This is a fully remote position, open to applicants in United States.

• Take charge of configuring, tuning, and managing our SIEM solution.

• Conduct architecture reviews, code assessments, and infrastructure configuration evaluations.

• Sustain and enhance a vulnerability management CI/CD pipeline within our container/application delivery ecosystem.

• Collaborate with development and infrastructure teams to uphold secure coding practices and remediation approaches.

• Develop and maintain frameworks and tools for enterprise security.

• Contribute significantly to incident response and forensic investigation efforts.

• Keep abreast of the latest threats and offer clear, direct guidance to development teams.

• Proficient in one or more programming languages (e.g., Ruby, Java, Python, C#, Node.js).

• Skilled in managing SIEM solutions with an emphasis on comprehensive and efficient alerting that minimizes "noise."

• Extensive knowledge of Docker and Kubernetes, with practical experience in automated container vulnerability management.

• Expertise in SAST, DAST, and IAST tools, capable of conducting manual validation testing to confirm findings.

• In-depth understanding of the OWASP Top 10, Mitre Top 25, and secure coding principles.

• Ability to analyze complex and ambiguous situations to identify root causes and provide insightful input on challenging security issues.

• Proven track record of establishing credibility with peers through clear communication and a commitment to mentoring others.

• Experience with cloud security concepts and compliance frameworks such as SOC 2 and PCI.

• Competitive base salary linked to role and experience, with potential for bonuses, commissions, and equity.

• Explore our complete list at engine.com/culture.

Senior Security Engineer

People also viewed