About Suno

Suno is a music company built to amplify imagination. Powered by the world’s most advanced AI music model, Suno offers an unparalleled creative platform that includes Suno Studio, a breakthrough generative audio workstation. From shower-singers to aspiring songwriters to seasoned artists, Suno empowers a global community to create, share, and discover music—unlocking the joy of musical expression for all.

About the Role

We are seeking experienced generalist application/cloud Security Software Engineers to join our security and infrastructure team. You will be responsible for designing, implementing, and maintaining secure cloud infrastructure and ensuring the integrity of our cloud-native applications.

Check out the Suno version of this role here!

What You’ll Do

• Design and implement secure cloud architectures across multiple cloud platforms (e.g., AWS, GCP)

• Build and maintain Infrastructure as Code (IaC) libraries with embedded security controls

• Conduct regular security assessments, in-depth code reviews, and audits of application code and cloud infrastructure

• Design and implement secure coding guidelines, CI/CD, and best practices for development teams

• Manage vulnerability tracking and remediation efforts, providing guidance to development teams

• Work closely with IT to ensure secure system administration and compliance with security policies

• Contribute to the design and enforcement of Identity & Access Management (IAM) Governance

• Contribute to the creation and maintenance of security documentation, playbooks, and metrics

• Keep up to date with emerging threats, security trends, and best practices in cloud-native and AI environments
  

What You’ll Need

• Bachelor's degree in Computer Science, Cybersecurity, or a related field

• 5+ years of experience in cloud security or related roles

• Proficiency in AWS and associated security services

• Strong experience in cloud security principles, compliance frameworks, and best practices

• Experience with Infrastructure as Code tools (e.g., CDK, Terraform)

• Familiarity with containerization technologies and their security implications

• Understanding of network security concepts and protocols

• Experience with scripting languages (e.g., Python, Bash) for application security, automation, and tool development

• Experience performing application security assessments and providing security oversight for large-scale enterprise software initiatives is preferred.

• Experience designing and implementing secure data-access patterns for databases and object storage—particularly across authorization models and permission governance —is preferred.

Additional Notes: Applicants must be eligible to work in the US.

Location: This is an in office role in NYC or Cambridge, Mass.

Benefits

• Generous Company Equity Package

• 401(k) with 3% Employer Match & Roth 401(k)

• Unlimited PTO & Sick Time

• Medical, Dental, & Vision Insurance (PPO w/ HSA & FSA options)

• Continued / Creative Education Stipend

• Generous Commuter Allowance

• In-Office Lunch (5 days per week)

Compensation Range: $250K - $325K