Staff Security Engineer

about 2 months ago

Remote, WorldwideStaff+

Base Salary

$220k - $240k/yr

Responsibilities

Lead security architecture and design reviews across applications and infrastructure.
Conduct penetration testing, threat modeling, and security reviews for critical services.
Design and implement security automation within CI/CD pipelines.
Partner with infrastructure and DevOps teams to secure cloud platforms.
Build security observability and detection capabilities.
Identify systemic weaknesses and design controls against various attack classes.
Work closely with developers to improve security practices.
Lead incident response investigations and build mitigation processes.
Own and evolve the bug bounty program.
Develop security standards, playbooks, and training programs.
Help define the security roadmap and identify improvement initiatives.

Deep understanding of application security and cloud security.
Strong software engineering background with experience in production-grade code.
Hands-on experience securing cloud-native infrastructure, especially AWS.
Experience building or integrating DevSecOps pipelines.
Experience designing security telemetry pipelines.
Experience in penetration testing and architectural security reviews.
Proven ability to collaborate with engineering and product teams.
Excellent communication skills for explaining security risks.
Strong understanding of SaaS architectures and distributed systems.
Experience developing security frameworks aligned with compliance requirements.
Experience building security detections and threat intelligence pipelines.
Hands-on experience with Kubernetes and infrastructure-as-code.

AnsibleAWSKubernetesPythonTerraformTypeScript