Senior Security Engineer - Singapore

About Plaud Inc.

Plaud is building the world's most trusted AI work companion for professionals to elevate productivity and performance through note-taking solutions, loved by over 2,000,000 users worldwide since 2023. With a mission to amplify human intelligence, Plaud is building the next-generation intelligence infrastructure and interfaces to capture, extract, and utilize what you say, hear, see, and think.

Plaud Inc. is a Delaware-incorporated, San Francisco-based company pushing the boundary of human–AI intelligence through a hardware–software combination. With ISO 27001, ISO 27701, GDPR, SOC 2, HIPAA, and EN 18031 compliance, Plaud is committed to the highest standards of data security and privacy protection.

To learn more about Plaud, please visit https://www.plaud.ai and follow along on Instagram, X, Facebook, Linkedin, and YouTube

Why You Should Join Us

Plaud is building the next generation intelligence infrastructure and interfaces to capture, extract, and utilize intelligence from what people say, hear, see, and think.

• Plaud is a bootstrapped, skyrocketing, profitable company with a $250M revenue run rate achieved in just three years.

• Define the next-gen paradigm for human-AI interaction.

• Gain exposure to cutting-edge AI for Pro tools and play a direct role in our global expansion.

• Work with passionate teammates who value innovation, collaboration, and customer success.

• Grow your career in a culture that champions continuous learning and fast career development.

• Market-competitive compensation, global exposure, and a vibrant, creativity-fueled work atmosphere.

What you will do

You will own one or more of the following security domains.

Deep expertise in 1-2 areas is what we look for — you don't need to cover all six. Tell us your primary domain(s) when you apply.

1. Cloud & Infrastructure Security

Secure Plaud's AWS/GCP environments: remediate credential exposure, deploy CSPM, embed IaC security gates (Checkov/Terraform in CI/CD), and implement Zero Standing Privileges (JIT/CIEM).

2. Data Security

Build the data protection foundation: design L1-L5 classification for audio/transcription/PII, map data flows, implement WORM access audit logs, and govern Snowflake/database permissions.

3. Application Security & AI Security

Own secure SDLC: integrate SAST/DAST into CI/CD, defend against Prompt Injection and LLM threats (OWASP LLM Top 10), and conduct security reviews for product releases.

4. Hardware & Firmware Security

Validate Plaud's hardware (Sigma) against EN 18031: own Secure Boot, OTA dual-key signing, PKI lifecycle, HBOM+CVE supply chain scanning, and PSIRT operations.

5. Security Operations

Build and run the SIEM platform (30+ MITRE ATT&CK-mapped; detection rules), establish IR playbooks, own MTTD/MTTR metrics, and produce monthly security reports for leadership.

6. Enterprise IT Security

Drive 100% EDR and MDM coverage, roll out Okta SSO/SCIM across the SaaS stack, and build a measurable security awareness program alongside the IT team.

Skills, qualifications and experience we look for

• 5+ years of hands-on security engineering experience with deep expertise in at least one domain: cloudsecurity (AWS/GCP, CSPM, IAM), data security (classification, DLP, audit logging), application/AI security(SAST, DAST, LLM/Prompt Injection), hardware/firmware security (embedded systems, PKI, EN 18031),security operations (SIEM, IR, SOAR), or enterprise IT security (EDR, MDM, IdP/SSO).

• Proven ability to build security controls from zero in a fast-moving environment — scoping work, selectingtools, and delivering independently without a pre-existing framework.

• Cross-domain awareness: even if your depth is in 1-2 areas, you can reason about how cloud, data, product,hardware, and operational security interlock — and communicate risk clearly to engineering and leadership.

• Familiarity with relevant standards and frameworks as applicable to your domain: NIST CSF, CISBenchmarks, OWASP / OWASP LLM Top 10, MITRE ATT&CK, SOC 2, ISO 27001, EN 18031, GDPR/PIPL.

• Experience using AI tools (LLM-assisted triage, automated CSPM, AI coding tools) to amplify security output— or genuine curiosity to adopt them in your workflow.

What we offer

• Meaningful Ownership An Employee Stock Ownership Plan (ESOP) that gives a real stake in Plaud’s long-term success.

• High-Impact Environment Work in a fast-moving, product-driven environment where your ideas directly shape the future of AI productivity.

• Cutting-Edge AI Tools for Productivity Access to best-in-class AI tools, including Cursor, GPT models, Gemini, Claude, and other frontier AI systems to maximize engineering and execution efficiency.

• Best-in-Class Equipment Choice of top-spec laptops, high-performance workstation setups, and cutting-edge Plaud devices for all new hires.

• Team & Culture Annual company offsites, team events, and a culture that values craftsmanship, ownership, and velocity.

• Medical & Insurance Coverage Comprehensive benefits to protect our employees' financial security, physical health, and longterm growth. Medical insurance and WICA coverage for all full-time employees.