Senior Security Engineer

About The Position

Requirements

• 5+ years of security engineering experience, including meaningful handson work in PKI, cryptography infrastructure, or closely related security engineering domains.
• Strong practical experience managing production PKI environments, including: CA hierarchy certificate lifecycle across devices and services certificate-based authentication troubleshooting trust, issuance, and renewal failures at scale.
• Experience with NAC-related certificate authentication and technologies such as ClearPass, NDES, SCEP, or similar systems.
• Experience contributing to security architecture reviews: evaluating security controls, advising on secure design decisions, and helping engineering teams build systems that are secure by default.
• Familiarity with authentication protocols (SAML, OAuth 2.0, OIDC, LDAP) as they relate to certificate-based authentication and PKI integration.
• Proficiency in Python, Go, or similar languages for automation, tooling, and workflow improvement.
• Ability to make sound security design decisions and work directly with engineers to turn those decisions into practical implementations.
• Strong communication skills and the ability to collaborate effectively across teams, functions, and time zones.

Nice To Haves

• Experience contributing to security architecture documentation, design reviews, or security control frameworks.
• Familiarity with relevant security and compliance frameworks such as SOC 2, ISO 27001, NIST, or privacy/security control implementation in regulated environments.
• Certifications such as CISSP or CCSP.

Responsibilities

• Own and mature PKI and cryptography infrastructure across enterprise and cloud environments.
• Define and improve standards, guardrails, and reference patterns for certificate issuance, renewal, revocation, and trust management.
• Support and enhance certificate-based authentication systems, including network/device-related use cases, and code-authentication.
• Build automation and operational tooling to improve reliability, visibility, and lifecycle management.
• Partner with engineering and infrastructure teams early in the design process to help implement secure, practical solutions.
• Contribute to security architecture reviews and design decisions across cloud, infrastructure, and platform initiatives — helping engineering teams build secure systems from the ground up.
• Contribute to security design reviews for initiatives related to PKI, cryptography, and adjacent security infrastructure.
• Troubleshoot PKI and cryptography related production issues, perform root cause analysis, and help drive durable remediation.
• Mentor other security engineers through design feedback, implementation guidance, and operational best practices.
• Partner with audit and GRC teams to ensure cryptography- and identity related controls are implemented and evidenced in a sustainable way.

Benefits

• Bonus and RSU eligible
• Healthcare (medical, dental, vision, prescription drugs)
• Health Savings Account with Employer Funding
• Flexible Spending Accounts (Healthcare and Dependent care)
• Company-Paid Basic Life/AD&D insurance
• Company-Paid Short-Term and Long-Term Disability
• Voluntary Benefit Offerings (Voluntary Life/AD&D, Hospital Indemnity, Critical Illness, and Accident)
• Employee Assistance Program
• Business Travel Accident Insurance
• 401(k) Savings Plan with discretionary company match and access to a financial advisor
• Vacation, paid holidays, floating holiday and sick days
• Employee discounts
• Free weekly catered lunch
• Dog-friendly office (available at select locations)
• Free gym access (available at select locations)
• Free swag giveaways
• Annual Holiday Party
• Invitations to pop-ups and other company events
• Complimentary daily office snacks and beverages