Senior Platform Security Engineer - HP IQ

About The Position

Requirements

• 5+ years of experience as a platform security engineer or equivalent.
• Strong command of security principles applied to production systems, with demonstrated experience designing and building controls at scale.
• Experience building and securing production workloads in at least one public cloud (AWS, Azure, or GCP), with working knowledge of the relevant Well-Architected Framework security pillars.
• Proven experience securing Kubernetes, container runtimes, and software supply chain components.
• Strong Infrastructure-as-Code experience (Terraform or equivalent), applied to hardening infrastructure configurations, enforcing least-privilege baselines, and eliminating configuration drift across environments.
• Proficiency in at least one modern language (Go, Python, TypeScript, or Java), applied to building internal security tooling and automation.
• Ability to communicate security architecture decisions and tradeoffs clearly to both engineering teams and leadership.

Nice To Haves

• Hands-on experience designing and building identity and network security components in infrastructure, including IAM policies, service mesh configurations, network segmentation, and zero-trust controls.
• Proven ability to architect and integrate security controls across CI/CD pipelines, owning the DevSecOps toolchain from design through enforcement.
• Experience translating and implementing compliance framework requirements (e.g., SOC 2, ISO 27001, or NIST) into engineering deliverables.
• Experience securing AI products or edge-connected systems at scale.
• Experience building or contributing to a security engineering function within a product-focused organization.
• Track record of driving cross-functional security outcomes without direct authority, including influencing engineering and platform roadmaps toward stronger security posture.

Responsibilities

• Design, implement, and scale security controls across cloud, infrastructure, and hardware layers.
• Build automated security controls, policy enforcement, and detection capabilities into CI/CD pipelines and platform tooling.
• Define security standards and reference architectures that serve as the engineering baseline across infrastructure and services.
• Drive adoption of secure-by-default principles across engineering teams, influencing system design and platform planning.
• Perform threat modeling and security architecture reviews that directly shape product and platform decisions.
• Translate compliance requirements (SOC 2, ISO 27001, NIST) into technical security controls, owning the engineering implementation end-to-end.
• Own the vulnerability management lifecycle end-to-end, driving root cause analysis, defining remediation patterns, and engineering hardening solutions into platform infrastructure.

Benefits

• Health insurance
• Dental insurance
• Vision insurance
• Long term/short term disability insurance
• Employee assistance program
• Flexible spending account
• Life insurance
• Generous time off policies, including; 4-12 weeks fully paid parental leave based on tenure
• 11 paid holidays
• Additional flexible paid vacation and sick leave