Why Harvey
At Harvey, we’re transforming how legal and professional services operate — not incrementally, but end-to-end. By combining frontier agentic AI, an enterprise-grade platform, and deep domain expertise, we’re reshaping how critical knowledge work gets done for decades to come.
This is a rare chance to help build a generational company at a true inflection point. With 1000+ customers in 60+ countries, strong product-market fit, and world-class investor support, we’re scaling fast and defining a new category in real time. The work is ambitious, the bar is high, and the opportunity for growth — personal, professional, and financial — is unmatched.
Our team is sharp, motivated, and deeply committed to the mission. We move fast, operate with intensity, and take real ownership of the problems we tackle — from early thinking to long-term outcomes. We stay close to our customers — from leadership to engineers — and work together to solve real problems with urgency and care. If you thrive in ambiguity, push for excellence, and want to help shape the future of work alongside others who raise the bar, we invite you to build with us.
At Harvey, the future of professional services is being written today — and we’re just getting started.
Role Overview
Some of the world's largest companies and their law firms use Harvey’s AI capabilities to deliver world-class client services at unprecedented scale and efficiency. Harvey allows high-performing professionals to gain deep domain knowledge faster, understand the big picture, and tackle more complex challenges in less time.
Our customers depend on us to deliver a secure, trustworthy, and compliant platform. Earning the trust of our customers is a business enabler and we value it more than anything else.
We are looking for an offensive security minded blue teamer to help us proactively identify and mitigate all threats against Harvey. Your offensive security expertise will be key in prioritizing the right defenses, modeling threats against our infrastructure, and chasing down leads. You will have the opportunity to build your Software Engineering and System Design skills as you’re working on our state of the art agentic threat detection platform built on ClickHouse.
As an early member of our Security Detection and Response team, you will play a key role in shaping the foundation of our Detection and Response program. We are a small but effective team and have a high bar for our work.
Our security program at Harvey is driven by our collective offensive security experience: Breaking into systems at other companies (in white-hat capacities), responding to real security incidents, and learning from other companies’ data breaches. We conduct regular pentests and red team exercises with external security firms. At the same time, we are all software engineers, contributing code daily, and approaching security topics with an engineering-first approach.
What You'll Do
- Build strong relationships with key employees across the organization
- Use your offensive security expertise to develop plausible threat scenarios and identify opportunities for detection
- Assess logs for gaps and implement additional logging as needed
- Build out sophisticated data pipelines to handle increasing volumes of data and enrich our observability
- Lead incident response, as needed
- Develop detection rules and a process for keeping them effective in collaboration with our other D&R Engineers
- Participate in table-top and redteam exercises to evaluate efficacy
What You Have
- Demonstrated ability to find weaknesses (e.g. privilege escalation) in real-world corporate networks, cloud environments, or applications
- Hands-on experience responding to security incidents
- Strong understanding of computer networks, operating systems, and cryptographic protocols
- 4+ years of experience in Security, Software Engineering, Site Reliability Engineering, or related disciplines
Nice to Have
- Experience working at a small company, smaller independent division of larger company, or a hyper-growth startup
- Experience with ClickHouse or similar data warehouses
- Red team experience
- Experience in incident commander role, managing security incidents or other disasters
Compensation
$188,000 - $282,000
Depending on your location, an Applicant Privacy Notice may apply to you. You can find all of our Applicant Privacy Notices [**here**].
#LI-KV1
Harvey is an equal opportunity employer and does not discriminate on the basis of race, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition, or any other basis protected by law.
We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made by emailing accommodations@harvey.ai