Were hiring a Senior Security Engineer to help shift security left across product and platform teams, while also supporting internal corporate security needs. Youll drive impact through enablement, automation, and practical risk reduction.
Why this role matters?
Youll secure both what we build and how we work. That means embedding security into our products and CI/CD, and also supporting internal teams.
Security here is not a gate; its a force multiplier. Youll help engineering teams move faster safely, and ensure our colleagues have a secure foundation to do their best work.
Success means faster, safer releases and fewer reactive security escalations.
What will you do?
As a Senior Security Engineer, your mission will be to:
Partner with developers to embed security into design, build, and deploy stages
Automate vulnerability triage and mitigation flows
Secure CI/CD pipelines (GitHub, Jenkins) and execution environments (Kubernetes, Docker)
Tune WAFs, manage cloud security (AWS, GCP, Azure), and evolve Terraform practices
Support internal teams with secure production accesses, endpoint hardening, and access policies
Lead security reviews across app, infra, and corporate environments
Advocate for security standards with clarity and empathy.
Requirements: You might be a fit if you:
See security as an enabler of speed, not an obstacle
Are comfortable in cloud and on-prem worlds
Value autonomy, and naturally take ownership from idea to execution
Can zoom out to prioritize risks and zoom in to fix root causes
Communicate clearly with devs, ops, and business teams alike
Eager to work in a technically challenging environment
Youll grow by working with:
Terraform, Docker, Kubernetes
Modern security tools
GitHub Actions, Jenkins
AWS, Azure, GCP
Teams building external-facing services (web apps, APIs) and internal platforms (CI/CD, admin tooling) to embed security by design.
Supporting a public company environment with compliance requirements across multiple standards, including SOC 2 and ISO 27001
Skills that help (well support your growth):
Application Security: code review, threat modeling, WAF
CloudSec: IAM, policy-as-code, workload hardening
On-Prem/Corporate: endpoint protection, monitoring and production access control
Communication: making risk visible and actionable.
This position is open to all candidates.