Software Engineer, Security
NotionProductivity Software company
San Francisco, United StatesSenior
Software Engineering
About the role
Security Engineer to modernize authentication and build AI safety guardrails.
- •We are hiring an experienced security engineer with 10+ years of experience to own cross-cutting programs at the intersection of product, infrastructure, and AI.
- •Key Responsibilities Modernize and migrate authentication across Notion’s product surfaces (SAML/OIDC, OAuth flows, session semantics, passkeys, CSP, redirect handling).
- •Build and operate Notion’s AI safety guardrail stack, including prompt-injection protections (vendor evaluation, deployment model decisions, integration with agents) and an external-source provenance system for AI-generated content across Mail, Calendar, and MCP.
- •Advance our authorization platform direction by driving crisp architectural trade-offs (e.g., SpiceDB vs.
- •Macaroons) and shipping reusable primitives that product teams can adopt without bespoke security work.
- •Requirements Demonstrated ability to ship security-critical infrastructure in production systems (identity/authentication, authorization, platform primitives), including migrations that affect customers and require careful rollout and backwards compatibility.
- •Strong judgment navigating ambiguous trade-offs (security vs. product velocity, correctness vs. ergonomics, centralized platforms vs. local autonom).
Tech stack
OAuthJWTSAMLIAMSSOMFA
Match insights
Tech:OAuth, JWT, SAML, IAM, SSO
Level:Senior