Security Engineer

We are looking for a Security Engineer to join our Security Engineering team. This is a generalist, "all-rounder" role - you will work across all security domains, while leading and owning a specific security domain based on your expertise.You will define and drive security programs, design and implement security controls, and make architecture-level decisions across your domain. You will work closely with R&D, DevOps, and engineering teams, embedding security into how we build and operate at scale, and help shape a security-first culture across the organization.What You'll Work On:Define and maintain security standards, policies, and controls across all security domains - including SSDLC processes and secure development standards across R&DWork hands-on alongside R&D, engineering, and IT teams to implement security controls, drive adoption, and ensure executionLead and contribute to large-scale security projects with real organizational impactEvaluate, integrate, and operate industry-leading security tooling and platforms - including emerging startups with cutting-edge technologiesBuild automation, tools, internal processes, Terraform modules, GitHub Actions, and AI agents for engineering teams and for your own teamConduct security assessments and threat modeling.Lead containment, investigation, and forensic analysis during security incidentsIdentify security gaps and misconfigurations across cloud environments, infrastructure, and internal processes - and drive remediation through scalable, long-term solutionsContribute across all security domains - cloud, application, AI security, detection engineering, IT, and moreRequirements: 5 years in security engineering with strong hands-on expertise across both application and cloud/infrastructure securityHands-on experience with SAST, DAST, SCA, WAF, threat modeling, secure code review, and API securityExperience defining and driving secure development lifecycle programs (SSDLC), including embedding security gates into CI/CD pipelines and GitOps workflowsExperience securing cloud-native environments (AWS preferred, GCP/Azure a plus), including containers, Kubernetes workloads, and microservicesHands-on experience with Terraform, CSPM/CNAPP tooling, and misconfiguration remediationSolid understanding of networking fundamentals (TCP/IP, DNS, TLS, network segmentation) with practical experience implementing zero trust architectures and ZTNAExperience with Okta, Google Workspace, SSO/SAML/OIDC, and least-privilege access modelsFamiliarity with industry-leading security platforms and tooling across MDM, EDR, SIEM, CSPM/CNAPP, ASPM, WAF, DAST/SAST, ZTNA, and identity security platformsProficiency in scripting and automation - Python, JavaScript, Bash, or similarBroad generalist mindset with the ability to operate across multiple security domains and connect the dots between themThis position is open to all candidates.