with ML-based detection systems, feature engineering, or anomaly detection methods