Senior Security Engineer

Hampton North is seeking multiple Senior Security Engineers to shape and scale their security strategy. This deeply technical role involves writing secure code, automating workflows, and providing technical leadership to guide engineering teams toward more secure systems.

Responsibilities:

• Write production-grade code (TypeScript or Python) to automate security tooling, processes, and detections
• Lead the integration of security tools (SAST, SCA, secrets scanning) into CI/CD pipelines (GitHub Actions, Jenkins, CircleCI, TravisCI, Earthly)
• Secure our AWS cloud infrastructure using tools like SCP, IAM, GuardDuty, Security Hub
• Drive secure architecture for systems including auth, service-to-service communication, and RBAC
• Oversee and continuously improve the vulnerability management program across engineering
• Use observability tools (e.g., SIEM, Scout Suite, Prowler, Cloud Custodian) to proactively surface issues
• Apply risk frameworks (OWASP Top 10, CIS AWS Benchmark, CVSS v3) to assess and prioritize threats
• Mentor engineers and influence security best practices org-wide

Requirements:

• 6+ years in engineering roles focused on security, cloud, or infrastructure
• Strong, current software development skills (comfortable being within production-level code), with a focus on TypeScript
• Experience automating security solutions, not just configuring them
• Deep knowledge of security concepts (threats, vulnerabilities, exploits, TLS, auth, etc.)
• Hands-on experience with AWS security tools (in particular AWS threat modeling), infrastructure as code (Terraform), and containerization (Kubernetes)
• Familiarity with CVSS v3, OWASP Top 10, and common vulnerability management practices
• Proven ability to lead through influence and technical guidance
• TypeScript experience
• Experience with Python, Go, JavaScript, etc