Security Engineer

About The Position

Requirements

• Team player who effectively collaborates across teams and adapts communication style to both technical and non-technical audiences.
• Self-motivated with a growth mindset, applying structured thinking to diagnose problems rather than jumping to solutions.
• Solid organizational skills to manage defined workstreams, coordinate dependencies, and proactively flag risks or blockers to delivery.
• Ability to independently author clear technical documentation and identify gaps in existing processes.
• Ability to handle sensitive and confidential information.
• Working knowledge across multiple security domains, including cloud environments (IAM, network security, posture alignment) and automation via Terraform, CloudFormation, or similar.
• Understanding of frameworks such as NIST 800-53, SOC 2, CIS Benchmarks, and Zero Trust Network Architecture.
• Familiarity with DevSecOps pipelines, containerization (Docker, Kubernetes), and CI/CD security tooling.
• Experience tuning rules to reduce false positives and maintaining cloud-native logging and monitoring frameworks.
• Proven experience (typically 2-4 years) in cybersecurity engineering or infrastructure/cloud security roles.

Nice To Haves

• B.S. degree in cybersecurity, computer science or related technical field is a plus.
• Relevant foundational or intermediate certifications are a plus (e.g., Security+, AWS Certified Security - Specialty, or equivalent).

Responsibilities

• Apply security architecture principles to defined problems, evaluating design tradeoffs considering security, usability, and operational impact to support secure product innovation.
• Build and maintain automation workflows within the team's toolset, integrating with CI/CD pipelines, logging platforms, and cloud security architecture.
• Independently author runbooks, architecture diagrams, and technical specifications for secure cloud deployments, container hardening, and access management.
• Engage constructively with engineering and product partners to embed security into SDLC and production systems (DevSecOps, IaC scanning, SAST/DAST/SCA, etc.).
• Apply NIST control families and CIA principles to evaluate control coverage, identify gaps within your scope, and apply risk prioritization frameworks consistently.
• Resolve routine security problems independently and assist in incident response, escalating complex issues with relevant context and developing detections for known threat patterns (e.g., MITRE ATT&CK).

Benefits

• Medical, Dental, Vision, Life, and AD&D insurance
• Parental Leave
• Flexible Time Off
• An additional 10 holidays of paid time off per calendar year
• 401k matching (immediately vested)
• Employee Stock Purchase Plan
• Short- and Long-term disability sick leave
• Flexible Spending Accounts
• Health Savings Accounts
• Employee Assistance Program
• Additional programs - Employee Referral, Internal Recognition, and Wellness
• Free TriMet transit pass (Beaverton Office)
• Competitive salary and benefits package
• Work on impactful projects in a cutting-edge environment
• Collaborative and supportive team culture
• Opportunity to make a real difference in the trucking industry
• Employee Resource Groups