Primary focus will be on infrastructure security through architecture reviews, threat modeling for new and existing services and security tool implementations, while leveraging automation to scale security solutions.
Design, deploy, and manage advanced security tools, including SIEM, EDR, DLP, vulnerability management, and firewalls.
Engineer solutions to integrate security tooling across cloud environments, ensuring seamless protection and visibility. Collaborate with cloud engineering teams to implement and secure cloud-native solutions (e.g., IAM, VPC, security groups, cloud firewalls), implement security controls for cloud infrastructure and containerized environments.
Lead the evaluation, implementation, and configuration of new security technologies to address evolving threats and stay updated on emerging technologies, trends, and best practices in security engineering and tooling.
Develop and maintain secure configurations for operating systems, applications, and networking equipment and Automate security processes using scripting languages (Python, PowerShell) and tools like Terraform or Ansible.
Conduct security assessments and ensure vulnerability management programs are effective, addressing gaps proactively.

Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).
7+ years of experience in security engineering, including designing and managing security tools.
Strong understanding of Threat Modeling Principles
Experience with Security Incident Response & Risk Management
Strong hands-on expertise with SIEM (e.g., Splunk or Sumo logic), EDR (e.g., CrowdStrike, SentinelOne), and vulnerability management tools (e.g., Tenable, Qualys), Wiz, Snyk etc.
Proficiency in securing cloud environments (AWS, Azure, or GCP), including experience with IAM, VPCs, security groups, EKS/ECR and cloud-native security solutions (e.g., AWS Security Hub, Azure Sentinel).
Experience with automation tools IAC and CI/CD: Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD and scripting (Python, PowerShell, or Bash) for integrating and managing security solutions.
Familiarity with DevSecOps practices, container security (e.g., Kubernetes, Docker), and CI/CD pipeline security.
Proven track record in incident response, threat hunting, and forensic investigations.
Certifications such as CISSP, GSEC, AWS Certified Security Specialty, or equivalent.

Flexible work schedules and the ability to work remotely are available for many roles
Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners
Robust time-off plan (21 days of PTO in your first year)
Two paid volunteer days and 11 paid holidays
12 weeks paid parental leave for all new parents
Six weeks paid sabbatical after six years of service
Educational Assistant Program and Clinical Employee Reimbursement Program
401(k) with up to 4% match
Stock options
And much more!

Senior Security Engineer II – Engineering & Tooling

Key skills