Staff IT Security Engineer

Amplitude is the leading AI analytics platform, helping over 4,700 customers—including Atlassian, Burger King, NBCUniversal, and Square—build better products and digital experiences. With powerful AI Agents embedded across our platform, teams can analyze, test, and optimize user experiences faster than ever. Ranked #1 across multiple categories in G2’s Winter 2026 Report, Amplitude is the best-in-class solution for product, data, and marketing teams. Learn more at

amplitude.com

.

As an organization, we deliver for our customers by living our values. We operate from a place of humility, take ownership of problems and successes, approach challenges with a growth mindset, and put our customers at the center of everything we do.

Amplitude’s Commitment To Diversity Equity & Inclusion (dei)

Amplitude believes that diversity enables the creation of better products, improves the ability to solve complex problems, and drives more powerful solutions. We strive to create an environment of inclusion—one focused on psychological safety, empathy, and human connection—that will allow employees of all backgrounds to thrive.

Amplitude is seeking an experienced

Staff IT Security Engineer

to design and build controls that define how Amplitude leverages frontier AI tooling at scale. This is a high-scope, hands-on position focused entirely on corporate and enterprise security, specifically tackling the risks that AI tools and AI-enabled workflows introduce into our environment. You will operate independently within a well-defined security program, partner closely with a Senior Staff IT Security Engineer, and align IT Security priorities while reporting directly to the CISO. This is an opportunity to have a significant impact, where you will be hands-on with building agentic solutions for detection, response and high-level automation.

As a Staff IT Security Engineer, you will manage and execute day-to-day enterprise security operations across our corporate systems, including SaaS security posture, identity security (IdP/Okta), endpoint security, and access governance. This role is focused on enterprise-level problems and IT infrastructure security, not securing ML pipelines, models, or AI product features.

What You'll Do

Enterprise Security Operations

Manage and execute day-to-day enterprise security operations across corporate systems, including SaaS security posture, IdP, endpoint, vulnerability management, and access governance, leveraging AI-assisted tooling to accelerate triage, analysis, and documentation at scale.

Identity & Access Management

Execute complex Okta/IdP changes and maintain configurations for auth policies, adaptive MFA, SCIM provisioning, RBAC group management, and lifecycle automation. You will coordinate and execute access reviews across the enterprise to enforce least-privilege remediation, using AI tooling to summarize findings and draft stakeholder follow-ups.

Ai Security & Governance

Be crucial in defining AI security by reviewing AI tool permissions, connector/integration configurations, and data-sharing settings. You will build and maintain AI-powered security automation—designing and operating agentic pipelines to automate repeatable security workflows (like app approval triage and access review summarization) and ensuring the security architecture of those pipelines is sound.

Detection & Response

Drive detection and response efforts by authoring CrowdStrike IOAs/IOCs, writing SIEM queries, and tuning alerts to reduce noise without losing coverage. You will handle incident triage, scoping, and containment, and produce post-mortem documentation in partnership with a senior engineer.

Risk & Compliance

Conduct vendor and SaaS tool security reviews (intake, risk evaluation, remediation tracking, and sign-off coordination). Produce security metrics and reporting for operational tracking and CISO/exec audiences.

What You'll Need

Experience

5–8+ years in enterprise/corporate security with hands-on depth in at least two of the following areas: identity (Okta), endpoint (CrowdStrike/Kandji), SaaS security, or detection engineering.

Autonomy & Ownership

You are a self-starter and self-managing, capable of working problems independently from initial triage through remediation; you execute independently within defined program direction.

Technical Skills

Ability to regularly write code or scripts (Python, Bash, or similar) to automate reviews, build detections, or debug configuration issues without looping in engineering.

Ai Curiosity

A genuine curiosity about AI security is essential, and you are already thinking about risks from LLMs, agents, and AI-native tooling.

Communication

Excellent communication skills are paramount for coordinating cross-functional partners (Legal/Privacy, Engineering, IT) and presenting clear, tactical, and operational decisions to both technical teams and executive audiences.

Nice-to-Haves

Experience With Dlp, Saas Security Reviews, Or Third-party Vendor Risk Processes.

