WithMiraBuscador de roles remotos de TI
Supabase

Anti Abuse Engineer

Rol remoto de Security con fit claro de ubicación del candidato.

Publicado18 jun 2026
Países elegibles27 países aceptados
Señal de seniorityNivel abierto
Modelo de trabajoRemoto
Ubicaciones aceptadas para candidatos
ArgentinaBahamasBarbadosBeliceBermudasBolivia+21 más
PythonSQL
Resumen del rol

Anti Abuse Engineer

Requisitos y responsabilidades

Contenido del rol extraído en secciones para revisar más rápido.

Abuse Detection & Signal Triage

  • Monitor Signals: Monitor inbound abuse signals across platform telemetry, HackerOne reports, support queues, and internal alerting pipelines.
  • Triage End-to-End: Triage abuse cases end-to-end, assessing severity and blast radius, classifying actor types, and routing to the correct response track.
  • Queue Ownership: Own the abuse case queue with clear SLAs to ensure no active threats age out without a definitive decision.
  • Pattern Recognition: Identify complex patterns across distinct cases that point toward coordinated campaigns or emerging attack techniques.

Incident Response & Remediation

  • Lead Incidents: Lead response efforts for active abuse incidents, coordinating closely with Platform and Infrastructure teams to execute containment actions and drive remediation to closure.
  • Communications: Write clear, timely communications to affected users and internal stakeholders throughout the lifecycle of an incident.
  • Postmortems: Conduct thorough post-incident reviews, feeding findings back into detection rules, runbooks, and platform controls.
  • Runbook Maintenance: Maintain and improve incident runbooks to ensure response execution is consistent, scalable, and reproducible across time zones.

Detection Engineering & Automation

  • Tune Logic: Build and tune detection logic against platform telemetry and Supabase-native data sources, including Postgres query patterns, Edge Function invocations, auth anomalies, and storage abuse.
  • Reduce Toil: Automate repetitive triage and response actions to aggressively reduce manual toil, increase response speed, and improve consistency.
  • Platform Architecture: Contribute to the Anti-Abuse Platform architecture, optimizing the blocklist schema, the remediation action ladder (L1–L4), and enforcement pipelines.
  • Metrics & Fidelity: Instrument metrics for detection coverage and alert fidelity, closely tracking false positive rates, detection latency, and remediation time.

Tooling & Platform Improvement

  • Toolchain Operations: Maintain and improve the abuse operations toolchain, including case management systems, escalation workflows, and engineering reporting dashboards.
  • Proactive Security: Partner with Core Engineering to design and implement platform-layer controls that eliminate abuse vectors by design rather than by reactive response.
  • Enterprise Support: Support Supabase for Platforms (SfP) customers by operationalizing the centralized Anti-Abuse platform for enterprise-grade use cases.

You Might Be a Good Fit If You

  • Have 3+ years of experience in a security operations, trust & safety, or abuse-focused engineering role at a cloud-native product or platform company.
  • Possess hands-on experience with detection logic, including writing rules, tuning thresholds, and reducing noise in high-volume, highly complex signal environments.
  • Demonstrate a proven ability to run incident response end-to-end (triage, containment, communication, and postmortems).
  • Are proficient in SQL and a scripting language (Python heavily preferred) for log analysis, pattern detection, and building automation workflows.
  • Are deeply familiar with abuse actor techniques, such as credential stuffing, account takeover (ATO), compute abuse, exfiltration, and spam/phishing infrastructure.
  • Thrive operating async-first in a globally distributed team — you write clearly, default to explicit documentation, and close loops without needing reminders.

Nice to haves

  • Experience with Postgres, PostgREST, or Supabase platform internals.
  • Prior work building, scaling, or operating a multi-tenant abuse detection or trust & safety platform.
  • Familiarity with threat intelligence feeds and IOC enrichment pipelines.
  • Exposure to modern SIEM tooling (Scanner.dev, Splunk, Datadog, or similar).
  • Experience triaging and managing HackerOne or Bugcrowd reports at volume.
  • Working knowledge of SOC 2, ISO 27001, or similar compliance frameworks.

