Senior Security Engineer Position Summary We are seeking a Senior Security Engineer to serve as both a technical leader and trusted security partner to multiple product and engineering teams. This role focuses on designing, implementing, and maintaining secure cloud infrastructure while driving security excellence across the organization. You will lead vulnerability management programs, architect security automation solutions, and provide strategic security guidance throughout the product development lifecycle. This is a senior, hands‑on role that requires deep technical expertise, strong ownership, and the ability to influence security decisions across engineering teams while contributing to broader security strategy and roadmap planning. Key Responsibilities Product Team Collaboration and Leadership Partner with product managers and engineering teams as a trusted security advisor Lead CVE remediation programs across multiple product environments and cloud accounts Influence security decisions through technical depth and strategic guidance Mentor engineering teams on secure coding practices and security best practices Build and scale a security champions program to improve security awareness Present security findings and recommendations to both technical and non‑technical stakeholders Cloud Infrastructure Security Implement and maintain cloud security services including threat detection, posture management, and audit logging Design and enforce security policies, IAM roles, and access controls across multi‑account cloud organizations Conduct comprehensive security audits and assessments of cloud infrastructure Implement container and Kubernetes security controls across managed and self‑managed environments Deploy and manage Cloud Security Posture Management solutions Build cloud security automation using event‑driven and serverless services Security Automation and Tooling Build and maintain security automation pipelines for continuous security validation Develop custom security tools, scripts, and integrations using Python, Go, or Bash Create self‑service security capabilities to enable engineering teams to shift security left Implement policy‑as‑code frameworks and automated guardrails Leverage AI‑assisted development tools to accelerate security automation delivery Automate security compliance checks and reporting workflows Security Testing and Validation Implement automated security testing in CI/CD pipelines including static, dynamic, dependency, and container scanning Conduct application security assessments and penetration testing Perform security‑focused code reviews and threat analysis Validate security control effectiveness through ongoing testing Build security testing frameworks and tooling for continuous validation Monitoring, Detection, and Response Implement comprehensive security monitoring and alerting using SIEM platforms Develop automated event correlation and threat detection capabilitiesLead security incident response and post‑incident analysis Create incident response playbooks, runbooks, and automation Perform security forensics and root cause analysis Contribute to continuous improvement of incident management processes External Threat Protection Configure and manage web application firewall and CDN security controls Monitor and respond to web‑based attacks using threat intelligence and analytics Optimize CDN configurations for both security and performance Analyze attack patterns and implement proactive defensive controls Implement API security and gateway protection Deploy and tune DDoS protection and bot mitigation solutions Required Qualifications 5 to 8 years of hands‑on security engineering experience with a focus on cloud and DevSecOps Demonstrated technical leadership in security architecture and engineering initiatives Proven ability to build security automation and improve security posture at scale Experience working in highly collaborative, cross‑functional engineering environments Technical Expertise Cloud Security Extensive experience securing enterprise cloud environments at scale Deep knowledge of cloud security services, identity and access management, encryption, logging, and monitoring Experience with multi‑account security architecture and governance Strong understanding of cloud security shared responsibility models and well‑architected frameworks Container and Kubernetes Security Advanced Kubernetes security knowledge including RBAC, network policies, and workload hardening Experience securing managed and container‑orchestration platforms Container image scanning, supply chain security, and SBOM practices Runtime container security and threat detection Zero‑trust and service mesh security concepts Security Tooling and Platforms CI/CD security integration and secure pipeline design Security monitoring platforms such as SIEM or SOAR solutions Web application firewall, CDN security, bot management, and DDoS protection tooling Vulnerability scanning tools covering application, dependency, and container security Secret management and secure configuration platforms Infrastructure as Code and Automation Expert experience with infrastructure‑as‑code tools Configuration management and GitOps workflows Infrastructure security scanning and policy automation Programming and Scripting Strong proficiency in Python, Go, and Bash for security tooling and automation Experience with infrastructure and policy configuration formats Security tooling integration via APIs and webhooks Secure coding and code review expertise AI‑Assisted Development Experience using AI‑assisted development tools to accelerate security engineering workflows Ability to review, validate, and safely integrate AI‑generated code and configurations Understanding of AI limitations in security‑critical contexts Strong judgment around when human review is required API and Application Security API gateway security, OAuth and OIDC implementation Web application security principles and OWASP Top 10 mitigation Secure SDLC and shift‑left security practices Network and Perimeter Security WAF configuration, DDoS protection, and CDN security Zero‑trust networking principles Network segmentation and secure connectivity patterns Security and Compliance Knowledge Vulnerability management, CVE remediation, and risk prioritization Compliance frameworks such as SOC 2, PCI‑DSS, GDPR, HIPAA, or ISO 27001 Security frameworks including OWASP, NIST, CIS Benchmarks, and MITRE ATT&CK Threat modeling and risk assessment methodologies Incident response, forensics, and lessons‑learned practices Supply chain security and software composition analysis Soft Skills and Professional Qualities Strong ability to communicate complex security concepts clearly Collaborative mindset and strong partnership with engineering teams Passion for continuous learning and security craftsmanship High ownership, initiative, and bias for action Strategic thinking with balance between security and business needs Interest in mentorship and security culture development Preferred Qualifications Security certifications such as cloud security, penetration testing, or Kubernetes security certifications Experience in multi‑cloud environments Contributions to open‑source security tools or research Experience supporting regulated or compliance‑driven environments Bachelor’s degree in a technical discipline or equivalent practical experience Exposure to additional CI/CD platforms and security orchestration tooling Familiarity with threat intelligence platforms and integration patterns #J-18808-Ljbffr