Lead Security Engineer

We're looking for a hands‑on Lead Security Engineer to take ownership of privileged access systems and help drive the next generation of secure infrastructure. This role sits at the heart of our security engineering function, shaping architecture, improving operational resilience, and introducing intelligent automation to strengthen our overall security posture.

We are looking for someone who is particularly strong within HashiCorp Vault & CyberArk.

What You’ll Do

• Manage and support privileged access platforms and secrets‑management tools, including troubleshooting, lifecycle maintenance, upgrades, and user support.
• Ensure the reliability and compliance of privileged access infrastructure across its full lifecycle.
• Act as the internal expert on secrets management and privileged access architecture, championing security‑as‑code practices.
• Design and implement enhancements that improve user experience, automation, and system integrations.
• Apply emerging technologies—including AI‑driven detection and remediation—to streamline operations and reduce risk.

What You Bring

• Expert level knowledge with HashiCorp Vault & CyberArk
• Strong understanding of authentication and authorization technologies (e.g., directory services, modern identity protocols, cloud IAM, certificates).
• Experience with cloud environments and CI/CD tooling such as Terraform, Ansible, or Jenkins.
• Solid grasp of core security architecture principles.
• Hands‑on expertise with one or more privileged access or secrets‑management platforms (e.g., enterprise vaulting, certificate services, HSMs, PKI).
• Proficiency in scripting or development using languages such as Go, Bash, Python, PowerShell, Ansible, or Terraform.
• Deep knowledge of privileged access methodologies across on‑prem and cloud environments.

Compensation

• $160-190k base compensation
• 15% annual bonus
• 20+ days PTO
• 6% 401k matching
• Health, vision, dental and life plans
• 2 days remote working per week