Key skills
Cloud securityPython scriptingVulnerability managementKubernetes securitySecurity toolingGitHubTerraformThreat modelingWeb app securityPythonAINext.jsGCPKubernetesCI/CDCloud Security
About this role
Promise modernizes how government agencies and utilities support people in financial difficulty, and they are seeking a Founding Security Engineer to set strategic direction and implement improvements across their security surface area. The role involves building detection systems, enhancing application security, and fostering a strong security culture within the organization.
Responsibilities:
- Build and run detection: write, tune, and respond to Python-based rules to catch anomalous activity and improve signal-to-noise
- Partner with our Infrastructure team to secure GCP + cloud networking and improve Kubernetes security
- Strengthen application security and help make pragmatic upgrades (e.g., Next.js, dependencies)
- Improve security through code + automation (guardrails, checks, remediation workflows)
- Own vulnerability management end-to-end: identify, prioritize, and drive fixes to closure in coordination with codeowners
- Help build a strong security culture through clear guidance, training, and partnership with engineers
- Develop technical and policy frameworks to guide ambitious and safe AI adoption company-wide
- Collaborate closely with engineering on secure product design and technical implementation
Requirements:
- 5–8 years of experience, with meaningful time focusing on security
- Strong understanding of cloud security + networking (GCP preferred)
- Comfortable reading code and shipping fixes; Python scripting strongly preferred
- Experience operating security tooling (endpoint/EDR, MDM, audit logging/alerting, CSPM)
- Familiarity with GitHub, Terraform, and CI/CD security fundamentals
- Desire to enable innovation and development
- WAFs / web app security controls
- Threat modeling experience
- Deep Kubernetes hardening/runtime experience