Security Engineer

About The Position

Requirements

• Bachelor's or Master's in Cyber Security, Computer Science, Engineering, IT, or related field.
• 5+ years of experience in a security engineering role.
• Strong understanding of security principles, practices, and technologies.
• Experience with threat modeling, risk assessment, and security testing.
• Knowledge of security standards and frameworks (e.g., ISO 27001, NIST, OWASP).
• Excellent communication and collaboration skills.
• Ability to work independently and as part of a team.

Responsibilities

• Cloud Infrastructure Security: Design, audit, test, and implement cloud security controls.
• Define cloud security requirements and standards for product development.
• Collaborate with cross-functional teams to integrate security into product roadmaps.
• Risk Assessment and Management: Conduct threat modeling and risk assessments to identify potential security vulnerabilities.
• Prioritize and manage security risks, ensuring timely mitigation.
• Implement security controls in our products and educate developers on best practices to minimize risks.
• Incident Response: Triage, investigate, and help remediate security incidents.
• Help develop incident response runbooks and detection rules.
• Participate in incident retrospectives to improve future security outcomes.
• Security Testing and Validation: Develop and execute security testing plans, including penetration testing and vulnerability assessments.
• Collaborate with QA teams to ensure security testing is integrated into the development lifecycle.
• Validate security controls and ensure compliance with security standards.
• Secure Software Development Lifecycle: Design and implement controls to secure the Auger’s software supply chain.
• Build security into CI/CD pipelines.
• Help developers triage and remediate static analysis findings.
• Implement dynamic analysis tooling and automated triage pipelines.