Security Engineer (Remote)
About The Position
As a Security Engineer, you’ll join our growing platform team in building, scaling, and fine-tuning the systems that keep our platform secure and compliant. You’ll help architect the security backbone of our platform, focusing on compliance, risk reduction, security automation, and continuous improvement. While your primary responsibility will be security and governance, coding and problem-solving across the stack are core parts of the role. As a fast-growing startup, we all roll up our sleeves where needed, so flexibility and a collaborative, security-first mindset are key.
Requirements
- 5+ years of experience in Security Engineering, AppSec, GRC, or similar roles.
- Proven experience designing and implementing security controls for SOC2, ISO 27001, or similar compliance frameworks.
- Deep expertise in Role-Based Access Controls (RBAC), Identity and Access Management (IAM), and secrets management.
- Strong experience with container security and orchestration (Docker, ECS, Kubernetes a plus).
- Expertise with secure CI/CD pipelines and modern security automation tools.
- Coding and scripting proficiency (TypeScript, Python, Go, Bash, etc.).
- Hands-on experience with cloud security (GCP preferred) and securing distributed systems.
- Familiarity with monitoring, observability, and incident management best practices.
- Comfortable working in a fast-paced, compliance-focused startup environment, where adaptability and security ownership are essential.
Responsibilities
- Architect, design, and implement secure, compliant, scalable, and cost-efficient infrastructure solutions to protect a rapidly growing product.
- Lead the execution and maintenance of our SOC2 compliance program and other security-related certifications.
- Design, implement, and audit Role-Based Access Controls (RBAC), Identity and Access Management (IAM), and secrets management systems.
- Design and implement security best practices for backend, frontend services, APIs, and data pipelines.
- Own security features end-to-end, from architecture and implementation to testing and production deployment.
- Develop and maintain security automation, Infrastructure as Code, and secure CI/CD pipelines.
- Implement and manage security monitoring, threat detection, and vulnerability management across our cloud infrastructure.
- Establish and enforce security best practices for authentication, authorization, logging, and alerting.
- Lead and participate in incident response, troubleshooting complex security issues and driving postmortem learning and improvements.
- Collaborate across engineering teams to embed security into the software development lifecycle and balance compliance, velocity, and cost.
Benefits
- Competitive salary and meaningful equity in a high-growth company
- Comprehensive medical, dental, and vision coverage
- Flexible PTO and paid family leave
- Home office & equipment stipend
- Hybrid NYC office culture (3 days in-office/week) with direct access to leadership
- In-Office Lunch & Dinner Provided
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
