Ironclad is the leading AI-powered contract lifecycle management platform, processing billions of contracts every year.
Every business is powered by contracts, but managing them can slow companies down and cost millions of dollars. Global innovators like L’Oréal, OpenAI, and Salesforce trust Ironclad to transform contracting into a strategic advantage - accelerating revenue, reducing risk, and driving efficiency. It’s the only platform that manages every type of contract workflow, whether a sales agreement, an HR agreement or a complex NDA.
We’re building the future of intelligent contracting and writing the narrative for how contracts unlock strategic growth. Forrester Wave and Gartner Magic Quadrant have consistently recognized Ironclad as a leader in our category. We’ve also been named one of Fortune’s Great Places to Work six years running, featured on Glassdoor’s Best Places to Work, and recognized by Forbes’ 50 Most Promising AI Companies.
We’re backed by leading investors like Accel, Sequoia, Y Combinator, and BOND. We’d love for you to join us!
This is a hybrid role based out of our San Francisco office. Office attendance is required at least twice a week on Tuesdays and Thursdays for collaboration and connection. There may be additional in-office days for team or company events.
Security at Ironclad
This role is a blue team operator for both corporate and product security.
Security Operations
Monitor and investigate alerts in CrowdStrike Falcon, escalating incidents as needed.
Respond to endpoint detections, phishing attempts, and insider threats across endpoints managed via Jamf.
Maintain and improve detection rules, dashboards, and response workflows.
Administer and tune Wiz for cloud workload protection and misconfiguration detection in Google Cloud Platform (GCP).
Collaborate with IT on Google Workspace security controls and sensitive analysis.
DevSecOps
Integrate security scanning and policy checks into CI/CD pipelines, such as CircleCI. Includes container scanning, SAST, and DAST.
Work with engineering to remediate vulnerabilities, harden Docker images, and reduce supply chain risk.
Contribute to secure coding guidance and enforcement of security controls during CI/CD workflows.
Governance and Compliance Support (limited)
Assist with evidence collection and controls validation for audits (e.g., SOC 2, ISO 27001).
Document procedures and help drive continuous improvement in incident response and vulnerability management processes.
Qualification preferences
Experience supporting a B2B SaaS product in a regulated environment, inclusive of GDPR, HIPAA, SOC, ISO 27001, and NIST SP 800-53.
Familiarity with MITRE ATT&CK, threat hunting techniques, and adversary simulation.
Experience with compliance tooling, vulnerability management platforms, or Google security APIs.
Benefits:
Health, dental, and vision insurance
401k
Wellness reimbursement
Take what you need vacation policy
Generous parental leave for both primary and secondary caregivers
Base Salary Range: $170,000 - $190,000
The base salary range represents the minimum and maximum of the salary range for this position based at our San Francisco headquarters. The actual base salary offered for this position will depend on numerous factors, including individual proficiency, anticipated performance, and the location of the selected candidate. Our base salary is just one component of Ironclad’s competitive total rewards package, which also includes equity awards (a new hire grant, along with opportunities for additional awards throughout your tenure), competitive health and wellness benefits, and a commitment to career growth and development.
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.