Staff Software Engineer - Security

About SunoSuno is a music company built to amplify imagination. Powered by the world’s most advanced AI music model, Suno offers an unparalleled creative platform that includes Suno Studio, a breakthrough generative audio workstation. From shower-singers to aspiring songwriters to seasoned artists, Suno empowers a global community to create, share, and discover music—unlocking the joy of musical expression for all.About the RoleWe are seeking experienced generalist application/cloud Security Software Engineers to join our security and infrastructure team. You will be responsible for designing, implementing, and maintaining secure cloud infrastructure and ensuring the integrity of our cloud-native applications.Check out the Suno version of this role here!What You’ll DoDesign and implement secure cloud architectures across multiple cloud platforms (e.g., AWS, GCP)Build and maintain Infrastructure as Code (IaC) libraries with embedded security controlsConduct regular security assessments, in-depth code reviews, and audits of application code and cloud infrastructureDesign and implement secure coding guidelines, CI/CD, and best practices for development teamsManage vulnerability tracking and remediation efforts, providing guidance to development teamsWork closely with IT to ensure secure system administration and compliance with security policiesContribute to the design and enforcement of Identity & Access Management (IAM) GovernanceContribute to the creation and maintenance of security documentation, playbooks, and metricsKeep up to date with emerging threats, security trends, and best practices in cloud-native and AI environmentsWhat You’ll NeedBachelor's degree in Computer Science, Cybersecurity, or a related field5+ years of experience in cloud security or related rolesProficiency in AWS and associated security servicesStrong experience in cloud security principles, compliance frameworks, and best practicesExperience with Infrastructure as Code tools (e.g., CDK, Terraform)Familiarity with containerization technologies and their security implicationsUnderstanding of network security concepts and protocolsExperience with scripting languages (e.g., Python, Bash) for application security, automation, and tool developmentExperience performing application security assessments and providing security oversight for large-scale enterprise software initiatives is preferred.Experience designing and implementing secure data-access patterns for databases and object storage—particularly across authorization models and permission governance —is preferred.Bachelor's degree or equivalent required.Additional Notes: Applicants must be eligible to work in the US.Location: This is an in office role in NYC or Cambridge, Mass.BenefitsGenerous Company Equity Package401(k) with 3% Employer Match & Roth 401(k)Unlimited PTO & Sick TimeMedical, Dental, & Vision Insurance (PPO w/ HSA & FSA options)Continued / Creative Education StipendGenerous Commuter AllowanceIn-Office Lunch (5 days per week)Suno is proud to be an Equal Opportunity Employer. We consider qualified applicants without regard to race, color, ancestry, religion, sex, national origin, sexual orientation, gender identity, age, marital or family status, disability, genetic information, veteran status, or any other legally protected basis under provincial, federal, state, and local laws, regulations, or ordinances. We will also consider qualified applicants with criminal histories in a manner consistent with the requirements of state and local laws, including the Massachusetts Fair Chance in Employment Act, NYC Fair Chance Act, LA City Fair Chance Ordinance, and San Francisco Fair Chance Ordinance.