Staff Product Security Engineer

Reddit is a community of communities. It’s built on shared interests, passion, and trust, and is home to the most open and authentic conversations on the internet. Every day, Reddit users submit, vote, and comment on the topics they care most about. With 100,000+ active communities and approximately 126 million daily active unique visitors, Reddit is one of the internet’s largest sources of information. For more information, visit www.redditinc.com.

About the Role

Reddit is a community of communities. It’s built on shared interests, passion, and trust and is home to the most open and authentic conversations on the internet. Every day, Reddit users submit, vote, and comment on the topics they care most about. With 100,000+ active communities and approximately 97M+ daily active unique visitors, Reddit is one of the internet’s largest sources of information. For more information, visit redditinc.com.

Reddit is hiring a Staff Product Security Engineer to make the secure path the easiest path for engineers and AI agents. You’ll lead the design and delivery of secure frameworks, paved paths, and workflow-native controls that eliminate recurring vulnerability classes before they reach production. As AI-assisted development accelerates code velocity faster than manual review can absorb, this role exists to close that gap structurally — through guardrails, automation, and platform-level prevention that scale with the engineering org.

What You’ll Do

• Build and evolve secure frameworks, guardrails, and library-level controls that make common vulnerability classes harder to introduce.
• Design security controls for AI-assisted development — including reusable rule packs and skills that shape how engineers and coding agents generate, review, and ship code.
• Embed security into the workflows engineers already use.
• Drive product security reviews for new launches and major architectural changes.
• Identify and eliminate systemic security debt.
• Shape strategy, influence architecture, and drive execution across teams.

What We’re Looking For

• 8+ years of experience in software engineering, product security, or application security, with at least 2 years operating at a staff level of scope and impact.
• Proficiency in one or more languages (Go, Python, JS/TS).
• Experience designing, building, and operating production-quality systems and developer-facing platforms.
• Experience building secure frameworks, libraries, or guardrails that improve security across many teams at once.
• Demonstrated ability to integrate security into developer workflows: CI/CD, code review, release processes, and internal platforms.
• Clear communicator who can explain technical detail and business impact to both engineers and leadership.
• Comfortable in fast-moving environments where AI-assisted development is reshaping how software is built and reviewed.
• Experience with vulnerability discovery and remediation pipelines, including bug bounty or researcher-reported findings.
• Track record of mentoring engineers and raising the technical bar across a security or platform engineering org.

Preferred Qualifications

• Experience securing AI/LLM systems, agentic workflows, or AI-assisted development tooling.
• Familiarity with authentication/authorization systems, cloud-native platforms, and how to secure them.

Pay Transparency

This job posting may span more than one career level.

In addition to base salary, this job is eligible to receive equity in the form of restricted stock units, and depending on the position offered, it may also be eligible to receive a commission. Additionally, Reddit offers a wide range of benefits to U.S.-based employees, including medical, dental, and vision insurance, 401(k) program with employer match, generous time off for vacation, and parental leave. To learn more, please visit https://www.redditinc.com/careers/.

The base salary range for this position is:

$217,000 – $303,900 USD