Skip to content
Faro HealthFaro HealthSan Diego, CA

Senior Security Engineer

Hands-on Senior Security Engineer protecting cloud infrastructure, applications, and customer data. Own detection/response, vulnerability management, appsec, and cloud posture for a fast-growing life sciences startup.

145k – 180k/yr
Hybrid6+ YOESecurity Engineering

About the role

Duties and Responsibilities

  • Operate and improve Faro's security detection and response capabilities, including monitoring, triage, and investigation of alerts from SIEM, CSPM, and MDR
  • Manage Faro's vulnerability management program, including triaging findings from infrastructure scans, SAST, DAST, and SCA tools, tracking remediation against established SLAs and coordinating with engineering on fixes
  • Support and improve application security practices within Faro's SDLC, including security reviews of new features, integration of automated security testing into CI/CD pipelines, and guidance to developers on secure coding practices
  • Maintain and improve Faro's cloud security posture across multiple cloud providers including configuration reviews, hardening, and alignment with CIS benchmarks
  • Coordinate and support third-party penetration testing engagements, including scoping, logistics, findings triage, and remediation tracking
  • Contribute to the security of Faro's AI-powered products, including evaluating risks related to prompt injection, data leakage between tenants, model output safety, and retrieval-augmented generation (RAG) integrity
  • Support incident response activities in alignment with Faro's NIST 800-61-based incident response plan, including detection, analysis, containment, eradication, and recovery
  • Contribute to security evidence collection and technical documentation to support SOC 2 Type II, ISO 9001 and ISO 27001/42001 audit cycles
  • Evaluate and improve security tooling, automation, and processes to scale Faro's security capabilities as the company grows

Requirements

  • 6+ years of experience in security engineering, cloud security, or application security roles
  • 3+ years of hands-on experience with cloud security services (Azure preferred; AWS or GCP acceptable with willingness to ramp on Azure)
  • Experience with vulnerability management tools and processes, including familiarity with CVSS scoring and risk-based prioritization
  • Experience with application security testing tools (SAST, DAST, SCA) and secure SDLC practices
  • Experience with endpoint detection and response platforms
  • Comfortable working in a small team environment where you will own outcomes end-to-end
  • Experience in a startup or high-growth environment preferred
  • Experience with compliance frameworks such as SOC 2, ISO 27001, and NIST 800-53
  • Scripting ability in Python, PowerShell, or Bash
  • Bachelors Degree in Information Technology or related field, Masters Degree Preferred

Preferred / Bonus Qualifications

  • Experience with AI/ML security concepts, including prompt injection, adversarial testing, and LLM-specific attack vectors
  • Experience with infrastructure as code security (Terraform, ARM/Bicep templates, etc.)
  • Relevant certifications such as AZ-500, OSCP, GIAC, CISSP or similar
  • Experience in healthcare, life sciences, or other regulated industries

Skills and Competencies

  • Strong analytical and problem-solving skills with the ability to investigate complex security events
  • Ability to communicate security risks and recommendations clearly to both technical and non-technical audiences
  • Self-motivated and able to work independently with minimal supervision
  • Collaborative mindset, comfortable working directly with engineering, product, and DevOps teams
  • Willingness to learn new technologies and adapt as Faro's product and infrastructure evolve

Benefits

  • Health Care Plan (Medical, Dental & Vision)
  • Retirement Plan (401k)
  • Life Insurance (Basic)
  • Short Term and Long Term Disability
  • Paid Time Off (Flexible Vacation Policy; Paid Sick & Public Holidays Observed)
  • Training & Development Reimbursement
  • Hybrid Work Environment
  • Peer-to-peer bonus program
  • Company/department outings and events
  • Stock Option Plan
  • Office On-Premises Amenities; gym, restaurant tenant discount, Padel Nine

Skills

AzureAWSGCPSIEMCspmMdrSASTDASTScaPythonPowerShellBashSOC 2ISO 27001Nist 800-53
Sift

Senior Security Engineer

SiftSeattle, WA +1

Senior Security Engineer designing and operating security controls across cloud infrastructure, applications, and CI/CD pipelines. Requires 5+ years in security engineering, cloud experience, and strong automation skills.

145k – 200k/yr
Hybrid5+ YOESecurity Engineering
Pindrop

Senior Security Engineer

PindropUnited States

Senior Security Engineer on the Red Team performing offensive security, adversarial testing, and red team operations against GenAI/LLM systems, deepfake defenses, cloud infrastructure, and SaaS products. Requires 3+ years of hands-on pen testing/red team experience plus demonstrable GenAI attack experience.

140k – 165k/yr
Remote3+ YOESecurity Engineering
Ontic

Senior AI Security Engineer

OnticUnited States

Lead development of AI security controls, governance frameworks, and risk management practices. Conduct assessments, implement guardrails, and ensure responsible AI deployment across the organization.

140k – 160k/yr
Remote5+ YOESecurity Engineering
Govsignals

Compliance Operations Lead

GovsignalsNew York, NY

Leads end-to-end compliance program for FedRAMP High, IL5, CMMC Level 2, and SOC 2 at a high-growth govtech startup. Automates evidence collection, partners with engineering on secure-by-design practices, and supports sales with customer trust narratives. Requires 3+ years in startup compliance with high-impact authorizations.

140k – 190k/yr
Hybrid3+ YOESecurity Engineering
Cerebras Systems

Distributed Systems Cluster Security Software – Engineering Lead

Cerebras SystemsSunnyvale, CA

Leads engineering for security in large-scale AI clusters with hundreds of wafer-scale accelerators and thousands of servers. Requires 3+ years leadership in distributed systems security, strong Kubernetes and networking expertise, and building secure multi-tenant solutions.

140k – 240k/yr
On-siteSecurity Engineering