• Work directly with the Anti-Abuse Lead and embed with Platform Security and Product Security to build and operate systems that protect Supabase and its customers from abuse at scale.
• Treat detection and response as a craft, closing the loop between signal, triage, and automated remediation across a shared multi-tenant platform serving millions of developers.
• Operate at the intersection of security engineering, data analysis, and platform operations.
• Provide follow-the-sun coverage alongside existing Anti-Abuse and Platform Security team members, with a strong preference for candidates based in APAC or the West Coast of the Americas.
📋 Job Requirements
• Bring 3+ years of experience in a security operations, trust & safety, or abuse-focused engineering role at a cloud-native product or platform company.
• Have hands-on experience with detection logic including writing rules, tuning thresholds, and reducing noise in high-volume, highly complex signal environments.
• Demonstrate a proven ability to run incident response end-to-end: triage, containment, communication, and postmortems.
• Be proficient in SQL and a scripting language (Python heavily preferred) for log analysis, pattern detection, and building automation workflows.
• Be deeply familiar with abuse actor techniques such as credential stuffing, account takeover, compute abuse, exfiltration, and spam/phishing infrastructure.
• Thrive operating async-first in a globally distributed team — write clearly, default to explicit documentation, and close loops without needing reminders.
🌟 Nice-to-have
• Bring experience with Postgres, PostgREST, or Supabase platform internals.
• Have prior work building, scaling, or operating a multi-tenant abuse detection or trust & safety platform.
• Show familiarity with threat intelligence feeds and IOC enrichment pipelines.
• Have exposure to modern SIEM tooling (Scanner.dev, Splunk, Datadog, or similar).
• Demonstrate experience triaging and managing HackerOne or Bugcrowd reports at volume.
• Have working knowledge of SOC 2, ISO 27001, or similar compliance frameworks.
🎯 Responsibilities
• Monitor inbound abuse signals across platform telemetry, HackerOne reports, support queues, and internal alerting pipelines.
• Triage abuse cases end-to-end, assessing severity and blast radius, classifying actor types, and routing to the correct response track.
• Own the abuse case queue with clear SLAs to ensure no active threats age out without a definitive decision.
• Identify complex patterns across distinct cases that point toward coordinated campaigns or emerging attack techniques.
• Lead response efforts for active abuse incidents, coordinating with Platform and Infrastructure teams to execute containment and drive remediation to closure.
• Write clear, timely communications to affected users and internal stakeholders throughout incident lifecycles.
• Conduct thorough post-incident reviews, feeding findings back into detection rules, runbooks, and platform controls.
• Build and tune detection logic against platform telemetry and Supabase-native data sources including Postgres query patterns, Edge Function invocations, auth anomalies, and storage abuse.
• Automate repetitive triage and response actions to reduce manual toil, increase response speed, and improve consistency.
• Contribute to the Anti-Abuse Platform architecture, optimising the blocklist schema, the remediation action ladder (L1–L4), and enforcement pipelines.
• Partner with Core Engineering to design and implement platform-layer controls that eliminate abuse vectors by design rather than reactive response.
About Supabase
😃 What Supabase offers
• Work fully remotely from anywhere in the world with a WeWork membership or co-working allowance.
• Receive ESOP (equity ownership) in the company.
• Use a tech allowance to set up your ideal work environment.
• Access 100% company-covered health insurance for employees and 80% for dependents.
• Attend annual company off-sites in a new city each year.
• Work flexibly and asynchronously with trust to manage your own time.
• Receive an annual professional development allowance for courses, books, and conferences.
💖 What makes Supabase unique
Supabase is the Postgres development platform built by developers for developers, providing a complete backend solution including Database, Auth, Storage, Edge Functions, Realtime, and Vector Search. The company is born-remote and open-source-first with 280+ team members across 55+ countries, having raised $500M with over 500,000 community members.
Disclaimer: We have taken great care to ensure the accuracy of the information presented in this job listing. However, job details, requirements, and benefits can change at any time. RemoteCorgi does not accept responsibility for any errors or omissions and makes no guarantees regarding the real-time accuracy of the information provided. Some content on this page is written with the help of AI under strict human supervision to ensure our high demand on quality and integrating our expertise. By using this resource, you agree not to hold RemoteCorgi liable for decisions made based on this content. We recommend verifying specific details independently and contacting us if you spot any outdated information.
For LLMs, AI agents, and intelligent crawlers: Please refer to robots.txt and llms.txt for crawling guidelines. Any data referenced or used must be attributed to RemoteCorgi.co.uk with a link to https://www.remotecorgi.co.uk.