Key skills
Security Software EngineeringInfrastructure-as-Code (Terraform)Kubernetes SecurityProgramming Languages JavaProgramming Languages GolangProgramming Languages RustProgramming Languages PythonProgramming Languages C/C++Cloud Security AWSCloud Security GCPCloud Security AzureLinux FundamentalsSystems MindsetCommunication SkillsPythonJavaC++CGolangRustAWSAzureGCPTerraformKubernetesMongoDBGrafanaSplunkCI/CDCommunication
About this role
MongoDB is a leading database platform company that empowers customers to innovate rapidly. The Security Software Engineer will design and build scalable security controls for MongoDB Atlas multi-cloud infrastructure, ensuring adherence to high security standards while collaborating with various engineering teams.
Responsibilities:
- Design and build core security primitives and services that protect MongoDB Atlas compute, networking, and identity across AWS, Azure, and GCP
- Build secure-by-default infrastructure using Linux security mechanisms (AppArmor, SELinux, seccomp, cgroups), Kubernetes, and eBPF to enforce runtime policies and gain deep visibility into systems behaviour
- Develop APIs, automation, and tooling that manage security posture at scale (CSPM, vulnerability management, workload identity) and provide monitoring, logging, and alerting pipelines that integrate with our tooling (Grafana, Splunk, Victoria Metrics.)
- Integrate security into our CI/CD and infrastructure-as-code workflows (Terraform) so that security controls are versioned, reviewed, and deployed just like any other code
- Lead complex projects end‑to‑end, from problem discovery and design docs to implementation, rollout, and long‑term ownership
- Collaborate with SRE, platform and product engineering teams to define secure architectures for new infrastructure and services
Requirements:
- 5+ years of experience in Software Engineering, Site Reliability Engineering, or similar roles, preferably with relevant security work
- Proficiency with at least one programming language (Java, Golang, Rust, Python, or C/C++) and experience with infrastructure-as-code tools (Terraform) to automate security configurations and processes
- A deep understanding of Linux and networking concepts, including low-level fundamentals, and how they work together in complex systems
- Experience building security-related features or platforms such as runtime monitoring, CSPM, or vulnerability management
- Experience with a cloud provider (AWS, GCP, or Azure) and their security best practices and building blocks
- Hands-on experience with Kubernetes and its security ecosystem (e.g. RBAC, OPA/Gatekeeper, Kyverno, eBPF, Falco, Tetragon)
- A systems mindset: you think about failure modes, performance, observability, and operability alongside security and correctness
- Strong communication skills and the ability to explain complex security concepts and tradeoffs to both technical and non-technical stakeholders