[Hiring] Senior Security Engineer @MagicSchool AI

Role Description

As Senior Security Engineer (Application & Cloud Security), you will serve as the primary security enabler for our Engineering, Product, and Design teams - building the practices, tooling, and trust that allow developers to move fast without introducing risk. You'll report directly to the Director of IT and play a critical role in protecting the systems educators and students rely on every day.

MagicSchool is operating in a compliance-critical environment serving millions of educators and students. The security foundation is being actively built - not inherited - and this role is central to getting it right.

Responsibilities

• Secure Development Lifecycle & Vulnerability Management:
  • Champion secure development practices including threat modeling, code reviews, and dependency monitoring.
  • Lead the implementation and ongoing management of StackHawk and GitHub Advanced Security for automated scanning.
  • Triage emerging threats like compromised packages and zero-day disclosures.
  • Build developer-friendly workflows that integrate security without sacrificing velocity.
• Infrastructure & Architecture Security:
  • Partner with IT and engineering leadership to maintain core security infrastructure - including firewall management, content filtering, and privilege access controls.
  • Serve as a trusted security advisor in architecture conversations, helping teams design systems that are secure by default across AWS, Google Cloud, and on-prem environments.
• Identity & Access Management:
  • Own the end-to-end IAM security strategy across cloud (AWS, GCP), SaaS, and internal tooling.
  • Manage identity lifecycle, SSO/SAML/OIDC configuration, role-based and attribute-based access controls, and zero-trust access patterns.
  • Partner with IT and engineering to enforce least-privilege principles and govern developer and service account access.
  • Build scalable access review processes that hold up under SOC 2 scrutiny.
• Red Teaming & Threat Assessment:
  • Design and execute threat modeling exercises tailored to the unique attack surface of an AI-powered EdTech platform.
  • Plan and oversee red team assessments, either internally or through third-party partners.
• Incident Response & Preparedness:
  • Serve as first responder and on-call point of contact for security incidents.
  • Own and evolve incident response playbooks, lead postmortems, and run internal enablement programs.
  • Conduct workshops and simulations that build security awareness and readiness across engineering and staff.
• Cross-Functional Alignment:
  • Partner with IT and Compliance to support SOC 2, FERPA, and COPPA programs.
  • Ensure engineering efforts stay aligned with our regulatory commitments.

Qualifications

• Hands-on experience with SAST, DAST, and SCA tooling - ideally including StackHawk and GitHub Advanced Security.
• Experience in cloud-native security within AWS and/or Google Cloud.
• Prior involvement in offensive security or red teaming.
• Strong experience conducting or facilitating threat modeling using formal frameworks (e.g., STRIDE, PASTA).
• Comfortable serving as a security advisor in live architecture conversations.
• Experience securing LLM-integrated or AI-powered products.
• Ability to translate complex security topics for both technical and non-technical stakeholders.
• Skilled at building cross-functional trust and coaching engineers on security principles.

Requirements

• At least 5 years of experience in application or cloud security.
• Proven track record of embedding directly into engineering teams.

Benefits

• Work on cutting-edge AI technology that directly impacts educators and students.
• Join a mission-driven team passionate about making education more efficient and equitable.
• Flexibility of working from home, fostering a unique culture built on relationships, trust, communication, and collaboration.
• Unlimited time off to empower employees to manage their work-life balance.
• Choice of employer-paid health insurance plans, including dental and vision at low premiums.
• Generous stock options, vested over 4 years.
• 401k match & monthly wellness stipend.