Senior Security Operations Engineer

About The Position

Requirements

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 5+ years of experience in a security engineering or operations role, preferably in a cloud-based Linux environment.
• Deep hands-on experience with AWS and Snowflake environments.
• Proficiency in CI/CD pipelines and release processes, with experience operating SAST tooling such as CodeQL or SonarQube.
• Strong working knowledge of security frameworks and standards including NIST, CIS, and ISO.
• Experience with security tools including Tenable, SentinelOne, Sumo Logic, and vulnerability scanners.
• Hands-on experience with infrastructure automation and configuration management tools such as Terraform.
• Strong scripting skills in Go, Python, shell, or comparable languages.
• 3+ years of experience with container technologies and orchestration platforms (e.g., Docker, Kubernetes).
• Demonstrated ability to partner with Product, Architects, and Principal Engineers to embed security by design across the organization.
• Excellent problem-solving skills with the ability to perform well under pressure and ambiguity.
• Strong communication and interpersonal skills.

Nice To Haves

• Relevant certifications such as CISSP, CCSP, or AWS Certified Security Specialty are a plus.

Responsibilities

• Assess vulnerabilities across systems and infrastructure — prioritizing those that are immediately exploitable or present on critical assets — and drive both immediate fixes and long-term mitigation strategies.
• Tune and configure security tooling (Tenable, SentinelOne, Sumo Logic) to improve detection accuracy, reduce false positives, and maintain a high signal-to-noise ratio.
• Implement and maintain security controls including access controls, network segmentation, and security monitoring infrastructure.
• Configure and maintain automated compliance tests in Vanta, mapping controls to SOC 2 and other applicable frameworks to support continuous audit readiness.
• Develop and maintain security policies and procedures, ensuring alignment with industry and regulatory standards.
• Design and execute cybersecurity strategies that protect critical applications, data, and systems — adapting to evolving threats while remaining aligned with business objectives.
• Collaborate with Development and DevOps teams to embed security best practices throughout the software development lifecycle and infrastructure delivery pipeline.
• Participate in incident response activities, including investigating alerts, triaging events, and driving resolution of security incidents.
• Automate security processes using scripting languages and infrastructure tooling to reduce manual toil and improve response times.
• Stay current on emerging threats, vulnerabilities, and technologies, and translate findings into actionable improvements.
• Mentor and guide engineers across the organization, fostering a culture of continuous learning and security-first thinking.
• Participate in a rotational on-call schedule to ensure 24/7 coverage for critical security incidents.

Benefits

• Discretionary and flexible paid time off
• In addition to standard US holidays off, VideoAmp employees also partake in Spring, Summer and Winter breaks
• Comprehensive medical, dental, and vision benefits for you and your dependents—including multiple options fully covered by VideoAmp
• Unlimited financial wellness sessions with Origin financial advisors
• 401k Plan with matching
• HSA & FSA
• Commuter Benefits
• Cell Phone Reimbursement
• Paid Maternity and Parental Leave for All Family Additions