StaffSecurityEngineer

## Accountabilities Define and evolve the platform security strategy, aligning engineering practices with business and compliance requirements. Design and implement secure architectures for cloud-native systems, ensuring resilience, scalability, and strong security posture. Build security standards and guardrails as code, including Infrastructure as Code (Terraform), CI/CD pipelines, and containerized environments. Develop security automation tools, reusable frameworks, and internal platforms to embed security across engineering workflows. Implement and improve secure CI/CD pipelines, integrating security testing practices such as SAST, DAST, and SCA. Conduct threat modeling and security design reviews for critical systems, APIs, and platform features. Collaborate with engineering teams to integrate security into development lifecycles using shift-left and security-by-default principles. Participate in incident response processes and post-mortem analysis to strengthen system resilience. Partner with SRE, product, and engineering teams to balance security, performance, and usability in architectural decisions. Mentor engineers and act as a technical reference for secure development practices and DevSecOps adoption. Requirements 6+ years of experience in software engineering and information security, with a focus on platform or infrastructure security. Strong experience with cloud platforms such as AWS, GCP, or Azure and their security services. Proficiency in Python or Go for building automation, tooling, and security platforms (Java is a plus). Solid expertise in Infrastructure as Code (Terraform) and modern cloud infrastructure practices. Hands-on experience implementing DevSecOps practices and integrating security into CI/CD pipelines. Strong knowledge of container security and orchestration platforms such as Kubernetes. Ability to design and solve complex systemic security problems in distributed environments. Experience with security architecture, microservices,