About Suno
Suno is a music company built to amplify imagination. Powered by the world’s most advanced AI music model, Suno offers an unparalleled creative platform that includes Suno Studio, a breakthrough generative audio workstation. From shower-singers to aspiring songwriters to seasoned artists, Suno empowers a global community to create, share, and discover music—unlocking the joy of musical expression for all.
About the Role
We are seeking experienced generalist application/cloud Security Software Engineers to join our security and infrastructure team. You will be responsible for designing, implementing, and maintaining secure cloud infrastructure and ensuring the integrity of our cloud-native applications.Check out the Suno version of this role here!
What You’ll Do
- Design and implement secure cloud architectures across multiple cloud platforms (e.g., AWS, GCP)
- Build and maintain Infrastructure as Code (IaC) libraries with embedded security controls
- Conduct regular security assessments, in-depth code reviews, and audits of application code and cloud infrastructure
- Design and implement secure coding guidelines, CI/CD, and best practices for development teams
- Manage vulnerability tracking and remediation efforts, providing guidance to development teams
- Work closely with IT to ensure secure system administration and compliance with security policies
- Contribute to the design and enforcement of Identity & Access Management (IAM) Governance
- Contribute to the creation and maintenance of security documentation, playbooks, and metrics
- Keep up to date with emerging threats, security trends, and best practices in cloud-native and AI environments
What You’ll Need
- Bachelor's degree in Computer Science, Cybersecurity, or a related field
- 5+ years of experience in cloud security or related roles
- Proficiency in AWS and associated security services
- Strong experience in cloud security principles, compliance frameworks, and best practices
- Experience with Infrastructure as Code tools (e.g., CDK, Terraform)
- Familiarity with containerization technologies and their security implications
- Understanding of network security concepts and protocols
- Experience with scripting languages (e.g., Python, Bash) for application security, automation, and tool development
- Experience performing application security assessments and providing security oversight for large-scale enterprise software initiatives is preferred.
- Experience designing and implementing secure data-access patterns for databases and object storage—particularly across authorization models and permission governance —is preferred.
Additional Notes:
Applicants must be eligible to work in the US.
Location:
This is an in office role in NYC or Cambridge, Mass.
Benefits
- Generous Company Equity Package
- 401(k) with 3% Employer Match & Roth 401(k)
- Unlimited PTO & Sick Time
- Medical, Dental, & Vision Insurance (PPO w/ HSA & FSA options)
- Continued / Creative Education Stipend
- Generous Commuter Allowance
- In-Office Lunch (5 days per week)
Compensation Range: $250K - $325K
