Senior Software Security Engineer

About The Position

Requirements

• 6+ years of experience in Software Security, Product Security, or DevSecOps
• 2+ years in a technical leadership or mentorship role
• Deep, hands-on expertise in Kubernetes security and cloud-native systems
• Strong experience securing Linux, containers, and cloud platforms (AWS, GCP, or Azure)
• Proven track record managing real-world security incidents in production environments
• Strong programming/scripting skills (Go, Python, Bash, or similar)
• Solid understanding of compliance frameworks (FIPS, CIS, STIG) and their practical application
• Hands-on experience with image hardening and secure system configurations
• Experience driving penetration testing programs and managing external vendors

Nice To Haves

• Experience building or scaling DevSecOps programs in a startup environment
• Familiarity with tools such as Falco, Tenable, Elastic, Trivy
• Knowledge of service meshes, network policies, and runtime security
• Strong background in threat modeling and secure system design
• Relevant certifications (CKS, CISSP, CCSP, GSEC, etc.)

Responsibilities

• Design, implement, and operate security controls for Kubernetes-based production platforms
• Harden containers, nodes, and cluster configurations to meet production-grade security standards
• Conduct in-depth security reviews of infrastructure using IaC practices (Terraform, Helm, GitOps)
• Implement and automate security enforcement via scripts, policies, and tooling (e.g., OPA, Kyverno, admission controllers)
• Perform architecture and design reviews with a focus on least privilege, defense-in-depth, and attack surface reduction
• Advance platform security monitoring through logging, alerting, and SIEM integrations
• Build automation (Bash, Python, Go) to scale security operations and reduce manual effort
• Apply AI/ML techniques to detect anomalous behavior, zero-day threats, and advanced attack patterns
• Leverage AI-driven tools for policy generation, risk scoring, and remediation prioritization
• Develop approaches to identify configuration drift and misconfigurations across Kubernetes and IaC environments
• Lead and evolve incident response processes; act as a primary escalation point when needed
• Conduct blameless post-mortems and ensure timely remediation of security gaps
• Own vulnerability management across platform, cloud, and application layers
• Strengthen security posture through baseline standardization and operational readiness
• Oversee secrets management, encryption strategies, and access control policies
• Champion a “Security as Code” mindset and promote shared ownership through Security Champions programs
• Balance startup speed with scalable, long-term security practices
• Partner closely with engineering teams to embed security into development workflows (DevSecOps)
• Collaborate with SRE on platform hardening, incident response, and reliability improvements
• Clearly communicate security risks and posture to technical and executive stakeholders

Benefits

• Compensation: $185,000-$215,000 (Base + Bonus) + Equity, based on experience
• Comprehensive medical, dental, and vision coverage. 100% coverage for employees, 90% for dependents
• Access to a retirement savings plan
• Flexible time off, including 12 paid holidays
• Catered lunches on in-office days
• Mobile/internet reimbursement