Job Details

Founded in 2017, Obsidian Security was created to close a critical gap: securing the SaaS applications where modern business happens—platforms like Microsoft 365, Salesforce, and hundreds more.Backed by top investors including Greylock, Norwest Venture Partners, and IVP, we've built a complete SaaS security platform to reduce risk, detect and respond to threats, and prevent breaches at the source. Our team includes leaders who helped define the categories of endpoint and identity security at CrowdStrike, Okta, Cylance, and Carbon Black.Now, we're transforming how SaaS is secured—in the era of agentic AI.With strong global momentum, a growing partner ecosystem including SentinelOne, Databricks, and Google Cloud, and a major fundraise on the horizon, we're scaling quickly toward long-term growth and IPO readiness. Obsidian helps companies figure out what's happening in their SaaS applications - who's accessing what, where data is going, and what looks suspicious.You'll work across the full stack on the Threat product team: browser extension code that hooks into web applications, backend services processing millions of events, and data pipelines feeding our detection engine. One day you're in TypeScript debugging why a content script isn't capturing form submissions on some vendor's weird SPA. The next you're in Python fixing a Kafka consumer that's falling behind. Right now, a big focus is shadow AI - enterprises want to know when employees are pasting sensitive data into ChatGPT, Claude, or whatever new LLM chatbot showed up this week. Own features from “we need to detect X” through production, across extension, backend, and pipeline codeWrite content scripts that interact with web pages and background scripts that coordinate everythingBuild backend services: event ingestion, enrichment, alertingHelp the team get better through code review and design discussions8+ years building software, ideally touching a few different areas (not just one stack forever)~ Not just “I used React.”~ You know the content script/background script split, message passing, manifest v3 limitations.~ Strong TypeScript. Comfortable in Python. You've dealt with data at scale: event streaming, pipelines, high-throughput ingestion.~ Backend basics: Bonus pointsYou've thought about AI security - prompt injection, data exfiltration, that kind of thingOur competitive benefits packages are designed to support our employees' well-being, both at work and at home. Competitive compensation with equity and 401k~ Comprehensive healthcare with dental and vision coverage~ Flexible paid time off and paid holiday time off~Personal and professional development resourcesFor more details on our US benefits, or for information on our international benefits, please see here .In addition to a competitive base salary, this position is eligible for equity awards and may be eligible for sales commission or incentive compensation based on the role or function within the company.We value diversity and hire for talent, passion, and compassion. In compliance with federal law, all persons hired will be required to submit satisfactory proof of identity and legal authorization. Information collected and processed as part of any job applications you choose to submit is subject to Obsidian's Applicant Privacy Policy .