Sr. Security Engineer I, Network

About The Position

Requirements

• Extensive Security Engineering Background (5+ years): Proven experience in Information/Network Security engineering, specializing in protecting cloud (AWS preferred) and web-facing environments, and operating in externally audited settings (e.g., PCI DSS, SOC 2).
• Tool & IaC Proficiency: Demonstrated success deploying, tuning, and maintaining a wide array of enterprise security controls (WAF, EDR, Firewalls, SIEM, IDPS, etc.). Expert proficiency with Infrastructure-as-Code (IaC), specifically Terraform, to manage Cloudflare and AWS configurations at scale.
• Deep Network Architecture Knowledge: Strong command of network security architectures, including segmentation, traffic inspection, enterprise firewall management, modern security principles, secure protocols, and relevant threat patterns.
• Communication & Collaboration: Excellent analytical, problem-solving, and communication skills, with the ability to quickly assess complex scenarios, determine effective mitigation strategies, and build strong, collaborative relationships across technical and leadership teams.
• Learning: Strong desire to continuously learn, adapt, and contribute to a rapidly evolving security program and engineering organization.
• Education: Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical field (or equivalent practical experience).

Nice To Haves

• Security certifications such as AWS Certified Security – Specialty, CISSP, CCSP, or CCSK.
• The ability to systematically investigate and isolate security incidents in a complex environment
• Prior experience in fintech, banking, or other highly regulated industries.
• Background in high-availability SaaS, regulated environments, where zero-downtime operations are critical.
• Ability to support an environment and projects that may require irregular or long working hours, such as to support the team through maintenance windows for planned upgrades and project milestones, and handle escalations of security concerns outside of regular working hours to address urgent situations
• Previous experience supporting and addressing security concerns in a multi-tenant, hosted solution in a cloud-based architecture

Responsibilities

• Security Operational Coverage and Ownership: Serve as the primary escalation resource for Cloudflare issue resolution. Provide operational coverage when issues arise and perform data analytics on the Cloudflare WAF to continuously learn and improve threat detection.
• Cloudflare & Infrastructure-as-Code (IaC): Engineer, optimize, and maintain Cloudflare security solutions (WAF, Bot Management, Traffic Filtering) and implement/manage configurations using Terraform-based IaC for consistency and scale.
• Network Security Governance: Manage and refine enterprise Palo Alto firewall policies, ensuring continuous tuning against emerging threats and aligning rule sets with business requirements.
• Secure Design & Collaboration: Partner with Security Architecture, SRE, and Engineering teams to ensure secure design and implementation of network paths, access patterns, and cloud services, and to provide actionable security requirements.
• Risk Management & Assessments: Conduct ongoing security assessments of network and application controls to identify risks, validate protections, and drive remediation activities with partner teams.
• Subject Matter Expertise (SME): Serve as the SME for Cloudflare WAF, Terraform, and Palo Alto firewall governance, participating in security incidents and contributing to strategic initiatives.
• Enablement & Lifecycle Management: Support the enterprise certificate lifecycle program and promote organizational awareness of network/application security best practices and secure patterns.
• On-Call and Mentoring: Participate in on-call rotations and help train and mentor engineers.

Benefits

• remote-first environment
• unlimited paid time off
• 401(k) with employer match