Security Engineer
Apply on
Availability Status
This job is expected to be in high demand and may close soon. We’ll remove this job ad once it's closed.
Security Engineer
100% Remote US
6 month contract
Job Description:
We're seeking a Security Engineer with a passion for safeguarding our infrastructure, codebase, applications, and compliance posture. In this role, you'll collaborate closely with our engineering team to embed security principles throughout our development lifecycle while driving infrastructure automation, cloud security best practices, and proactive incident response. This position is ideal for someone who enjoys technical implementation, process improvement, and enabling development teams to build with security at the forefront.
Responsibilities
- Design, implement, and maintain secure infrastructure and applications using Infrastructure as Code tools (Terraform, Ansible) and security best practices.
- Champion secure cloud practices within our AWS environment, optimizing architecture for security, reliability, and cost efficiency.
- Proactively identify security vulnerabilities and risks through assessments, code audits, threat modeling, and research on emerging attack vectors.
- Develop and implement technical solutions to remediate security vulnerabilities across our technology stack.
- Analyze and enhance security within our Ruby, React, Rails, Kotlin, and Swift codebases, promoting secure coding standards.
- Integrate and leverage Datadog monitoring for security insights and proactive threat detection.
- Drive incident response processes: identify security improvement measures, respond to incidents, and coordinate response across teams
- Guide product development with a security-first mindset, ensuring new features and initiatives meet security and compliance requirements (e.g., SOC2, HIPAA).
- Automate security improvements to streamline processes and reduce manual effort.
- Stay up-to-date on the latest security trends, tools, and compliance frameworks.
Qualifications
- Proven experience in infrastructure security, application security, and cloud environments (AWS preferred).
- Expertise in Infrastructure as Code (IaC) tools, particularly Terraform and Ansible.
- Strong working knowledge of Ruby, React, Rails, Kotlin, or Swift.
- Solid understanding of security principles, vulnerabilities, attack vectors, and incident response methodologies.
- Experience with compliance frameworks such as HIPAA and SOC2
- Familiarity with Datadog or similar security monitoring solutions.
- Excellent communication and collaboration skills, ability to work effectively with development teams.
Desired Skills
- Security certifications (e.g., CISSP, AWS Security Specialty)
Remarks:
need to have good communication and interpersonal skills
AWS Security Certification or CISSP is preferred