Security Engineer [Multiple Positions Available]

About The Position

Requirements

• Master's degree in Computer Engineering, Computer Science, Security Engineering & Architecture, or related field of study plus three (3) years of experience in the job offered or as Security Engineer, Software Development Engineer, Software Engineer, or related occupation. The employer will alternatively accept a Bachelor's degree in Computer Engineering, Computer Science, Security Engineering & Architecture, or related field of study plus five (5) years of experience in the job offered or as Security Engineer, Software Development Engineer, Software Engineer, or related occupation.
• developing software using Java and Python to build RESTful APIs and microservices architectures
• utilizing infrastructure-as-code (IaC) using Terraform or CloudFormation for provisioning and managing infrastructure on AWS
• working with core AWS services including Lambda, API Gateway, SQS or SNS, DynamoDB, Step Functions, S3, CloudWatch, and ElasticSearch or OpenSearch
• building serverless, scalable, and event-driven architectures
• creating and managing CI/CD pipelines for deploying applications to public cloud environments to ensure high availability and automated testing/deployment
• developing UI-driven features and web applications using modern front-end frameworks or libraries such as React, Angular, or AG Grid
• conducting product discovery and market research to identify business opportunities and inform development strategies
• collaborating cross- functionally to define product backlogs, manage Agile sprints, and ensure alignment with stakeholder expectations and business goals
• implementing SLOs (service level objectives), SLIs (service level indicators), and SLAs (service level agreements) to track service performance and reliability
• establishing KPIs (key performance indicators) to measure engineering success
• developing audit-defensible workflows that support regulatory compliance, data governance, and accountability in cloud environment

Responsibilities

• Execute creative security solutions, including design and development of a scalable multi-cloud security and compliance application and technical troubleshooting.
• Define and implement operating principles through automated tasks and run books, establishing of RACI matrices, configuration of SLAs and development of custom workflows to reduce operational toil.
• Oversee the end-to-end governance of Cloud Security Posture Management (CSPM) controls, ensuring alignment with the security framework adopted by the firm.
• Develop secure and high-quality production code, and review and debug code written by others, implementing complex business logic in advanced programming languages.
• Demonstrate strong experience in defining and implementing Infrastructure as Code (IaC), working with CI/CD pipelines, and utilizing associated automation tooling.
• Collaborate with stakeholders such as Governance, Risk, and Compliance (GRC), Cyber Operations, Cloud Site Reliability Engineers (SREs), and business leaders to understand security needs and recommend business modifications for enhanced risk reporting.
• Apply knowledge of industry standards like NIST and GDPR, and secure software development practices such as OWASP Top 10 and threat modeling, to ensure compliance and security in software development processes.
• Develop a product strategy and vision that delivers value to end users, aligning with the organization's goals and objectives.
• Own, maintain, and develop a product backlog that supports the overall strategic roadmap and value proposition, enabling effective development.

Benefits

• comprehensive health care coverage
• on-site health and wellness centers
• a retirement savings plan
• backup childcare
• tuition reimbursement
• mental health support
• financial coaching