Security Engineer

Role Overview

• Develop playbooks and address security-related tasks in our AWS serverless environments.
• Drive improvements in our broader security posture, including application security, endpoint security, access management / just-in-time access, email and web gateways, browser security, and data loss prevention.
• Collaborate with product engineering teams to raise the bar for security, supporting CI/CD pipelines, dependency management, and secure application design reviews.
• Help secure and improve our AWS organization using infrastructure as code (CDK), enforcing security controls, and ensuring strong tenant isolation.
• Continuously assess vulnerabilities and perform regular risk assessments.

Requirements

• 4+ years of experience in engineering, working as a security engineer or in security-adjacent roles
• Familiarity with compliance frameworks such as SOC, HIPAA, and/or HITRUST
• 4+ years working with AWS services, including compliance and governance services like AWS Organizations, AWS CloudTrail, AWS Config, Security Hub, and GuardDuty.
• Proficiency in TypeScript.

Tech Stack

• AWS
• TypeScript

Benefits

• Health insurance
• 401(k) matching
• Flexible work hours
• Paid time off
• Remote work options