Security Engineer


San Francisco



Ridecell ( is powering next generation of ridesharing, carsharing and autonomous new mobility services. As the world shifts to a mobility on-demand model and new companies rush to enter as service providers, Ridecell is ready to support these initiatives. Already 20 customers, including BMW, VW, Renault and AAA use our proven platform to launch, operate, and scale their new mobility services. 

We are looking for a security-focused engineer to join our infrastructure team to help improve our security posture, work with application teams, and guide us towards a more secure future. You'll be in charge of our security triage and response process, our internal guidelines, and picking the best tools and techniques for our teams to use. You'll also work with our other engineering teams to help them with security questions and overseeing security-critical portions of the web and mobile applications. As an end-to-end solution provider, our stack spans the spectrum from monolithic Django web applications to Go-based microservices to multiple JavaScript frontends to iOS and Android mobile applications, each of those bringing new and exciting challenges to our process.


-Work with product engineering teams to assess security issues, audit code, and review new designs

-Provide security mentorship the organization as a whole and advocate for improved security

-Triage and track new vulnerabilities and work out how they might affect us

-Design secure infrastructure and deployment systems

-Build security tools for infrastructure protection and monitoring

-Red/purple team operations as needed


-2 years of experience in information security (personal of professional)

-Familiarity with Linux security

-Able to function in a multi-disciplinary team

-Experience scripting in languages like Bash or Python

-Learning focused and interested in working with a broad range of tools and systems


-Web development experience in Python or Go

-Understanding of public cloud services such as AWS and GCP

-Experience with Docker or Kubernetes

-Familiarity with TLS PKI and using it with HTTPS

-History with automated secrets management

-Experience working with geo-distributed teams

-Experience with red team or offensive infosec operations