Plaud

Senior Security Engineer - Singapore

1mo ago
WorldwideSenior
Plaud

Senior Security Engineer - Singapore

1mo ago
WorldwideSenioriso 27001iso 27701gdprsoc 2hipaa

Senior Security Engineer role at Plaud, focusing on data security and privacy protection in AI work companion solutions.

Responsibilities

  • You will own one or more of the following security domains.
  • Deep expertise in 1-2 areas is what we look for — you don't need to cover all six. Tell us your primary domain(s) when you apply.
  • 1. Cloud & Infrastructure Security
  • Secure Plaud's AWS/GCP environments: remediate credential exposure, deploy CSPM, embed IaC security gates (Checkov/Terraform in CI/CD), and implement Zero Standing Privileges (JIT/CIEM).
  • Data Security
  • Build the data protection foundation: design L1-L5 classification for audio/transcription/PII, map data flows, implement WORM access audit logs, and govern Snowflake/database permissions.
  • Application Security & AI Security
  • Own secure SDLC: integrate SAST/DAST into CI/CD, defend against Prompt Injection and LLM threats (OWASP LLM Top 10), and conduct security reviews for product releases.
  • Hardware & Firmware Security
  • Validate Plaud's hardware (Sigma) against EN 18031: own Secure Boot, OTA dual-key signing, PKI lifecycle, HBOM+CVE supply chain scanning, and PSIRT operations.
  • Security Operations
  • Build and run the SIEM platform (30+ MITRE ATT&CK-mapped; detection rules), establish IR playbooks, own MTTD/MTTR metrics, and produce monthly security reports for leadership.
  • Enterprise IT Security
  • Drive 100% EDR and MDM coverage, roll out Okta SSO/SCIM across the SaaS stack, and build a measurable security awareness program alongside the IT team.

Requirements

  • 5+ years of hands-on security engineering experience with deep expertise in at least one domain: cloudsecurity (AWS/GCP, CSPM, IAM), data security (classification, DLP, audit logging), application/AI security(SAST, DAST, LLM/Prompt Injection), hardware/firmware security (embedded systems, PKI, EN 18031),security operations (SIEM, IR, SOAR), or enterprise IT security (EDR, MDM, IdP/SSO).
  • Proven ability to build security controls from zero in a fast-moving environment — scoping work, selectingtools, and delivering independently without a pre-existing framework.
  • Cross-domain awareness: even if your depth is in 1-2 areas, you can reason about how cloud, data, product,hardware, and operational security interlock — and communicate risk clearly to engineering and leadership.
  • Familiarity with relevant standards and frameworks as applicable to your domain: NIST CSF, CISBenchmarks, OWASP / OWASP LLM Top 10, MITRE ATT&CK, SOC 2, ISO 27001, EN 18031, GDPR/PIPL.
  • Experience using AI tools (LLM-assisted triage, automated CSPM, AI coding tools) to amplify security output— or genuine curiosity to adopt them in your workflow.

Conditions

  • Meaningful Ownership An Employee Stock Ownership Plan (ESOP) that gives a real stake in Plaud’s long-term success.
  • High-Impact Environment Work in a fast-moving, product-driven environment where your ideas directly shape the future of AI productivity.
  • Cutting-Edge AI Tools for Productivity Access to best-in-class AI tools, including Cursor, GPT models, Gemini, Claude, and other frontier AI systems to maximize engineering and execution efficiency.
  • Best-in-Class Equipment Choice of top-spec laptops, high-performance workstation setups, and cutting-edge Plaud devices for all new hires.
  • Team & Culture Annual company offsites, team events, and a culture that values craftsmanship, ownership, and velocity.
  • Medical & Insurance Coverage Comprehensive benefits to protect our employees' financial security, physical health, and longterm growth. Medical insurance and WICA coverage for all full-time employees.

Other

  • Plaud is building the world's most trusted AI work companion for professionals to elevate productivity and performance through note-taking solutions, loved by over 2,000,000 users worldwide since 2023. With a mission to amplify human intelligence, Plaud is building the next-generation intelligence infrastructure and interfaces to capture, extract, and utilize what you say, hear, see, and think.
  • Plaud Inc. is a Delaware-incorporated, San Francisco-based company pushing the boundary of human–AI intelligence through a hardware–software combination. With ISO 27001, ISO 27701, GDPR, SOC 2, HIPAA, and EN 18031 compliance, Plaud is committed to the highest standards of data security and privacy protection.
  • To learn more about Plaud, please visit https://www.plaud.ai and follow along on Instagram , X , Facebook , Linkedin , and YouTube
  • Plaud is building the next generation intelligence infrastructure and interfaces to capture, extract, and utilize intelligence from what people say, hear, see, and think.
  • Plaud is a bootstrapped, skyrocketing, profitable company with a $250M revenue run rate achieved in just three years.
  • Define the next-gen paradigm for human-AI interaction.
  • Gain exposure to cutting-edge AI for Pro tools and play a direct role in our global expansion.
  • Work with passionate teammates who value innovation, collaboration, and customer success.
  • Grow your career in a culture that champions continuous learning and fast career development.
  • Market-competitive compensation, global exposure, and a vibrant, creativity-fueled work atmosphere.