Security Engineer
Role summary
We are seeking a Security Engineer to enhance the security of our client's product, platform, and operations. This role involves implementing technical controls, supporting secure cloud environments, and improving vulnerability management, monitoring, and incident response. The ideal candidate will enjoy solving complex security challenges, collaborating across teams, and contributing to a mature security program. Responsibilities include maintaining the vulnerability management program, supporting IT security tools, defining logging and alerting, responding to security incidents, conducting threat modeling, and designing/implementing defensive security controls.
Security Engineer
Design cutting‑edge security architecture and push the boundaries of modern cloud defense.
We are seeking a Security Engineer to strengthen the security of our client's product, platform, and internal operations. In this role, you will implement technical controls, support secure cloud environments, and enhance vulnerability management, monitoring, and incident response processes. This is an excellent opportunity for someone who enjoys solving complex security challenges, collaborating across teams, and contributing to a mature and scalable security program.
Responsibilities
- Maintain and enhance the organization’s vulnerability management program, ensuring timely identification, tracking, and remediation of vulnerabilities.
- Collaborate with IT teams to support email security, antivirus tools, and VPN technologies.
- Define and maintain logging and alerting requirements to support security monitoring and threat detection.
- Act as a first responder for security-related issues, triaging alerts and participating in incident response activities.
- Conduct threat modelling for new and existing applications and services.
- Design, architect, and implement defensive security controls across cloud services and internal systems.
Qualifications
- 3+ years of experience in security engineering or security operations.
- Strong understanding of SOC 2 Type II compliance and familiarity with standards such as PCI-DSS.
- Experience with cloud security, DevSecOps practices, and microservice architectures.
- Knowledge of IAM frameworks such as SAML, OAuth, and OpenID.
- Hands-on experience with vulnerability management, including prioritization and remediation.
- Background in security incident response, including participation in SIRT or similar roles.
- Strong communication and collaboration skills.
Bonus Skills
- Experience working in a Mac environment.
- Familiarity with Google Cloud Platform (GCP), GlobalProtect VPN, CrowdStrike, Arctic Wolf, Jira, Okta, and Google Workspace.
- Experience building or deploying automation for security or IT workflows.
- Knowledge of GitHub, Kubernetes, and related DevOps tools.
- Security certifications such as GCP/AWS Security, GIAC, GDAT, CISSP, CEH, CISM, etc.
- Experience securing SaaS products.
- Bachelor’s degree in Computer Science, Engineering, or another STEM field.
Similar roles
Staff Security EngineerPivotal Health · Los Angeles, California, United States · Hybrid- Security EngineerLawrence Harvey · Toronto, Ontario, Canada · Hybrid
- Security EngineerARQ · New York, New York, United States · Remote
Security EngineerAP Professionals · United States · Remote- Senior Security EngineerSystems Integration Solutions · Cupertino, California, United States · Onsite
