Skip to content
OktaOktaSan Francisco, CA

Staff Security Engineer

Staff Security Engineer embedded in TDI to build centralized security posture analytics, automate issue tracking and remediation, and drive AI-powered risk management across AWS, SaaS apps, and enterprise systems.

134k – 185k
On-site10+ YOESecurity Engineering

About the role

Security Posture Management

  • Up-level Security Posture Management program to handle issues identified by security tooling across the ecosystem.
  • Leverage dashboards and visualization tools to showcase vulnerability and issue management progress and status.
  • Manage Security Posture Management program, including integrating data ingestion pipelines, coding logic to prioritize vulnerability fixes, supporting teams remediating issues from tools (ISPM, DSPM, Qualys, etc.), and developing automated systems at scale.
  • Configure and operationalize tools such as Snyk, Semgrep, and Qualys to expand scanning coverage for all TDI assets.
  • Collaborate with teams to troubleshoot and remediate findings; provide technical mentorship to developers and admins.
  • Develop and maintain metrics, reporting, and executive visibility based on findings from ISPM/SSPM, Snyk, Semgrep, Qualys, Cyera, and other security platforms to drive ownership, accountability, prioritization, and measurable risk reduction.
  • Partner with Security and GRC to communicate risk posture and remediation status.

Secure Development & DevSecOps Enablement

  • Partner with product and engineering teams to advise on secure coding, build pipelines, and deployment best practices.
  • Support and enforce ProdSec SDL adoption across business units, standardizing design reviews and requirements gathering.
  • Implement secrets rotation automation and best practices for secrets management across TDI systems.
  • Lead “shift left” security efforts to build security into the SDLC.

Baseline Image & Environment Security

  • Collaborate with SRE to manage update pipelines and enforce compliance with baseline standards.
  • Conduct light Security Architecture Reviews (SARs) for lower environments to confirm proper controls and data handling.

Automation, AI Development & Continuous Improvement

  • Develop agentic automation to scale security posture scanning, reporting, issue remediation, and patch validation.
  • Architect E2E automation flows and system design for an AI agent and its subagents (e.g., remediation agent, security posture management triage agent).
  • Identify and close gaps across CSPM, CI/CD pipeline security, and endpoint hardening.
  • Provide technical guidance for integrating security into business and productivity platforms (Salesforce, ERP, Google Workspace, Slack, Zoom).

Requirements

  • 10+ years of experience in Security Engineering, DevSecOps, Infrastructure Security, or SaaS apps within a SaaS or enterprise environment.
  • Hands-on technical expertise in scanning, patching, and remediation of issues across cloud and SaaS ecosystems.
  • Experience deploying and managing Snyk, Semgrep, and Qualys tools.
  • Strong knowledge of AWS security practices, SRE principles, and securing business technology stacks (Salesforce, ERP, Google, Slack, Zoom).
  • Proven ability to coach, mentor, and collaborate with development teams to improve remediation velocity.
  • Practical understanding of secure SDLC/PDLC, supply chain security, and secrets management.
  • Experience building security tools/applications and automated tools.
  • Proficient with visualization/BI tools to create dashboards and provide reporting to leadership and stakeholders.
  • Experience driving remediation across issues raised by posture management solutions.
  • Excellent troubleshooting and communication skills with a proactive, solution-oriented mindset.

Skills

SnykSemgrepQualysAWSDevSecOpsCspmCI/CDIspmSspmCyera
Shield AI

Staff Cross Domain Solution Engineer

Shield AIDallas, TX +1

Lead the design, integration, and sustainment of secure Cross Domain Solutions enabling data sharing across Top Secret and classified networks. Requires 7+ years experience, deep knowledge of networking, hypervisors, security engineering, and active Top Secret/SCI clearance.

130k – 200k
On-site7+ YOESecurity Engineering
Cribl

Staff Security Operations Engineer

CriblUnited States

Lead security operations and threat detection engineering for a remote-first telemetry platform company. Design detection logic, manage incidents, and optimize SIEM/EDR tooling.

128k – 200k
Remote7+ YOESecurity Engineering
Shield AI

Staff Engineer, Systems Safety (R4823)

Shield AISan Diego, CA

Leads safety requirements derivation, hazard analysis, and verification for safety-critical airborne software systems, ensuring compliance with DO-178C and related standards. Collaborates across engineering teams to integrate safety into architecture, code, and testing for airworthiness certification.

140k – 210k
On-site5+ YOESecurity Engineering
Kraken

Staff Security Architect

KrakenUnited States

Design and review security architectures for Kraken's crypto products, conduct assessments, and provide hands-on security consulting across blockchain, infrastructure, and AI projects.

127k – 254k
RemoteSecurity Engineering
Okta

Staff Product Security Engineer

OktaBellevue, WA +4

Staff-level product security engineer leading security reviews, threat modeling, penetration testing, and LLM/AI security assessments for Okta's identity platform. Requires deep manual security expertise and strong communication skills.

141k – 248k
Hybrid7+ YOESecurity Engineering