What We’re Not Looking For

  • A ticket-closer who doesn't own outcomes. We care about resolved, thoroughly mitigated issues, not just triaged tickets.
  • A pure analyst who doesn’t write code. Automation is a first-class expectation at this level; you must be able to script your way out of manual work.
  • A compliance-first mindset that mistakes rigid documentation for actual, real-world risk reduction.

What We Offer

  • Fully RemoteWe hire globally. We believe you can do your best work from anywhere. There are no Supabase offices, but we provide a WeWork membership or co-working allowance you can use anywhere in the world.
  • ESOPEvery team member receives ESOP (equity ownership) in the company. We want everyone to share in the upside of what we’re building together.
  • Tech AllowanceUse this budget to set up your ideal work environment—laptop, monitor, headphones, or whatever helps you do your best work.
  • Health BenefitsSupabase covers 100% of health insurance for employees and 80% for dependents, wherever you are. Your wellbeing and your family’s health are important to us.
  • Annual Off-SitesOnce a year, the entire company gathers in a new city for a week of connection, collaboration, and fun. It’s a highlight of our year.
  • Flexible WorkWe operate asynchronously and trust you to manage your own time. You know what needs to be done and when.
  • Professional DevelopmentEvery team member receives an annual education allowance to spend on learning—courses, books, conferences, or anything that supports your growth.

About the Team

  • 280+ team members
  • 55+ countries
  • 20+ languages spoken
  • $500M raised
  • 500,000+ community members

Details

  • Team Leads
  • Future teammates
  • Someone cross-functional from product, growth, or engineering (depending on the role)
  • Someone from our leadership/founding team
Roles similares

Mantén una lista de respaldo.

Ver stack
Python, SQL 6 países aceptados
Data ScientistMorgan Stanley
17 jun 2026 Aplicación por WithMira
Ver rol
Python 6 países aceptados
Application Security Engineer (Tech Lead)Morgan Stanley
17 jun 2026 Aplicación por WithMira
Ver rol
Python 6 países aceptados
Application Security Engineer (Middle)Morgan Stanley
17 jun 2026 Aplicación por WithMira
Ver rol
Python 6 países aceptados
Application Security Engineer (Senior)Morgan Stanley
17 jun 2026 Aplicación por WithMira
Ver rol
FocoSecurityÁrea del rol
Señal de seniorityNivel abiertoNivel del candidato
StackPython, SQLSkills principales
Ubicación27 países aceptadosElegibilidad

Stack

Usa estas tags para comparar roles remotos similares.

PythonSQL

Elegibilidad de ubicación

Candidatos deberían aplicar solo cuando el país del perfil aparece aquí.

Tu perfilPaís no definidoInicia sesión para comparar tu país con este rol.
Ver todos los 27 países aceptados
ArgentinaBahamasBarbadosBeliceBermudasBoliviaBrasilCanadáChileColombiaCosta RicaRepública DominicanaEcuadorEl SalvadorGuatemalaHondurasJamaicaMéxicoNicaraguaPanamáParaguayPeruPuerto RicoTrinidad y TobagoUruguayEstados UnidosVenezuela

Flujo de contratación

WithMira muestra el rol y luego envía candidatos a la aplicación de la empresa.

1Revisa fit del rol, stack y elegibilidad de ubicación en WithMira.
2Abre la página de aplicación de la empresa desde el link rastreado.
3Guarda el rol o suscríbete a oportunidades similares antes de salir.
Más roles abiertos para ArgentinaMás roles abiertos para BahamasMás roles abiertos para BarbadosMás roles abiertos para BeliceMás roles de PythonMás roles de SQL
Aplicar en el sitio de la empresaSitio de la empresaAbrir link