Senior Security Engineer
We are seeking a highly skilled and experienced Senior Security Engineer to join our team.
This key role will drive security initiatives for our product portfolio. You will lead the design, build, and scale of cloud/data centre security automation from first principles.
In this position, you will bring deep hands-on experience with tools such as Tenable, Wiz, Veracode, Splunk and apply your expertise in scripting, infrastructure-as-code (IaC), and cloud-native security practices to improve posture, visibility, and response.
You will collaborate with Engineering, DevOps, and GRC teams to integrate security controls into the SDLC and cloud deployments.
Key Responsibilities:
* Design and build automated cloud security controls using Terraform, CI/CD, and scripting (Python, Go)
* Develop and scale infrastructure-as-code (IaC) security validation pipelines
* Integrate and manage platform such as Tenable, Wiz, Veracode, Splunk etc. to orchestrate and automate security scans across infrastructure and application layers
* Architect, build, and maintain security data pipelines to ingest, normalize, and analyze telemetry at scale
* Build and support tools for asset inventory management, EDR deployment at scale, and compliance-driven discovery
* Develop custom logic for automating remediation and enrichment of scan results
Requirements:
* Extensive experience in Security Engineering, Cloud Security, or DevSecOps roles
* Thorough understanding of AWS, Azure, or GCP security models, IAM, and threat surfaces
* Proven ability to build cloud-native security automation using Terraform (IaC), CI/CD tools and pipelines, Python/Go/Bash
* Compliance knowledge with a grasp of NIST 800-53, and other regulatory frameworks
* Experience building Enterprise-scale Asset management systems or platforms, EDR tooling deployment at scale, Security data pipelines and analytics frameworks
* Excellent communication and collaboration skills with the ability to drive cross-functional initiatives
Preferred Experience:
* Experience with SIEMs, SOAR, or threat intel platforms
* Experience with container security (e.g., Docker, Kubernetes, Falco, Trivy)
* Familiarity with Secret Management (Vault, AWS Secrets Manager)
* Exposure to managing Network IPS/IDS systems (such as Stamus/Suricata)
* Exposure to compliance programs such as FedRAMP, SOC 2, or PCI-DSS
* Certifications: CISSP, CSSLP, GWAPT, or equivalent are a plus