GlobalSource ITRemote
Remote Security Engineer
United States
Full Time
1 day ago
$125,000 - $145,000 USD
H1B Sponsor Likely
Key skills
AIClaudeAgenticAWSVaultIAMEntra IDPrismaAuth0OktaSaaSSDLCCI/CDCommunicationOWASPCloud SecurityWAF
About this role
GlobalSource IT is a high-growth technology company that provides a secure digital vault for consumers and enterprises. They are seeking a dedicated Security Engineer to enhance application security, cloud security, and compliance in a dynamic environment.
Responsibilities:
- Partner directly with engineering to embed security into the SDLC
- Design and implement automated security gates within CI/CD pipelines
- Perform secure code reviews and guide developers on remediation
- Strengthen API security and identify complex, logic-based vulnerabilities
- Implement and tune SAST, SCA, and custom security checks beyond out-of-the-box scanners
- Leverage AI-assisted tools (Copilot, Claude, agentic AI, or similar) to automate code analysis and security reviews
- Own cloud security posture in AWS
- Expand and operationalize CSPM using Wiz (or similar)
- Implement and maintain AWS security services (WAF, GuardDuty, Shield, KMS, CloudTrail, IAM)
- Establish cloud guardrails and baseline configurations
- Secure AWS storage services and encryption layers
- Monitor and triage alerts from cloud and security tooling
- Build automation to improve signal-to-noise and reduce alert fatigue
- Explore AI-driven approaches for log analysis, threat detection, and triage
- Support incident response and coordinate with third-party monitoring providers
- Help secure employee identities and SaaS access
- Work with Microsoft Entra ID and Auth0 to strengthen IAM practices
- Own day-to-day SOC 2 operations in an already certified environment
- Manage controls and evidence using Drata
- Support audits and work directly with auditors
- Perform vendor security assessments
- Maintain security documentation and policies
Requirements:
- 5+ years in Security Engineering, Application Security, Cloud Security, or similar
- Strong hands-on AWS security experience
- Experience building or integrating security into CI/CD pipelines
- Application security background (secure coding, SAST, SCA, OWASP Top 10)
- Experience with CSPM tools (Wiz, Prisma Cloud, Orca, Lacework, etc.)
- IAM experience (Auth0, Microsoft Entra ID, Okta, or similar)
- Exposure to SOC 2 and compliance operations
- Comfortable reading code and understanding how vulnerabilities manifest
- Strong communication skills and collaborative mindset
- Experience using AI-assisted or agentic tools for security workflows
- AWS Security or Solutions Architect certification
- Container and microservices security experience
- DevSecOps background
- Experience securing APIs at scale