SOC Engineer
Directly defends an AI "vibe-coding" platform — security work tailored to agentic/AI-driven development workflows and rapid AI-enabled iteration.
About the Role
Replit is hiring a SOC Engineer to monitor, investigate, and mitigate threats across its cloud-native, AI-driven platform. The role focuses on rapid threat assessment, log-based investigations, and cross-team containment and remediation in a GCP-centered environment.
Job Description
Role
Replit is seeking a hands-on SOC Engineer to join Security Operations and defend a fast-moving, cloud-native AI “vibe-coding” platform. The engineer will monitor emerging threats, evaluate their applicability to Replit’s infrastructure and services, conduct investigations using logs and telemetry, and collaborate with Security, SRE, and Engineering teams to drive containment and mitigation.
Key Responsibilities
- Continuously monitor for emerging threats including 0-days, active exploitation campaigns, bug bounty reports, and customer-reported issues.
- Rapidly assess threat applicability and potential impact to cloud infrastructure, SaaS services, internal tooling, and platform components.
- Conduct targeted investigations to determine impact and scope of threats or vulnerabilities.
- Analyze logs, telemetry, and system behaviors using SIEM, Cloud Logging, metrics, and related tools.
- Identify visibility or detection gaps and propose improvements.
- Research impact paths and develop mitigation strategies; coordinate containment, patches, configuration updates, or code-level fixes with cross-functional teams.
- Document findings, mitigations, and follow-up actions for internal stakeholders.
Requirements
- Strong understanding of software engineering fundamentals (code structure, build systems, dependencies, package ecosystems).
- Familiarity with CI/CD pipelines and DevOps workflows.
- Solid knowledge of cloud architecture, especially Google Cloud Platform (GCP).
- Experience with SIEM, Cloud Logging, and log-based investigation workflows.
- Ability to investigate incidents using log data, behavioral indicators, and threat intelligence.
- General understanding of vulnerability lifecycles, exploitability analysis, and common attack vectors.
- Strong collaboration and communication skills to work across Security, SRE, and Engineering teams.
Preferred Qualifications
- Experience in threat intelligence, security research, or vulnerability analysis.
- Familiarity with Kubernetes, containers, serverless infrastructure, or modern distributed systems.
- Ability to write scripts or small tools for investigation/automation (Python, Go, Bash).
- Experience with bug bounty programs or coordinated vulnerability disclosure workflows.
- Experience in fast-paced, cloud-native, or AI/ML-driven environments.
Location & Schedule
- Full-time role based in Foster City, CA with an in-office requirement of Monday, Wednesday, and Friday.
Compensation
- Listed compensation range: $180,000 - $250,000 (USD).
Benefits
- Competitive salary and equity
- 401(k) program
- Health, dental, vision, and life insurance
- Short-term and long-term disability
- Paid parental, medical, and caregiver leave
- Commuter benefits
- Monthly wellness stipend
- In-office setup reimbursement
- Flexible Time Off (FTO) and holidays
- Quarterly team gatherings and in-office amenities
Tech Stack
Skills
Experience Level
Salary
USD 180,000 - 250,000/year
Employment Type
Benefits
- •Competitive Salary & Equity
- •401(k) Program
- •Health Insurance
- •Dental Insurance
- •Vision Insurance
- •Life Insurance
- •Short Term Disability
- •Long Term Disability
- •Paid Parental Leave
- •Paid Medical Leave
- •Paid Caregiver Leave
- •Commuter Benefits
- •Monthly Wellness Stipend
- •In Office Set-Up Reimbursement
- •Flexible Time Off (FTO) + Holidays
- •Quarterly Team Gatherings
- •In Office Amenities