MongoDB is seeking a Senior Product Security Engineer to drive cloud security initiatives for MongoDB Atlas and the cloud platforms that power it across AWS, GCP, and Azure.
You'll be a senior individual contributor in the MongoDB Product Security organization, a diverse team responsible for the security of all customer-facing products, including Atlas, self-managed/server, and a broad ecosystem of related services and tools.
Within Product Security, the Cloud Security team focuses specifically on Atlas control plane and data plane environments and the underlying cloud platforms, partnering closely with Atlas engineering, SRE, other security engineering teams, and global security operations to build and defend secure-by-default, large-scale, multi-tenant cloud services.
We are looking to speak to candidates who are based in Dublin for our hybrid working model.
Requirements
~7+ years of experience in application, product, and/or cloud security for large-scale, customer-facing systems, ideally in a multi-cloud or SaaS environment
Strong, hands-on experience with cloud security architecture on at least one major cloud provider (AWS, GCP, or Azure), with familiarity across:
VPC/networking (segmentation, egress controls, private connectivity)
IAM (roles, policies, workload identity, cross-account access)
Keys and secrets (KMS, HSMs, secret management systems)
Container/orchestration security (e.g., Kubernetes, ECS, serverless)
Multi-tenant control planes and blast-radius reduction patterns.
Solid security architecture fundamentals: able to design and review end-to-end systems, reason about threat models and risk trade-offs, and recommend appropriate controls across application, data, and infrastructure layers
Ability to read and reason about code (e.g., Go, Java, or similar languages) and familiarity with IaC (Terraform/CloudFormation), CI/CD, and security automation tooling (e.g., CSPM, IaC scanning, SAST, SCA)
Demonstrated experience leading security reviews and projects in partnership with engineering teams (e.g., threat modeling, design reviews, targeted testing) and turning findings into pragmatic, prioritized remediation work
Excellent written and verbal communication skills; you can explain complex cloud and product security issues in a way that builds trust with engineers, leaders, and, when needed, customers
A strong sense of ownership and follow-through, paired with a collaborative working style–you bring others along, create space for their input, and offer specific, actionable feedback
In this role you will...
Co-own and drive Atlas cloud security initiatives such as control plane hardening, cloud security baselines, identity and access patterns, customer account protections, and data-plane protections for multi-tenant environments
Perform and lead security reviews for Atlas features and platform changes in cloud environments, including architecture review, threat modeling, and targeted testing, with an emphasis on pragmatic, actionable guidance
Design and review cloud architectures across AWS, GCP, and Azure—covering networking, IAM, secrets management, and service-to-service access—and help define secure reference architectures that can be reused by Atlas teams
Embed security into platforms and guardrails by working with platform, SRE, and other security engineering teams to implement policies and automation (e.g., policy-as-code, secure defaults, pre-deployment checks) that make the secure path the easiest path for developers
Use CSPM, infrastructure vulnerability data, and IaC scanning to identify meaningful posture gaps in Atlas environments and drive concrete hardening work with clear ownership, coverage, and success metrics
Partner with Detection & Response, SRE, and other security teams to bring product and cloud context to incidents, threat hunts, and posture investigations, and to design new detections tied to Atlas and its cloud footprint
Influence roadmaps and priorities by translating security risk and customer expectations into well-scoped problem statements, options, and trade-offs that resonate with engineering and product leaders
Mentor and support other engineers (within Product Security and partner teams), contributing to internal documentation, reviews, and training that raise the bar for secure cloud design and implementation
Nice to Haves
Prior experience as a security engineer for a multi-tenant SaaS or cloud platform, particularly in data, database, or infrastructure-as-a-service domains
Hands-on experience with Atlas-like environments: control planes orchestrating resources across multiple cloud providers, with strong isolation and blast-radius containment requirements
Experience improving the signal quality and developer adoption of CSPM, vulnerability management, or IaC scanning in large engineering organizations
Public contributions to the security community (talks, tools, standards, or publications) in cloud or product security
Experience mentoring other security engineers or serving as a bar-raiser in interviews for product/cloud security roles
MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process.
To request an accommodation due to a disability, please inform your recruiter.
MongoDB is an equal opportunities employer.
#J-*****-Ljbffr