Staff Engineer

Shipt

full-time

Posted on: 9/27/2025

Location Type: Hybrid

Location: Birmingham • Alabama, California, Minnesota • 🇺🇸 United States

✨ AI Apply

💰 $93,000 - $187,000 per year

Lead

CloudGoJavaScriptKubernetesPythonTerraformTypeScript

About the role

Design, implement, and scale security controls and processes that protect Shipt’s users and applications.
Build software systems and developer-facing tools to make secure development easier.
Lead and drive secure practices across Shipt’s engineering organization.
Provide technical leadership, mentor other team members, and influence security culture company-wide.
Collaborate with cross-disciplinary teams to protect customers and shoppers nationwide.
Lead threat modeling and security design reviews; validate secure coding practices and application security controls.
Translate business requirements into practical development solutions and integrations with security platforms.

Extensive software engineering experience with focus on developer tooling or infrastructure.
Strong programming skills in Go, Python, and/or JavaScript/TypeScript.
Experience building with CI/CD systems as part of the software development lifecycle.
Familiarity with containerization concepts and tools.
Experience working and deploying with cloud platforms, especially Kubernetes.
Experience building APIs, automation tools, and developer-facing services.
Knowledge of common security vulnerabilities and remediation approaches.
Knowledge or training with compliance programs such as PCI DSS and SOC2.
Experience with Infrastructure as Code tools, such as Terraform.
Strong system design and architecture skills.
Experience translating business requirements into practical development solutions.
Experience with OWASP Top 10, SANS CWE Top 25, and common security design flaws.
Experience leading the design, implementation, and validation of secure coding practices, application security controls, and integration of security platforms.
Understanding of tools and techniques leveraged to breach networks, server systems, cloud workloads or applications.
Experience leading threat modeling and security design reviews.
Nice to have: CISSP, OSWE, CSSLP, GWAPT, GWEB, OSCP, CompTIA Security+ certifications.
Nice to have: Proficiency in Terraform.
Nice to have: Familiarity with open-source software and dependency management.
Nice to have: Experience managing, configuring and troubleshooting CDN & WAF technologies.

Benefits

Employees (and eligible family members) are covered by medical, dental, vision and more.
Employees may enroll in our company’s 401k plan.
Discretionary vacation for exempt team members.
Paid holidays throughout the calendar year.
Paid sick leave.
Eligibility for an annual bonus.
Potential for restricted stock units based on role.
Flexibility to work from home (with leader approval) / hybrid work arrangements.

Tip: use these terms in your resume and cover letter to boost ATS matches.

GoPythonJavaScriptTypeScriptCI/CDKubernetesAPIsTerraformsecure coding practicesapplication security controls

technical leadershipmentoringinfluencing security culturecollaborationsystem designarchitecture

CISSPOSWECSSLPGWAPTGWEBOSCPCompTIA Security+