Security Engineer

Security Engineer
Remote
June 5, 2025
Full Time
Application ends: September 5, 2025

Apply for this job

Email *

Job Description

We’re looking for a Security Engineer who doesn’t just respond to alerts, but actively hunts for threats, designs proactive defenses, and builds tooling that scales security across a fast-growing environment. You’ll be joining a lean but high-impact team tasked with hardening infrastructure, securing developer workflows, and integrating security controls across production environments. You should be comfortable designing systems-level defenses and have a strong point of view on what real security engineering looks like at scale.

This is not a compliance or checkbox security role. You will work closely with SREs, developers, and platform engineers to design systems that resist compromise, investigate edge-case behaviors in cloud infrastructure, and own initiatives that make security invisible—but effective.

Key Responsibilities

  • Design, implement, and maintain security controls across AWS/GCP infrastructure (IAM policies, VPC/network segmentation, key management).
  • Own end-to-end threat modeling for new services and changes to production infrastructure.
  • Build internal tools or scripts to automate detection and remediation of misconfigurations or anomalies in infrastructure.
  • Lead red/blue team exercises and own incident response workflows across engineering.
  • Evaluate third-party libraries and services for integration security and supply chain risk.
  • Partner with engineering teams to embed security into CI/CD pipelines and container deployment workflows.
  • Perform deep dives into security incidents, including root cause analysis and retrospective design reviews.
  • Maintain and evolve our secrets management strategy (e.g., HashiCorp Vault, KMS integrations).
  • Track and respond to 0-day vulnerabilities across cloud services and critical dependencies.

Qualifications

Must-Have

  • 4+ years of hands-on experience in security engineering, ideally at high-growth technology companies.
  • Deep knowledge of cloud infrastructure security (AWS, GCP), including IAM, networking, and monitoring tools.
  • Strong experience with at least one scripting language (Python, Go, or Bash).
  • Demonstrated ability to identify, exploit, and remediate security weaknesses in production systems.
  • Prior experience conducting or supporting incident response efforts.
  • Familiarity with container security (Docker, Kubernetes) and modern CI/CD environments.
  • Ability to read code and identify potential vulnerabilities in backend services or infrastructure tooling.
  • Experience writing custom detection logic for SIEM or monitoring pipelines.
  • Strong understanding of modern attack surfaces including SSRF, privilege escalation in cloud IAM, lateral movement, and service misconfiguration.

Nice-to-Have

  • Experience implementing Zero Trust architectures in a production environment.
  • Exposure to bug bounty programs (as researcher or maintainer).
  • Familiarity with eBPF, OSQuery, or other host-level observability tools.
  • Contributions to open-source security tooling or research.
  • Security certifications (e.g., OSCP, GIAC) are not required but appreciated if backed by practical experience.

Are you interested in this position?

Apply by clicking on the “Apply Now” button below!

#GraphicDesignJobsOnline#WebDesignRemoteJobs #FreelanceGraphicDesigner #WorkFromHomeDesignJobs #OnlineWebDesignWork #RemoteDesignOpportunities #HireGraphicDesigners #DigitalDesignCareers#Dynamicbrandguru

Related Jobs