Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Federato

Senior Security Engineer

Federato

. Contribute to our application security program.

Posted 5/7/2026full-timeRemote • 🏈 Anywhere in North AmericaSenior💰 $160,000 - $180,000 per yearWebsite

Tech Stack

Tools & technologies
AWSCloudGoogle Cloud PlatformJavaScriptKafkaKubernetesMicroservicesNode.jsPythonTerraform

About the role

Key responsibilities & impact
  • Contribute to our application security program. Work with our SAST, DAST, and SCA tooling, triage and prioritize vulnerabilities, and partner with engineering teams to drive remediation. Participate in threat modeling and secure design reviews on new products and services.
  • Share incident response on-call. Investigate, contain, and resolve security incidents alongside the rest of the team. Help refine our runbooks, detection coverage, and post-incident process.
  • Help harden our cloud and Kubernetes environment. Contribute to security posture across GCP and GKE: IAM and least-privilege, secrets management, container and supply chain security, and IaC guardrails (Terraform).
  • Build detections and security automation. Engineer high-signal detections from cloud, identity, and application telemetry. Automate the toil of vuln triage, access reviews, SaaS posture, questionnaire workflows so the team scales.
  • Streamline customer security work. Help respond to customer security questionnaires and audits, and build internal tooling and a knowledge base so this scales as deal volume grows.
  • Strengthen business continuity and DR. Help assess threats to continuity, contribute to DR plans, and run real exercises against them.
  • Help drive a security culture across engineering. Pair on developer training, secure-coding guidance, and standards work to make the secure path the easy path.

Requirements

What you’ll need
  • 5+ years of hands-on experience managing cloud infrastructure and automation.
  • Experience in achieving SOC2 Type II, ISO 27001, or similar certifications
  • Experience with Node.js or Python for backend services in a microservices architecture.
  • 3+ years of experience with cloud providers, preferably Google Cloud Platform (GCP).
  • Solid experience with cloud security on GCP or AWS, including IAM, Kubernetes, and IaC.
  • Knowledge of asynchronous processing, message queues (e.g., Kafka, Pub/Sub), and event-driven architecture for backend applications.
  • Experience focused on the internal engineer team success

Benefits

Comp & perks
  • Total compensation package includes stock options, benefits, and additional perks.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
application securitySASTDASTSCATerraformNode.jsPythoncloud securityKubernetesasynchronous processing
Soft Skills
incident responseteam collaborationcommunicationtrainingproblem-solvingprocess improvementcustomer engagementsecurity culture promotionremediationthreat assessment
Certifications
SOC2 Type IIISO 27001