WHO WE ARE
Zeta Global (NYSE: ZETA) is the AI-Powered Marketing Cloud that leverages advanced artificial intelligence (AI) and trillions of consumer signals to make it easier for marketers to acquire, grow, and retain customers more efficiently. Through the Zeta Marketing Platform (ZMP), our vision is to make sophisticated marketing simple by unifying identity, intelligence, and omnichannel activation into a single platform powered by one of the industrys largest proprietary databases and AI. Our enterprise customers across multiple verticals are empowered to personalize experiences with consumers at an individual level across every channel, delivering better results for marketing programs. Zeta was founded in 2007 by David A. Steinberg and John Sculley and is headquartered in New York City with offices around the world. To learn more, go to .
About the Role
Were looking for a highly skilled Lead Application & Platform Security Engineer to leadour application and platform security initiatives. Youll be responsible for embeddingsecurity into every stage of the development lifecycle, from threat modeling throughdeployment, ensuring secure-by-design practices are consistently applied.Zeta operates at significant scale, supporting billions of consumer profiles andpetabytes of data across real-time, AI-powered marketing platforms. In this role, you'llhelp safeguard our high-performance systems by driving best practices, evaluatingemerging threats, and enabling cross-functional teams to build secure, reliableapplications.
This is a high-impact position with visibility across engineering, product,and executive leadership.
This is a hybrid role based out of our San Francisco, CA office.
Key Responsibilities
Threat Modeling & Security Validation
Lead threat modeling and security architecture reviews for distributed, event-driven systems.
Integrate security code reviews, SAST/DAST, Software Composition Analysis(SCA), and container scanning into CI/CD and AI/ML pipelines.
Coordinate and lead incident simulations specific to AI systems; oversee red/blueteam exercises to validate defensive posture.
Conduct security reviews of third-party vendors and tools to ensure alignmentwith enterprise security standards.
Embedding Security into the SDLC
Collaborate with engineers and product teams to build secure features withoutimpeding innovation.
Establish and lead security checkpoints across the software developmentlifecycle.
Review system designs, architecture, and data flow diagrams to identify andmitigate risks early.
Collaborate with key stakeholders to drive informed Go/No-Go security decisionsfor all major production deployments.
Emerging Threat Monitoring & Proactive Defense
Stay on the forefront of security innovations, including OWASP, cloud-native, andAPI security practices.
Monitor modern threat vectors like LLM jailbreaks, prompt injection, and datapoisoning.
Recommend and implement forward-looking controls to safeguard AI models anddata platforms. Security Awareness & Policy Implementation
Evangelize secure coding and AI security through training, brown bag sessions,and workshops.
Develop and roll out internal security policies, standards, and best practices.
Raise awareness of security threats through documentation and hands-onengagement.
Foster a security-first culture across engineering, product, and data teams.
What You Need to Succeed
Bachelors degree in Computer Science, Cybersecurity, or a related field, orequivalent experience.
5+ years of experience in Application Security, DevSecOps, or secure softwaredevelopment.
In-depth understanding of OWASP Top 10, SANS CWE Top 25, MITRE ATT&CKfor ML, and adversarial threat modeling.
Experience securing modern frameworks and architectures (e.g., React, Node.js,Django, FastAPI).
Familiarity with AI/ML attack vectors including model inversion, adversarialexamples, and training pipeline integrity.
Strong foundation in OAuth2, OpenID Connect, JWT, and securing APIs andmicroservices.
Experience with cloud-native security (e.g., AWS, GCP, Azure) and containertechnologies (e.g., Docker, Kubernetes).
Strong communication and stakeholder management skills.
Nice to Have
Hands-on with tools like Semgrep, Veracode, Checkmarx, SonarQube, BurpSuite, Zap, Trivy, Brakeman, or LangSec.
Certifications such as OSCP, CSSLP, GWAPT, or ML-specific certs (e.g., MITREATT&CK Defender for ML).
BENEFITS & PERKS
SALARY RANGE
The salary range for this role is $140,000 - $175,000, depending on location and experience.
PEOPLE & CULTURE AT ZETA
Zeta considers applicants for employment without regard to, and does not discriminate on the basis of an individuals sex, race, color, religion, age, disability, status as a veteran, or national or ethnic origin; nor does Zeta discriminate on the basis of sexual orientation, gender identity or expression.
Were committed to building a workplace culture of trust and belonging, so everyone feels invited to bring their whole selves to work. We provide a forum for employees to celebrate, support and advocate for one another. Learn more about our commitment to diversity, equity and inclusion here:
Accepted file types: pdf, doc, docx, txt, rtf
Enter manually
Accepted file types: pdf, doc, docx, txt, rtf
LinkedIn Profile
Website
How did you hear about this opportunity? *
Are you able to work in the United States? * Select...
Will you now or in the future require sponsorship for Employment Visa status? * Select...
Desired Salary *
Where do you currently reside? *
Zeta collects this Voluntary Demographic Dataonly with your consent, for the sole purpose of tracking and improving the diversity of ourapplicant pool. Any information you choose to provide will not be considered for employment purposes, will not be associated with your employment at Zeta if you are offered a position,and is not used to make hiring or employment decisions. This data will be maintained unless you withdraw your consent. You may withdraw consent for this data to be maintained by Zeta at any time by contacting your Recruiter. If and when you are employed by Zeta, you may withdraw consent by contacting your HR Partner.If and when you onboard with Zeta, you will also be asked to complete an EEOC questionnaire that collectsadditional demographicdata in order for Zeta to meet its legal requirements.
We are committed to building diverse teams with different identities, backgrounds and perspectives. We believe in providing a forum to connect at Zeta, to learn and celebrate differences.Our mission is to ensure we have an environment that enables a deep level of trust and belonging, so everyone feels invited to bring their whole selves to work, and to increase both diversity at Zeta as well as in the technology industry.
Zeta considers applicants for employment without regard to, and does not discriminate on the basis of an individuals sex, race, color, religion, age, disability, status as a veteran, or national or ethnic origin, or any other basis protected by applicable federal, state or local law; nor does Zeta discriminate on the basis of sexual orientation or gender identity or expression.
I identify my ethnicity as: Select...
With which gender do you most identify? Select...
Disability Status Select...
Select...
For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file.
As set forth in Zeta Globals Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law.
If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows:
A disabled veteran is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.
A recently separated veteran means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
An active duty wartime or campaign badge veteran means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for whic]]> <
...years of experience spanning both front-end development and backend systems. ~ Proven ability... .... React + Typescript (or similar web frameworks). Go, Rust, or Python for backend... ...0.00 5 days ago Software Engineer, AI Intern (Winter 2026) San Francisco, CA $57.00-...
...The ERM International Group - Austin, TX - ERM seeks a motivated Managing Consultant, Air Quality , with significant consulting experience and client relationships, to grow our air quality services business in Texas. This is a partner-track opportunity for an air quality...
New multi space concept is seeking talented line cooks to join our team! Job requirements: Theline cook is responsible for the execution of all items on the menu Ability to work in a fast paced environment Ability to effectively cook all items on dinner menu...
...and wellness, eating healthy, into fitness, taking care of yourself and helping others, and being able to work independently, then promoting JUCE in Costco is the position for you. Spread the good news of JUCE to everyone!!!! Employee benefit "FREE JUCE" We are...
Job Description Job Description Hiring a part time assistant/technician to assist doctors with office calls, surgery, laboratory work and radiology. Must be able to work on Thursdays and Fridays.