About Persona
Persona is the configurable identity platform built for businesses in a digital-first world. Verifying individuals and organizations is harder — but more important — than ever, with AI enabling fraudsters to launch sophisticated accounts at scale and regulations evolving rapidly.
We’ve built Persona to support practically every use case and industry — that’s why we’re able to serve a wide range of leading companies. For example, Reddit relies on Persona for age assurance and verification to comply with online safety regulations, protecting younger users while maintaining a seamless experience. Meanwhile, OpenAI relies on Persona to keep bad actors out, protecting one of the world’s most powerful AI platforms from large-scale abuse in a time when AI is reshaping the way we work and live.
We’re growing rapidly and looking for exceptional people to join us!
Persona builds identity verification infrastructure where security isn't a layer we add later, it's core to everything we ship. When security fails at most companies, systems go down. At an identity verification company, real people's identities are compromised.
This is an enterprise security role embedded in a generalist security team. You'll work alongside experienced security engineers to defend Persona's people, devices, and systems against evolving threats - and build the tooling and automation that lets us do it at scale.
Develop, tune, and operate endpoint detection and response (EDR) rules and tooling across our macOS environment
Partner with TechOps to implement security best practices across SaaS and endpoint environments, including 2FA enforcement, automated device encryption, and DLP. You will develop and deploy these controls - not ask other teams to do so for you
Build tools and automation to scale security controls and monitoring without scaling headcount
Harden corporate infrastructure and SaaS applications against attack
Translate endpoint and SaaS telemetry into actionable mitigations and control recommendations
Build and operate insider threat detection and response programs
3+ years of experience in IT security, corporate/enterprise security, or a related technical role. We'll flex on years of experience and specific tool background for candidates who demonstrate strong fundamentals, high aptitude, and a track record of figuring things out fast
Hands-on experience with macOS endpoints, MDM platforms, and EDR tooling
Experience with endpoint hardening. You’ve hardened endpoints, not written requirements asking someone else to do it
Experience with DLP concepts and insider threat scenarios
Experience with email security fundamentals and social engineering defense
Ability to write scripts and automate workflows in Python, Ruby, Bash, or similar; comfortable with SQL
Communicates clearly about security topics with non-technical stakeholders
Experience in a high-growth startup or other fast-moving, resource-constrained environment
Familiarity with identity and access management tooling (Okta, SCIM provisioning, SSO)
Experience with Zero Trust or network access tools (Twingate, Cloudflare Access, or similar)
Exposure to SIEM platforms, log aggregation, or detection engineering
Familiarity with SaaS security posture management (SSPM) or CASB concepts
You've worked somewhere where PII or sensitive data was the core product
Small and senior by design. High ownership from day one — this isn't a team where your work disappears into a large org.
Based in SF. Relocation assistance available. Our in-office days are Tuesday - Thursday, with the option to work from home on Monday and Friday.
Full-time Employee Benefits and Perks
For full-time employees (excluding internship and contractor opportunities), Persona offers a wide range of benefits, including medical, dental, and vision, 3% 401(k) contribution, unlimited PTO, quarterly mental health days, family planning benefits, professional development stipend, wellness benefits, among others. While we believe competitive compensation and benefits are a critical aspect of you deciding to join us, we do hope you consider why our core values and culture are right for you. If you’d like to better understand what it’s like working at Persona, feel free to check out our reviews on Glassdoor
Persona helps businesses manage KYC/AML/KYB programs, fight fraud, and build trust by automating any identity-related use case with our flexible identity infrastructure. For example, we help Coursera verify learners’ identities before delivering course credentials and Brex comply with strict international KYC/AML regulations.
Beyond securely collecting and verifying user information such as PII, government IDs, and selfies, our platform also provides flexible case review and orchestration tools to help businesses streamline and automate all their identity operations — from setting custom rules to ingesting third-party data and triggering external actions.
In short, Persona handles the complexities of securely collecting, verifying, and managing sensitive personal information, so you can stay focused on building your product.
