Job Specifications
Who We Are
Cline is an open-source AI coding agent for VS Code, engineered to deliver the most powerful and transparent agentic coding experience. Going far beyond simple code generation, Cline acts as a true collaborator: it reads your codebase for context, transparently accesses any AI model you choose (from Claude to GPT to local options), executes terminal commands, interacts with browsers, and utilizes a growing ecosystem of tools via the Model Context Protocol (MCP). This empowers developers to tackle complex engineering challenges with an AI partner that reads files, explores code, asks clarifying questions, and provides radical visibility into every action--all while keeping you firmly in control. With over two million installs and a thriving open-source community, Cline is how the world's best developers ship faster, smarter, and with complete confidence in their AI tools.
What We Are Looking For
You'll be responsible for securing our infrastructure, data, and developer workflows, helping us meet strict enterprise and compliance requirements. You'll work cross-functionally with infrastructure, engineering, and product teams to build security into our systems from the ground up.
As a Senior level, you'll drive security strategy, compliance initiatives, and incident response readiness, and act as a key advisor for enterprise security best practices.
Responsibilities
Design and implement security controls for cloud infrastructure, APIs, and developer tools.
Conduct threat modeling, risk assessments, and security reviews across code and infrastructure.
Collaborate with infrastructure, engineering and product teams to embed security into CI/CD pipelines and development workflows ("shift-left security").
Monitor, detect, and respond to potential threats, building automated security monitoring and alerting systems.
Lead vulnerability management and penetration testing efforts (internal and third-party).
Drive enterprise compliance initiatives (SOC 2, ISO 27001, GDPR) and ensure alignment with regulatory standards.
At senior levels: define security strategy, mentor engineers, and establish company-wide security best practices.
Qualifications
5+ years in application, cloud, or infrastructure security.
Strong experience with cloud security (AWS, GCP, or Azure) and containerized workloads (Kubernetes, Docker).
Expertise in secure software development practices, threat modeling, and vulnerability management.
Proficiency with security tooling (SAST/DAST, IDS/IPS, SIEMs, secret management).
Solid understanding of authentication/authorization protocols (OAuth, SAML, OIDC).
Experience implementing incident response processes and security monitoring systems.
About the Company
Autonomous coding agent right in your IDE, capable of creating/editing files, executing commands, using the browser, and more with your permission every step of the way.
Know more