Coderabbit at a glance
coderabbit.ai- Founded 2023
Coderabbit
About CodeRabbit
CodeRabbit is an innovative research and development company focused on building extraordinarily productive human-machine collaboration systems. Our primary goal is to create the next generation of Gen AI-driven code reviewers: a symbiotic partnership between humans and advanced algorithms that significantly outperforms individual engineers. We combine language models with human ingenuity to push the boundaries of software development efficiency and quality.
Role Overview:
CodeRabbit is on a mission to empower developers with lean, high-performance tools—they move fast, and so do the threats. That’s why we’re looking for a battle-tested Lead Security Engineer who’s been in the trenches and can architect, harden, and defend our infrastructure, tooling, and ecosystem.
As our Lead Security Engineer, you’ll lead security engineering at CodeRabbit, infusing security into every layer of our product and infrastructure. You become the steward of resilience, incident response, and proactive defense at scale.
Responsibilities:
-
Own the security roadmap — craft and execute a strategic security engineering plan that aligns with CodeRabbit’s fast-paced engineering cadence.
-
Boost resilience — champion defense-in-depth tactics: threat modeling, secure design reviews, hardening, CI/CD integration.
-
Be Incident Commander — spearhead security incident response and recovery: triage, resolve, root cause, and turn those learnings into stronger systems.
-
Tools & automation — build or integrate security tooling (SAST, DAST, SIEM, EDR, monitoring) into the developer workflow without slowing delivery.
-
Embed security fluently — partner with engineering and product teams to bring secure practices early into planning and daily workflows.
-
Talent & culture — help to hire, coach, and mentor a scrappy, resilient security engineering team; elevate security awareness across the company.
-
Compliance & policy — establish security standards, frameworks, or processes that evolve as we scale—but remain lean and developer-friendly.
Qualifications:
-
Battle-tested experience: 8+ years in security engineering, incident response, or correlated fields—bonus if you’ve led through a major production breach or targeted attack.
-
Technical depth: Extensive experience with security across software and infrastructure—threat modeling, pen testing, secure CI/CD pipelines, cloud security, incident response.
-
Strategic mindset: Ability to translate risk into actionables, communicate trade‑offs with engineering/product leadership.
-
Praxis over theory: You’ve taken production systems down (intentionally or unintentionally) and built them back stronger.
-
Security in chaos: Experience in pressure situations—with clarity, direction, and calm.
-
Developer‑centric approach: You can speak fluent dev-tools, empathize with fast-moving teams, and secure them without slowing them down.
Bonus Points:
-
You’ve implemented DevSecOps tooling and orchestrated shift‑left security in developer pipelines.
-
You’ve recovered from (or prevented) a critical security event, and turned that into an engineering culture improvement.
-
Experience in a dev‑tools, SDK, or platform-heavy company.
-
Hacker mindset + operational discipline – pentests, disaster recovery, threat hunting, tooling, cloud environments.
-
Certifications like CISSP, CISM, CEH, or relevant cloud security certs.
Why Join Our Engineering Culture?
-
CodeRabbit is building the next generation of AI-native developer tooling — starting with code review. We combine large language models with deep software engineering context to help teams ship faster, catch more bugs, and make better architectural decisions at scale.
-
We are a high-ownership engineering culture. That means no passive execution, no waiting for perfect tickets, and no narrowly defined task boundaries. Engineers here find problems before they’re assigned, use AI as a core part of how they build, ship with judgment, and own outcomes from proposal to production.
-
Our operating philosophy: bias toward action, ship the smallest necessary coherent slice, validate proportional to risk, watch what happens, and make the system better. AI drafts; humans decide. Speed matters, but so does understanding what you ship.
-
This opportunity will be energizing for people who want real ownership, pace, and high standards. It’s uncomfortable for people who prefer slow consensus or heavily managed workflows.
-
If you want to build tools that are changing how software gets written, and be held to the standard that the best engineers thrive under; we’d love to talk.
Our Values
-
🤝 Collaborative Humans: Prioritizing collective intelligence
-
🚀 Fearless Innovators: Turning obstacles into growth opportunities
-
💪 Persistent, Passionate Developers: Thriving on complex, long-term challenges
-
🎯 Impact-Driven Creators: Crafting intuitive tools for developers
-
🧠 Rapid Learners and Un-learners: Adapting quickly in our fast-paced technological world
To apply for this job please visit jobs.ashbyhq.com.
Explore Coderabbit online
What people say about Coderabbit
- Ask HN: How do you familiarize yourself with a new codebase?
- Ask HN: Who is hiring? (July 2026)
- Show HN: Ox – an AI agent that catches tech debt before it's committed
- Claude Sonnet 5
Recent news
- CodeRabbit Launches Slack Agent, a Second Brain for Teams - The National Law Review
- Pullfrog AI: Open-Source CodeRabbit Alternative Powered by GitHub Actions - infoq.com
- Does Qodo’s Codebase-Wide Enforcement Redefine What ‘AI Code Review’ Means? - The Futurum Group
- When CodeRabbit became PwnedRabbit: A cautionary tale for every GitHub App vendor (and their customers) - Endor Labs
- CodeRabbit raised $60M and celebrated with a hilarious short film - Laravel News
Aggregated from public discussions and news; opinions are the authors’ own.
Working in San Francisco, California
Weather right now in San Francisco, California: checking… · Local time: · Air quality: · Daylight: · UV index: · Wind:
San Francisco, officially the City and County of San Francisco, is the fourth-most populous city in California and the 17th-most populous in the United States, with a population of 826,079 in 2025. Among U.S. cities with a population of 200,000 or more, San Francisco is ranked first by per capita income, second by population density, and sixth by aggregate income as of 2024. Some 4.6 million residents live in the city's metropolitan statistical area, which is the 13th-largest in the United States. Around 9.2 million live in the San Jose–San Francisco–Oakland combined statistical area, the fift
California is a U.S. state in the Western United States that lies on the Pacific Coast. It borders Oregon to the north, and Nevada and Arizona to the east; it also shares an international border with the Mexican state of Baja California to the south. With over 39 million residents across an area of 163,696 square miles (423,970 km2), it is the largest U.S. state by population and third-largest by
🇺🇸 Relocation safety for US: Exercise Normal Caution — via Warnely, CC BY 4.0
National unemployment rate in US: 4.2% — via World Bank
Recent seismic activity: 2 earthquakes (M4.5+) within 200km in the last 6 months — largest M5.6 near 11 km N of Redwood Valley, CA. via USGS
- Elevation 38m (125 ft)
Source: Wikipedia (state)
Watch & learn
Video via YouTube.
Job details above are provided by the employer/source. The sections on this page are compiled from public data sources with AI assistance.
Accommodations: if you need a workplace accommodation to apply for or perform this job, see ADA.gov or EEOC.gov for guidance on your rights and how to request one.
Keep exploring on Get A Job.ai
Not quite the right fit? Your next opportunity is a click away.
- Browse all jobs
- More jobs by category
- Remote jobs you can do from anywhere
- Research typical pay for this role
- Set a job alert so new matches reach you first
- Upload your resume to apply faster
Hiring instead? Post a job and reach candidates searching right now.
