Staff Security and Privacy Engineer

Join Brave as a Staff Security and Privacy Engineer to enhance user safety across Brave's products. Work on security reviews, triaging reports, and implementing privacy features in a fully remote environment.

Brave is on a mission to protect the human right to privacy online. We’ve built a free web browser that blocks creepy third-party ads and trackers by default, a private search engine with a *truly* independent index, a browser-native crypto wallet, and a private ad network (opt-in!) that directly rewards you for your attention. And we’re just getting started. Already 110+ million people have switched to Brave for a faster, more private web. Millions more switch every month. The internet is a sea of privacy-harmful ads, hackers, and echo chambers. Big Tech makes huge profits off our data, and tells us what’s true and what’s not. Brave is fighting back. Join us!

• •Security and privacy reviews of Brave browser and Brave Search
• •Triaging and fixing security reports
• •Working closely with other teams to design privacy-preserving protocols
• •Designing and implementing new security and privacy features

• •Industry-leader in privacy, with an award-winning security and privacy engineering team that’s innovating everyday to keep people safer online and beat Big Tech
• •Unlimited PTO in the US, 20 days + your birthday in Canada and similar PTO policies in countries where we have a presence
• •Highly competitive salaries & benefits
• •Generous home-office stipends
• •Fully remote team (no office, no commute) with a very-low-meeting culture
• •Welcoming, humble, ridiculously smart teammates, and a truly flat org structure
• •Opportunity to get in early at a hyper-growth company, and revolutionize the web
• •Oh, and did we mention Brendan Eich, our CEO & co-founder, *invented* JavaScript?

• •At least 5 years experience (or equivalent) in security or privacy engineering
• •Experience in penetration testing and/or security auditing
• •Strong proficiency in C++, both implementing and reviewing
• •Strong familiarity with the Web security model
• •Understanding of data protection fundamentals
• •Very comfortable working and communicating async with a geographically-distributed software development team
• •Be comfortable diving into an extremely large, unfamiliar and complex codebase
• •Be comfortable with Git and collaborating on GitHub

• •Experience contributing to large open source codebases and/or participating in open source communities
• •Proficiency in Web technologies (HTML, CSS, JavaScript)
• •Proficiency in Go and Rust
• •Contributions to other Web browsers
• •Familiarity with Chromium's architecture, especially security
• •Ability to write clear technical documentation and less technical writing for blog posts or public communication.
• •Be excited about privacy, anonymity, and censorship resistance!