Skip to content
Remote Co Logo
  • Remote
    JOBS
  • Remote
    COMPANIES
  • Remote Work
    RESOURCES
    • Remote Work Articles
    • Remote Worker Q&A
  • Get Started
  • Log In
  • Home
  • Remote Jobs
  • Anti Abuse Engineer
remote-co-logo

Anti Abuse Engineer

Supabase

ApplySave Job
  • Date Posted

    Today

    New!
  • Remote Work Level

    100% Remote

  • Location

    Remote from Anywhereicon-everywhere.png

  • Job Schedule

    Full-Time, Flexible Schedule

  • Salary

    We're sorry, the employer did not include salary information for this job.

  • Benefits

    Professional/Career Development Tuition/Education Assistance Family/Dependent Insurance Health/Medical Insurance Home Office Reimbursement/Stipend

  • Categories

    Cyber Security,  SQL,  Tech Support,  Product Manager,  Project Manager,  Software Engineer,  Python

  • Job Type

    Employee

  • Career Level

    Experienced

  • Travel Required

    No Specification

  • Education Level

    We're sorry, the employer did not include education information for this job.

About the Role

Title: Anti Abuse Engineer

Job Description:

Location

Remote 

Employment Type

Full time

Department

Security

About Supabase

Supabase is the Postgres development platform, built by developers for developers. We provide a complete backend solution including Database, Auth, Storage, Edge Functions, Realtime, and Vector Search. All services are deeply integrated and designed for growth.

 

About the Role

Supabase serves millions of developers on a shared, multi-tenant platform. At that scale, abuse is not an edge case — it is a continuous operational reality. Credential stuffing, free-tier compute abuse, API scraping, malicious project provisioning, and exfiltration attempts occur every day. We need someone who treats detection and response as a craft, and who can close the loop between signal, triage, and automated remediation.

You will work directly with our Anti-Abuse Lead and embed with Platform Security and Product Security to build and operate the systems that protect Supabase and its customers from abuse at scale. This role sits inside the security org but operates at the intersection of security engineering, data analysis, and platform operations.

This role provides follow-the-sun coverage alongside our existing Anti-Abuse and Platform Security team members. It is fully remote, with a strong preference for candidates based in APAC or the West Coast of the Americas.

 

What You’ll Own

 

Abuse Detection & Signal Triage

  • Monitor Signals: Monitor inbound abuse signals across platform telemetry, HackerOne reports, support queues, and internal alerting pipelines.

  • Triage End-to-End: Triage abuse cases end-to-end, assessing severity and blast radius, classifying actor types, and routing to the correct response track.

  • Queue Ownership: Own the abuse case queue with clear SLAs to ensure no active threats age out without a definitive decision.

  • Pattern Recognition: Identify complex patterns across distinct cases that point toward coordinated campaigns or emerging attack techniques.

Incident Response & Remediation

  • Lead Incidents: Lead response efforts for active abuse incidents, coordinating closely with Platform and Infrastructure teams to execute containment actions and drive remediation to closure.

  • Communications: Write clear, timely communications to affected users and internal stakeholders throughout the lifecycle of an incident.

  • Postmortems: Conduct thorough post-incident reviews, feeding findings back into detection rules, runbooks, and platform controls.

  • Runbook Maintenance: Maintain and improve incident runbooks to ensure response execution is consistent, scalable, and reproducible across time zones.

Detection Engineering & Automation

  • Tune Logic: Build and tune detection logic against platform telemetry and Supabase-native data sources, including Postgres query patterns, Edge Function invocations, auth anomalies, and storage abuse.

  • Reduce Toil: Automate repetitive triage and response actions to aggressively reduce manual toil, increase response speed, and improve consistency.

  • Platform Architecture: Contribute to the Anti-Abuse Platform architecture, optimizing the blocklist schema, the remediation action ladder (L1–L4), and enforcement pipelines.

  • Metrics & Fidelity: Instrument metrics for detection coverage and alert fidelity, closely tracking false positive rates, detection latency, and remediation time.

Tooling & Platform Improvement

  • Toolchain Operations: Maintain and improve the abuse operations toolchain, including case management systems, escalation workflows, and engineering reporting dashboards.

  • Proactive Security: Partner with Core Engineering to design and implement platform-layer controls that eliminate abuse vectors by design rather than by reactive response.

  • Enterprise Support: Support Supabase for Platforms (SfP) customers by operationalizing the centralized Anti-Abuse platform for enterprise-grade use cases.

 

You Might Be a Good Fit If You

  • Have 3+ years of experience in a security operations, trust & safety, or abuse-focused engineering role at a cloud-native product or platform company.

  • Possess hands-on experience with detection logic, including writing rules, tuning thresholds, and reducing noise in high-volume, highly complex signal environments.

  • Demonstrate a proven ability to run incident response end-to-end (triage, containment, communication, and postmortems).

  • Are proficient in SQL and a scripting language (Python heavily preferred) for log analysis, pattern detection, and building automation workflows.

  • Are deeply familiar with abuse actor techniques, such as credential stuffing, account takeover (ATO), compute abuse, exfiltration, and spam/phishing infrastructure.