Familiarity with AI tool governance: acceptable use, tool inventories, and data classification in AI contexts.

CrowdStrike detection engineering experience (custom IOAs, Falcon LogScale).

Familiarity with zero-trust architecture patterns, ZTNA, or CASB/SSPM tooling.

Python or scripting depth beyond basic automation.

Prior experience at a high-growth tech company with a small security team and large scope.

Our Values

At Amplitude, our values guide how we show up for one another and for our customers:

Humility

We operate from a place of empathy and openness, seeking to understand many points of view.

Ownership

We take the initiative to solve problems that drive our shared company success.

Growth Mindset

We’re tenacious in the face of challenges and seek feedback in order to grow ourselves and others.

Customer Centricity

We put the customer at the center of everything we do and are deeply committed to their success.

We Care About The Well-being Of Our Team

We offer competitive pay and benefits packages that reflect our commitment to the health and well-being of our Ampliteers.

Some Of Our Benefit Programs Include

Excellent ​M​edical, ​D​ental and ​V​ision insurance coverages, with 100% employer-paid premiums for employee ​M​edical, ​D​ental,​ ​​​​​​​​Vision on select plans

Flexible time off, ​p​aid holidays, and more

Generous stipends to spend on what matters most to you, whether that’s wellness (monthly), commuter transit/parking (monthly), learning and development (quarterly), home office equipment (annual), and much more

Excellent Parental benefits including​:​ 12-20 weeks of Paid Parental Leave, Carrot Fertility Benefits/Adoption/Surrogacy support, Back-up Child Care support

Mental health and wellness benefits including no cost employee access to Modern Health coaching & therapy Sessions and high quality physician office experience via One Medical membership (select U.S. locations only)

Employee Stock Purchase Program​ (ESPP)​

Other Fun Facts About Amplitude

Our customers love us! They've said we're the

#1 product analytics solution

for 23 quarters in a row on G2.

We care a lot about product innovation. We've made significant investments in talent and infrastructure to build the most powerful AI analytics platform on the market.

We invest in our people. We offer mentorship programs, management training, and wellness initiatives.

We give back to our communities. We give every Ampliteer a charitable giving grant and paid volunteer time off.

We were founded in 2012, went public via a direct listing in September 2021, and are now trading under the ticker $AMPL.

We’re a global and fast-growing team! We have employees around the world and offices in San Francisco (HQ), New York, Vancouver, Amsterdam, London, Paris, Singapore, and Tokyo.

Our mascot is Data Monster, who loves to chow down on numbers, charts, and graphs. Nom nom.

Amplitude provides equal employment opportunities (EEO). All applicants are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, or sexual orientation.

This Role Is Eligible For Equity, Benefits And Other Forms Of Compensation.

Based on Colorado law, the following details are for individuals who will work for Amplitude in Colorado. Colorado range: $150,000 - $226,000 total target cash (inclusive of bonus or commission)

Based on legislation in New York City, the following details are for individuals who will work for Amplitude in New York City. New York City salary range: $167,000 - $251,000 total target cash (inclusive of bonus or commission)

Based on legislation in California, the following details are for individuals who will work for Amplitude in San Francisco Bay Area of California. Salary range: $167,000 - $251,000 total target cash (inclusive of bonus or commission)

Based on legislation in California, the following details are for individuals who will work for Amplitude in California outside of the San Francisco Bay Area. California salary range: $150,000 - $226,000 total target cash (inclusive of bonus or commission)

Based on legislation in Washington state, the following details are for individuals who will work for Amplitude in Washington state. Washington salary range: $150,000 - $226,000 total target cash (inclusive of bonus or commission)

Based on legislation in Washington state, the following details are for individuals who will work for Amplitude in Washington only: unlimited PTO, 10 to 13 holidays annually (will vary), medical dental and vision PPO and CDHP plans. Finally, a company sponsored 401(k) retirement plan.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

1

By applying for this job, you acknowledge that Amplitude processes your personal data in accordance with the

Amplitude Applicant Privacy Notice

.

Staying Safe - Protect Yourself From Recruitment Frau