Security Engineer
Security Engineer
Location: United States (Remote)
Department: Engineering
Reports To: Manager Infrastructure/DevOps
About Hatch
Hatch is an AI-powered customer engagement platform transforming how home services businesses connect with their customers. We're building the future of customer communication through voice AI, intelligent messaging, and seamless CRM integrations. Our platform helps thousands of businesses deliver exceptional customer experiences at scale. Recently acquired by Yelp, Hatch operates as a startup within the Yelp family—maintaining our fast-moving, aggressive startup culture while leveraging the scale and resources of a public company.
About the Role
We're looking for a Security Engineer to help build and maintain our security posture. You'll work across application security, infrastructure security, and compliance—ensuring our platform protects customer data and meets enterprise security requirements.
What You'll Do
Implement and maintain security controls across infrastructure and applications
Conduct security assessments, code reviews, and penetration testing
Manage vulnerability scanning and remediation programs
Build security monitoring and incident detection capabilities
Support compliance efforts (SOC 2, etc.)
Develop security policies and documentation
Educate engineering teams on secure development practices
Evaluate and implement security tools and technologies
What We're Looking For
3+ years of security engineering or application security experience
Experience with cloud security (AWS preferred)
Understanding of common vulnerabilities (OWASP Top 10)
Familiarity with security tools (SAST, DAST, vulnerability scanners)
Knowledge of authentication, authorization, and cryptography
Experience with security logging and monitoring
Strong communication and documentation skills
Ability to balance security with engineering velocity
Nice to Have
Experience with compliance frameworks (SOC 2, HIPAA)
Background in penetration testing or red teaming
Familiarity with container and Kubernetes security
Experience with SIEM tools and threat detection
Security certifications (CISSP, CEH, etc.)
What We Offer
Competitive salary
Comprehensive health, dental, and vision insurance
Flexible PTO policy
Remote-first work environment
Home office stipend
Professional development budget
Closing
There are a variety of factors that go into determining a salary range, including but not limited to external market benchmark data, geographic location, and years of experience.
Based on the anticipated level of experience we are seeking, we expect the compensation range for this role to be between $112,000 and $269,000. You may also be offered a bonus, restricted stock units, and benefits.
We will consider for employment qualified candidates with arrest and conviction records, consistent with applicable law (including, for example, the San Francisco Fair Chance Ordinance for roles based in San Francisco, the Los Angeles County Fair Chance Ordinance for roles based in the unincorporated areas of Los Angeles County, and the California Fair Chance Act for roles based in California).
Where required by law, a criminal background check will not be conducted until after a conditional offer of employment is made, and any evaluation of a candidate's criminal background check will be subject to an individualized assessment that takes into account the candidate's specific criminal records and the responsibilities and requirements of the particular role.