Security Software Engineer, Infrastructure Security (Staff or Senior)

About The Position

Requirements

• 5+ years of experience in Software Engineering, Site Reliability Engineering, or similar roles, preferably with relevant security work.
• Proficiency with at least one programming language (Java, Golang, Rust, Python, or C/C++) and experience with infrastructure-as-code tools (Terraform) to automate security configurations and processes.
• A deep understanding of Linux and networking concepts, including low-level fundamentals, and how they work together in complex systems.
• Experience building security-related features or platforms such as runtime monitoring, CSPM, or vulnerability management.
• Experience with a cloud provider (AWS, GCP, or Azure) and their security best practices and building blocks.
• Hands-on experience with Kubernetes and its security ecosystem (e.g. RBAC, OPA/Gatekeeper, Kyverno, eBPF, Falco, Tetragon).
• A systems mindset: you think about failure modes, performance, observability, and operability alongside security and correctness.
• Strong communication skills and the ability to explain complex security concepts and tradeoffs to both technical and non-technical stakeholders.

Responsibilities

• Design and build core security primitives and services that protect MongoDB Atlas compute, networking, and identity across AWS, Azure, and GCP.
• Build secure-by-default infrastructure using Linux security mechanisms (AppArmor, SELinux, seccomp, cgroups), Kubernetes, and eBPF to enforce runtime policies and gain deep visibility into systems behaviour.
• Develop APIs, automation, and tooling that manage security posture at scale (CSPM, vulnerability management, workload identity) and provide monitoring, logging, and alerting pipelines that integrate with our tooling (Grafana, Splunk, Victoria Metrics.)
• Integrate security into our CI/CD and infrastructure-as-code workflows (Terraform) so that security controls are versioned, reviewed, and deployed just like any other code.
• Lead complex projects end‑to-end, from problem discovery and design docs to implementation, rollout, and long‑term ownership.
• Collaborate with SRE, platform and product engineering teams to define secure architectures for new infrastructure and services.

Benefits

• equity
• participation in the employee stock purchase program
• flexible paid time off
• 20 weeks fully-paid gender-neutral parental leave
• fertility and adoption assistance
• 401(k) plan
• mental health counseling
• access to transgender-inclusive health insurance coverage
• health benefits offerings