Senior Security Engineer (GRC)

Responsibilities

• Leverage extensive experience in Cloud Security to design, implement, and improve secure cloud-native architectures and CI/CD pipelines.
• Apply deep expertise in cloud infrastructure security to proactively identify risks, enforce best practices, and harden systems across the entire technology stack.
• Automate security controls and educate developers for future-proofing against vulnerabilities.
• Play an active part in designing and evolving the company’s overall information security governance and compliance program through policies, standards, procedures, and awareness.
• Work closely with engineering, infrastructure, and product teams to make sure controls fit both business objectives and technical realities.

Requirements

• 5+ years of experience in a security engineering role.
• Mastery of cloud infrastructure, particularly AWS.
• Prior experience focusing on infrastructure security and Kubernetes.
• Familiarity with secret management tools like Vault or KMS.
• Strong understanding of core information security concepts and major regulatory frameworks/standards (e.g. SOC2, ISO 27001, NIST CSF).
• Experience conducting security design reviews, threat modelling, and security testing.
• Excellent written and verbal communication skills, with the ability to present complex technical details as clear, risk-focused recommendations.

Perks

• Remote-first global workforce + NY office
• Annual company offsite + team onsites
• Professional reimbursement program (facilitates industry conference attendance, certifications, and more)
• Medical, dental & vision coverage (US + some other countries)
• 401k retirement plan + company match (US only)
• Wellness stipend
• Home office set up / ergonomic equipment program