Principal Engineer, Product Security

Your work will change lives. Including your own. 

Recursion is a clinical-stage biotechnology company decoding biology by integrating technological innovations across biology, chemistry, automation, data science and engineering to radically improve the lives of patients and industrialize drug discovery. Our team is working to solve some of the hardest, most meaningful problems facing human health today. Come join us in our mission to decode biology to radically improve lives, while doing the most impactful work of your life.

The Impact You’ll Make

• Develop and lead the implementation of the product security strategy (combination of web, mobile, API, cloud, infrastructure and container security) and framework to protect against current and emerging security threats
• Conduct threat modeling, risk assessments, and security reviews of products at various stages of the development lifecycle with a focus on shifting left
•  Design and implement secure coding practices, encryption standards, and security testing methodologies in collaboration with development/ML teams and ensure our products are secure, resilient and trustworthy
•  Serve as a subject matter expert on product security, providing education, guidance and mentorship to engineering teams and stakeholders across the organization
• Help integrate ML models (first and third-party) securely into our product ecosystem.
• Evaluate and implement security tools and technologies to improve the security posture of our products
• Stay updated on the latest security trends including ML-specific threats, vulnerabilities, and technologies to continuously refine and enhance product security measures.
• Detect security policy violations and drive security outcomes
• Scale security without slowing down the business objectives
• Develop and maintain security documentation, including security requirements, guidelines, and incident response plans
• Perform security assessments, code reviews, and penetration testing to simulate real-world cyber attacks
• Lead security incident response efforts, including investigation, mitigation, and the development of preventative measures.
• Collaborate with stakeholders across the organization to ensure compliance with evolving AI security and other regulatory and industry security standards.

The Team You'll Join

You will join a growing Information Security team at Recursion, focused on enabling Recursion to decode biology by providing world class technology services that are designed and fit for purpose. You'll collaborate with your teammates and across departments to agree on what the most important challenges and capabilities are, then figure out how to get us there.

The Experience You'll Need

• Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
• You will join a growing Information Security team at Recursion, focused on enabling Recursion to decode biology by providing world class technology services that are designed and fit for purpose. You'll collaborate with your teammates and across departments to agree on what the most important challenges and capabilities are, then figure out how to get us there.
• A minimum of 10 years of experience in product security, application security, or a related field, with a proven track record of securing complex products.
• Deep understanding of security principles, threats, and countermeasures as they relate to product design and development.
• Expertise in one or more programming languages (e.g., Java, C++, Python) and experience with secure coding practices.
• Familiarity with security standards and frameworks (e.g., OWASP, NIST, ISO/IEC 27001)
• Experience with various hacking tools and penetration testing frameworks (e.g., Metasploit, Burp Suite, Nmap, Wireshark).
• Expertise in web application security testing, including OWASP Top Ten vulnerabilities. Proficiency in assessing web applications for common vulnerabilities like SQL injection, XSS, CSRF, and more
• Experience with modern security tools and techniques for vulnerability scanning, penetration testing, and encryption.
• Proficiency in exploiting vulnerabilities to gain unauthorized access and assess the impact of attacks and understanding of vulnerability scoring systems (e.g., CVSS) to prioritize findings.
• Excellent communication and leadership skills, capable of driving security initiatives and influencing change across multiple teams and disciplines.
• Relevant security certifications (e.g., CISSP, OSCP, GWAPT) are highly desirable.

#LI-EP1

The Values That We Hope You Share:

• We Care: We care about our drug candidates, our Recursionauts, their families, each other, our communities, the patients we aim to serve and their loved ones. We also care about our work.
• We Learn: Learning from the diverse perspectives of our fellow Recursionauts, and from failure, is an essential part of how we make progress.
• We Deliver: We are unapologetic that our expectations for delivery are extraordinarily high. There is urgency to our existence: we sprint at maximum engagement, making time and space to recover. 
• Act Boldly with Integrity: No company changes the world or reinvents an industry without being bold. It must be balanced; not by timidity, but by doing the right thing even when no one is looking.
• We are One Recursion: We operate with a 'company first, team second' mentality. Our success comes from working as one interdisciplinary team.

Recursion spends time and energy connecting every aspect of work to these values. They aren’t static, but regularly discussed and questioned because we make decisions rooted in those values in our day-to-day work. You can read more about our values and how we live them every day here.

More About Recursion 

Recursion is a clinical stage TechBio company leading the space by decoding biology to industrialize drug discovery. Enabling its mission is the Recursion OS, a platform built across diverse technologies that continuously expands one of the world’s largest proprietary biological and chemical datasets. Recursion leverages sophisticated machine-learning algorithms to distill from its dataset a collection of trillions of searchable relationships across biology and chemistry unconstrained by human bias. By commanding massive experimental scale — up to millions of wet lab experiments weekly — and massive computational scale — owning and operating one of the most powerful supercomputers in the world, Recursion is uniting technology, biology and chemistry to advance the future of medicine.

Recursion is headquartered in Salt Lake City, where it is a founding member of BioHive, the Utah life sciences industry collective. Recursion also has offices in London, Toronto, Montreal and the San Francisco Bay Area. Learn more at www.Recursion.com, or connect on X (formerly Twitter) and LinkedIn.

Recursion is an Equal Opportunity Employer that values diversity and inclusion.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other characteristic protected under applicable federal, state, local, or provincial human rights legislation.