Corporate Security Engineer

Grammarly is excited to offer a remote-first hybrid working model. Grammarly team members in this role must be based in Germany, and, depending on business needs, they must meet in person for collaboration weeks, traveling if necessary to the hub(s) where their team is based.

This flexible approach gives team members the best of both worlds: plenty of focus time along with in-person collaboration that fosters trust and unlocks creativity.

About Grammarly

Grammarly is the world’s leading AI writing assistance company trusted by over 30 million people and 70,000 teams. From instantly creating a first draft to perfecting every message, Grammarly helps people at 96% of the Fortune 500 and teams at companies like Atlassian, Databricks, and Zoom get their point across—and get results—with best-in-class security practices that keep data private and protected. Founded in 2009, Grammarly is No. 14 on the Forbes Cloud 100, one of TIME’s 100 Most Influential Companies, one of Fast Company’s Most Innovative Companies in AI, and one of Inc.’s Best Workplaces.

The Opportunity

To achieve our ambitious goals, we are looking for a Corporate Security Engineer to join the enterprise security team. This role is crucial to safeguarding Grammarly's corporate environment, where our extraordinary employees work their magic daily. From our versatile laptop fleet (Mac and Windows) to our innovative SaaS apps and other Corporate Infrastructure, this role will be instrumental in ensuring our success and securing our valuable assets. With a confident and thoughtful approach, they’d build and implement solutions that raise the security bar for our corporate infrastructure. If you love working on security and operations, we are excited to have you join our dynamic team!

Grammarly’s engineers and researchers have the freedom to innovate and uncover breakthroughs—and, in turn, influence our product roadmap. The complexity of our technical challenges is growing rapidly as we scale our interfaces, algorithms, and infrastructure. You can hear more from our team on our technical blog. 

Trust is critical to Grammarly’s mission. As a Corporate Security Engineer, the Enterprise Security team’s mission is to defend Grammarly’s corporate assets from all threats through risk reduction. Enterprise Security reduces risk to Grammarly by advising, supporting, building, operating, and assuring multiple critical preventive and reactive security controls in tight collaboration with teams and stakeholders across the company.

In this role, you will:

• Contribute to designing and developing engineering solutions that support enterprise-wide security initiatives, such as Zero Trust.
• Collaborate with our Governance Risk and Compliance (GRC) team to help develop enterprise security standards, guidelines, and policies.
• Design, build, maintain, tune, and enhance the effectiveness of our Enterprise Security controls in a wide range of security domains, including:
• Endpoint Detection and Response (EDR)
• Email Security
• Ransomware Resilience
• Data Loss Prevention (DLP)/Insider Risk
• Conditional Access
• Vendor/Business Process Outsourcing (BPO) Security
• Device Posture and Attestation, Shadow IT
• Threat and Vulnerability Management (TVM)
• Identity and Access Management (IAM)
• Public Key Infrastructure (PKI)
• Perform risk assessments and security assurance (threat modeling, code review as necessary) on a range of systems that support Grammarly’s business operations:
• Operating Systems and commercial/open-source desktop applications
• Internally developed Enterprise Infrastructure Services
• Third-Party Software as a Service (SaaS) solutions
• Network Infrastructure (ZTNA, CASB, VPN)
• Drive the remediation of security vulnerabilities identified through assessments.
• Build security automation to secure our corporate infrastructure.
• Evaluate cutting-edge Enterprise Security technology designed to increase our security posture.

Qualifications

• Is excited to build security controls to safeguard our systems and services.
• Has working experience in Security Assurance: Penetration Testing, Code Review, Threat Modeling.
• Is familiar with programming languages such as Python, Java, or Go for automation purposes.
• Has a strong understanding of cybersecurity threats, vulnerabilities, and mitigations.
• Is knowledgeable about the best practices and technologies of cloud security.
• Has excellent problem-solving skills, with the ability to work independently and handle multiple tasks.
• Has strong communication skills and can explain complex security issues in understandable terms.
• Nurtures the talent in the team and raises the technical talent bar when recruiting for their team.
• Embodies our EAGER values—is ethical, adaptable, gritty, empathetic, and remarkable.
• Is inspired by our MOVE principles: move fast and learn faster; obsess about creating customer value; value impact over activity; and embrace healthy disagreement rooted in trust.
• Is able to meet in person for their team’s scheduled collaboration weeks, traveling if necessary to the hub where their team is based.

Support for you, professionally and personally

• Professional growth: We believe that autonomy and trust are key to empowering our team members to do their best, most innovative work in a way that aligns with their interests, talents, and well-being. We also support professional development and advancement with training, coaching, and regular feedback.
• A connected team: Grammarly builds a product that helps people connect, and we apply this mindset to our own team. Our remote-first hybrid model enables a highly collaborative culture supported by our EAGER (ethical, adaptable, gritty, empathetic, and remarkable) values. We work to foster belonging among team members in a variety of ways. This includes our employee resource groups, Grammarly Circles, which promote connection among those with shared identities including BIPOC and LGBTQIA+ team members, women, and parents. We also celebrate our colleagues and accomplishments with global, local, and team-specific programs. 
• Comprehensive benefits for candidates based in Germany: Grammarly offers all team members competitive pay along with a benefits package encompassing life care (including mental health care and risk benefits) and ample and defined time off. We also offer support to set up a home office, wellness and pet care stipends, learning and development opportunities, and more.

We encourage you to apply

At Grammarly, we value our differences, and we encourage all to apply. Grammarly is an equal-opportunity company. We do not discriminate on the basis of race or ethnic origin, religion or belief, gender, disability, sexual identity, or age.

For more details about the personal data Grammarly collects during the recruitment process, for what purposes, and how you can address your rights, please see the Grammarly Data Privacy Notice for Candidates here. 

#LI-AD3