Enterprise Security Engineering Lead [InfoSec]

Enterprise Security Engineering Lead [InfoSec] Browserbase powers web browsing capabilities for AI agents and applications. We manage headless browser infrastructure for automations that interact with websites, fill out forms, and replicate user actions. As an infrastructure provider, Browserbase offers remote code execution as a service, at scale. We raised a $40M Series B last year and are continuing to grow, fast. Backed by Kleiner Perkins, CRV, and Notable Capital, our fast-moving team is building on our CEO's founding vision (https://memos.hawkhill.ventures/p/an-internet-browser-for-ai) to power the world's best AI tools and help everyone automate the web. As an enterprise information security engineering lead at Browserbase, you will protect the enterprise and its infrastructure in this novel and fast moving threat environment. You are an expert at developing security best practices in a fast-growing startup, defending the integrity of the business while enabling its growth. WHAT YOU’LL DO - Design, implement and maintain security measures for enterprise systems - Design, build and integrate security tooling to manage our enterprise systems - Design and implement security design review, code review, threat modeling and architecture reviews - Manage our enterprise vulnerability management program - Develop and enforce security policies, standards and best practices - Configure and implement cloud security services, including identity and access management, detective controls, infrastructure protection, and data protection - Develop and mature our enterprise security playbooks and processes - Establish monitoring baseline for detection and response - Collaborate with teams across browserbase - Participant in security on-call - Serve as the senior escalation point for the team when needed for help with investigations and incidents WHAT WE LOOK FOR - A seasoned enterprise security engineer with a strong ability to design, build, evaluate and maintain systems - Experience leading investigations and incidents including containment actions and remediation when needed in a cloud heavy environment - AWS or similar preferred, experience with serverless providers like Vercel a plus. - Design and implement security tooling including endpoint protection and centralized event management. - Demonstrated experience and deep subject matter expertise in Corporate systems including but not limited to: Snowflake, Github, Google Workspace, Slack, Notion, Linear, Hubspot, Rippling, Okta, Ramp, Pylon, Vanta, Supabase, AWS - Experience with designing and deploying endpoint management and visibility solutions - Experience with enterprise vulnerability management programs - Experience managing security posture for LLMs and agentic AI tools - Familiarity with container orchestration technologies (Kubernetes) - Experience developing and deploying cloud services using Infrastructure as code with Terraform or similar. - Experience with Typescript, Go or similar language to build security tooling. - Experience building systems with AWS or similar cloud environments. - Ability to lead enterprise assurance and compliance programs (e.g. SOC 2 Type II). - Ability to lead and drive projects throughout the organization. - Strong communication skills with the ability to switch communication style when needed between technical and non-technical audiences WHY JOIN US? - Work on some of the hardest problems in modern infrastructure. - Collaborate with a small, high-bar team of engineers who care deeply about quality. - Build core technology that every Browserbase product depends on. - Join an ambitious startup where your impact will be felt immediately.