We are looking for a Security Engineer to join our Security Engineering team. This is a generalist, "all-rounder" role – you will work across all security domains, while leading and owning a specific security domain based on your expertise.
You will define and drive security programs, design and implement security controls, and make architecture-level decisions across your domain. You will work closely with R&D, DevOps, and engineering teams, embedding security into how we build and operate at scale, and help shape a security-first culture across the organization.
You will define and drive security programs, design and implement security controls, and make architecture-level decisions across your domain. You will work closely with R&D, DevOps, and engineering teams, embedding security into how we build and operate at scale, and help shape a security-first culture across the organization.
Requirements:
5+ years in security engineering with strong hands-on expertise across both application and cloud/infrastructure security
Hands-on experience with SAST, DAST, SCA, WAF, threat modeling, secure code review, and API security
Experience defining and driving secure development lifecycle programs (SSDLC), including embedding security gates into CI/CD pipelines and GitOps workflows
Experience securing cloud-native environments (AWS preferred, GCP/Azure a plus), including containers, Kubernetes workloads, and microservices
Hands-on experience with Terraform, CSPM/CNAPP tooling, and misconfiguration remediation
Solid understanding of networking fundamentals (TCP/IP, DNS, TLS, network segmentation) with practical experience implementing zero trust architectures and ZTNA
Experience with Okta, Google Workspace, SSO/SAML/OIDC, and least-privilege access models
Familiarity with industry-leading security platforms and tooling across MDM, EDR, SIEM, CSPM/CNAPP, ASPM, WAF, DAST/SAST, ZTNA, and identity security platforms
Proficiency in scripting and automation – Python, JavaScript, Bash, or similar
Broad generalist mindset with the ability to operate across multiple security domains and connect the dots between them
5+ years in security engineering with strong hands-on expertise across both application and cloud/infrastructure security
Hands-on experience with SAST, DAST, SCA, WAF, threat modeling, secure code review, and API security
Experience defining and driving secure development lifecycle programs (SSDLC), including embedding security gates into CI/CD pipelines and GitOps workflows
Experience securing cloud-native environments (AWS preferred, GCP/Azure a plus), including containers, Kubernetes workloads, and microservices
Hands-on experience with Terraform, CSPM/CNAPP tooling, and misconfiguration remediation
Solid understanding of networking fundamentals (TCP/IP, DNS, TLS, network segmentation) with practical experience implementing zero trust architectures and ZTNA
Experience with Okta, Google Workspace, SSO/SAML/OIDC, and least-privilege access models
Familiarity with industry-leading security platforms and tooling across MDM, EDR, SIEM, CSPM/CNAPP, ASPM, WAF, DAST/SAST, ZTNA, and identity security platforms
Proficiency in scripting and automation – Python, JavaScript, Bash, or similar
Broad generalist mindset with the ability to operate across multiple security domains and connect the dots between them
This position is open to all candidates.















