Hampton NorthRemote
Security Automation Engineer
United States of America
Full Time
1 month ago
$170,000 - $190,000 USD
No H1B
Key skills
PythonGoBashAIClaudeAgenticData EngineeringAWSGCPTerraformKubernetesGitHub ActionsServerlessCloudFormationGitGitHubCI/CDSnykOWASPCloud Security
About this role
Hampton North is seeking a Security Automation Engineer to build a new security automation function from the ground up. The role involves designing and implementing autonomous pipelines for vulnerability management, as well as consolidating existing processes to enhance security across the organization.
Responsibilities:
- Design and implement end-to-end vulnerability automation pipelines covering asset discovery, configuration assessment, vulnerability identification, and remediation orchestration without manual ticketing or human-in-the-loop coordination
- Build and maintain agentic AI workflows using Claude Code and MCP-based integrations to automate security engineering tasks including code review for vulnerability patterns, configuration drift detection, and automated triage across scanning tools
- Consolidate and normalize vulnerability data across Snyk SCA, Snyk Code, Snyk IaC, AWS Inspector, and Uptycs into a unified platform that replaces fragmented manual correlation
- Engineer and enhance automated asset discovery and inventory systems maintaining real-time visibility across all infrastructure, services, and endpoints including ephemeral and containerized workloads in ECR
- Develop automated configuration hardening pipelines enforcing CIS Benchmarks and internal security baselines as code, with drift detection and auto-remediation
- Create and maintain Terraform and CloudFormation templates, policy-as-code rules, and automated playbooks that embed security controls directly into GitHub Actions CI/CD pipelines at build time
- Build self-service remediation tooling and agentic triage systems enabling development and infrastructure teams to resolve findings autonomously, reducing MTTR and cross-team dependencies
- Integrate vulnerability data sources including Snyk, AWS Inspector, Uptycs, Rapid7 InsightAppSec, and threat intelligence feeds into unified automation platforms with intelligent prioritization
- Develop metrics, dashboards, and automated reporting against FY2026 KPI targets including MTTR reduction, SLA closure rates, and scanning coverage across live code
- Collaborate with AppSec, Security Engineering, SOC, and SRE to embed vulnerability automation into GitHub Actions pipelines, infrastructure provisioning workflows, and operational runbooks
Requirements:
- 5+ years of hands-on experience in security engineering, DevSecOps, vulnerability management, or infrastructure automation with a strong emphasis on building automated systems
- Demonstrated experience building and shipping production automation pipelines in Python, Go, or Bash
- Experience with Terraform and CloudFormation for infrastructure-as-code in AWS-native environments
- Proven experience in cloud-native environments including Kubernetes, containerized workloads, ECR, serverless architectures, and CI/CD pipeline integration via GitHub Actions
- Hands-on experience with Snyk (SCA, Code, and IaC), AWS Inspector, and AWS security tooling including AWS Config, GuardDuty, and Security Hub
- Experience integrating multiple vulnerability data sources and building normalization pipelines across heterogeneous scanning tools
- Proficiency with AI-assisted development tools including Claude Code or GitHub Copilot, with the ability to design, prompt-engineer, and orchestrate AI agents for security automation workflows — personal and open-source project experience considered alongside professional
- Deep understanding of vulnerability classes including OWASP Top 10, CWE, CVE/CVSS, and EPSS, and modern prioritization frameworks that factor exploitability, asset criticality, and business context
- Familiarity with security data engineering concepts: API and database integration, data normalization, and building automated evidence-collection pipelines for compliance and audit
- Strong software engineering fundamentals: Git, code review, testing, CI/CD, and API design — production-quality code, not just scripts
- Certifications valued but not required: GPYC, GPEN, GXPN, AWS Security Specialty, GCP Professional Cloud Security Engineer, CKS (Certified Kubernetes Security Specialist), HashiCorp Terraform Associate
- Nice to have: experience with MCP (Model Context Protocol) integrations, Uptycs, Rapid7 InsightAppSec, building custom AI tool-use pipelines, or open-source security automation contributions