a16z is looking to embed security into the firm's cloud infrastructure, developer tools, and internal systems by building scalable, AI-native security solutions that mitigate risk, reduce attack surface, enhance detection, and accelerate response.
Requirements
- A minimum of 5 years of progressive experience in cybersecurity, cloud infrastructure, or software engineering, with a proven track record of building secure systems across complex environments
- Hands-on experience designing and implementing security architectures and engineering controls that protect against advanced threats and support scalable, cloud-native infrastructure
- Deep technical knowledge of modern operating systems (Linux, Windows, macOS), network protocols, system internals, and enterprise IT environments
- Proficiency in scripting and automation languages including Python and Bash; PowerShell for Windows environments
- Familiarity with Infrastructure as Code (IaC) tools such as Pulumi or Terraform, with experience managing secure, repeatable deployments in AWS or GCP
- Familiarity with Go, Rust or TypeScript for building security tooling or developer integrations
- Demonstrated expertise in securing modern cloud platforms (AWS and GCP strongly preferred), with experience in native services, IAM models, and automation patterns
Responsibilities
- Lead the design and development of security solutions that mitigate risk, reduce attack surface, enhance detection, and accelerate incident response
- Engineer secure infrastructure and platform-level controls, including Kubernetes, containerized workloads, API protection, and deployment patterns for hyperscaler environments (AWS and GCP)
- Implement and manage scalable security controls across the software development lifecycle, integrating CI/CD pipelines, infrastructure-as-code, artifact governance, API security, and early-stage vulnerability management
- Improve the security posture of enterprise systems, including endpoint security, network segmentation, device management, and identity and access layers such as MFA, passwordless auth, OIDC/SAML, AuthZ/AuthN, ABAC, and secrets management
- Build self-service security tooling and automation frameworks that enable engineering and IT teams to move independently and securely, with a focus on improving developer experience (DX) and minimizing friction in secure-by-default workflows
- Develop and improve core security capabilities using data, analytics, and large language models, enabling adaptive detection, intelligent decisioning, and scalable response
- Build and maintain security telemetry and observability pipelines, enabling real-time detection, investigation, and performance monitoring across distributed systems
Other
- We are open to candidates based in the San Francisco Bay Area, CA.
- The role requires an in office presence at least 2 days a week in our Menlo Park, CA or San Francisco, CA office.
- Excellent written and verbal communication skills, with the ability to convey complex technical concepts to diverse stakeholders
- Ability to work independently in a fast-paced, high-autonomy environment, while also collaborating effectively across engineering, IT, and security teams
- High degree of ownership, curiosity, and a continuous learning mindset to stay ahead of evolving threats and emerging technologies
- Relevant certifications such as CISSP, OSCP, GIAC, or Cloud Security Alliance certifications are preferred but not required
- Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related technical field is preferred but not required
- Low ego, high empathy, and the capacity to collaborate effectively with diverse teams
- This role is eligible to participate in the a16z carry program and various discretionary bonus programs as well as benefit and perquisite plans including health, dental, vision, disability, life insurance, 401K plan, vacation, and sick leave.
- We do only first class business and only in a first class way
- We take a long view of relationships, because we are in the relationship business
- We believe in the future and bet the firm that way
- We are all different, we recognize that, and we win
- We celebrate the good times
- We do it for the team
- We play to win
- Our organization participates in E-Verify.
- Andreessen Horowitz hereby reserves the right to make use of any unsolicited resumes received from outside recruiting agencies and / or individual recruiters without being responsible for payment of any fees asserted from the use of unsolicited resumes.