  • Thrive operating async-first in a globally distributed team — you write clearly, default to explicit documentation, and close loops without needing reminders.

Nice to Have

  • Experience with Postgres, PostgREST, or Supabase platform internals.

  • Prior work building, scaling, or operating a multi-tenant abuse detection or trust & safety platform.

  • Familiarity with threat intelligence feeds and IOC enrichment pipelines.

  • Exposure to modern SIEM tooling (Scanner.dev, Splunk, Datadog, or similar).

  • Experience triaging and managing HackerOne or Bugcrowd reports at volume.

  • Working knowledge of SOC 2, ISO 27001, or similar compliance frameworks.

What We’re Not Looking For

  • A ticket-closer who doesn't own outcomes. We care about resolved, thoroughly mitigated issues, not just triaged tickets.

  • A pure analyst who doesn’t write code. Automation is a first-class expectation at this level; you must be able to script your way out of manual work.

  • A compliance-first mindset that mistakes rigid documentation for actual, real-world risk reduction.

 

What We Offer

  • Fully Remote

    We hire globally. We believe you can do your best work from anywhere. There are no Supabase offices, but we provide a WeWork membership or co-working allowance you can use anywhere in the world.

  • ESOP

    Every team member receives ESOP (equity ownership) in the company. We want everyone to share in the upside of what we’re building together.

  • Tech Allowance

    Use this budget to set up your ideal work environment—laptop, monitor, headphones, or whatever helps you do your best work.

  • Health Benefits

    Supabase covers 100% of health insurance for employees and 80% for dependents, wherever you are. Your wellbeing and your family’s health are important to us.

  • Annual Off-Sites

    Once a year, the entire company gathers in a new city for a week of connection, collaboration, and fun. It’s a highlight of our year.

  • Flexible Work

    We operate asynchronously and trust you to manage your own time. You know what needs to be done and when.

  • Professional Development

    Every team member receives an annual education allowance to spend on learning—courses, books, conferences, or anything that supports your growth.

     

About the Team

Supabase was born-remote and open-source-first. We believe our globally distributed team is our secret weapon in building tools developers love.

  • 280+ team members

  • 55+ countries

  • 20+ languages spoken

  • $500M raised

  • 500,000+ community members

We move fast, build in public, and use what we ship. If it’s in your project, we probably use it in ours too. We believe deeply in the open-source ecosystem and strive to support—not replace—existing tools and communities.

 

Hiring Process

We keep things simple, async-friendly, and respectful of your time:

  1. Apply – Our team will review your application.

  2. Intro Call – A short video chat to get to know each other.

  3. Interviews – Up to four calls with:

    • Team Leads

    • Future teammates

    • Someone cross-functional from product, growth, or engineering (depending on the role)

    • Someone from our leadership/founding team

  4. Decision – We may follow up with a final question or go straight to offer.

All communication is remote and we aim to move fast.

 

Apply

FAQs About Anti Abuse Engineer Jobs at Supabase

This job offers 100% Remote Work.
Full-Time, Flexible Schedule
Yes, the benefits include Professional/Career Development, Tuition/Education Assistance, Family/Dependent Insurance, Health/Medical Insurance and Home Office Reimbursement/Stipend.
This job posting doesn't provide any salary details at the moment.
Cyber Security, SQL, Tech Support, Product Manager, Project Manager, Software Engineer, Python
You can apply directly using the apply button given on the page.
Residents of Work from Anywhere
The work location for this position will be Work from Anywhere
Experienced
The employer has not disclosed any minimum education requirements for this job

Meet Remote.co

  • About & Contact
  • CCPA/GDPR
  • Do Not Sell or Share My Personal Information
  • Fraud Awareness
  • Press & Media
  • Sitemap

Remote Work Q&A

  • All Remote Companies
  • Why Remote
  • Hiring Remotely
  • Managing Remotely
  • Working Remotely
  • Remote Worker Insights
  • All Remote Workers

Remote Work Articles

  • All Articles
  • Why Go Remote
  • Build a Remote Team
  • Remote Management
  • Work Remotely

Remote Jobs

  • Find Remote Jobs
  • Remote Accounting Jobs
  • Remote Account Manager Jobs
  • Remote Bookkeeping Jobs
  • Remote Customer Service Jobs
  • Online Data Entry Jobs
  • Remote Data Science Jobs
  • Remote Design Jobs
  • Remote Developer Jobs
  • Online Editing Jobs
  • Remote Healthcare Jobs
  • Remote IT Jobs
  • Remote Marketing Jobs
  • Remote Medical Coding Jobs
  • Remote Nursing Jobs
  • Remote Legal Jobs

More Remote Jobs

  • Remote Operations Jobs
  • Remote Product Manager Jobs
  • Remote Project Manager Jobs
  • Remote QA Jobs
  • Remote Recruiter Jobs
  • Remote Sales Jobs
  • Remote Social Media Jobs
  • Online Teaching Jobs
  • Virtual Assistant Jobs
  • Remote Writing Jobs
  • Entry-Level Remote Jobs
  • Online Freelance Jobs
  • International Remote Jobs
  • Part-Time Remote Jobs
© 2015 - 2026 Remote.co | TOS | Privacy Policy | Manage Cookies | Accessibility
Next App