FICO

Lead Security Engineer

FICO

full-time

Posted on:

Location Type: Remote

Location: Mexico

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AWSAzureCloudFirewallsGoogle Cloud PlatformJenkinsKubernetesPythonTCP/IPTerraform

About the role

  • Build and automate security solutions using Terraform; CI/CD pipelines, and policy-as-code frameworks.
  • Engineer and implement Secure Service Edge (SSE) capabilities, including internet access and endpoint connectivity using platforms such as Zscaler (ZIA and ZCC).
  • Own application edge security solutions including WAF, Bot Protection, and CDN capabilities using platforms such as Imperva.
  • Provide firewall governance and oversight using tools like Netography and Firemon Implement and operate CSPM and workload protection using platforms such as Wiz.
  • Architect scalable security solutions on AWS, integrating controls into development workflows via GitHub /bitbucket and CI/CD platforms.
  • Drive adoption of “Security as Code,” developing reusable modules, automation playbooks, and self-service deployment patterns.
  • Collaborate with DevOps, Platform Engineering, and Application Security teams to embed boundary protection into every layer of the software delivery lifecycle.
  • Integrate security tools with SIEM/SOAR platforms for centralized monitoring and response
  • Contribute to security architecture decisions, threat modeling, and risk-based prioritization
  • Mentor junior engineers and help raise the overall engineering bar within the team.

Requirements

  • Strong hands-on experience securing cloud (AWS, Azure, or GCP) and on-premise datacenter environments
  • Advanced proficiency in Python, with experience building automation frameworks, APIs, and CLI-based tooling.
  • Proficiency with Infrastructure-as-Code tools such as Terraform, Jenkins with strong understanding of GitHub Actions and GitOps workflows.
  • Experience integrating security controls into CI/CD pipelines and modern cloud-native workflows.
  • Foundational Network Security skills — firewalls, segmentation, routing, TCP/IP fundamentals, and secure access patterns.
  • Prior experience in implementing Zscaler and Imperva WAF solutions preferred.
  • Knowledge on Container (Kubernetes Cluster) Security, AWS Services (IAM, VPC, S3 bucket, lambda, Security Group).
  • Ability to think in systems, design for scale, and balance security with developer and business speed.
  • Experience using AI assisted coding tools like Claude Code to improve development speed, code quality, and automation outcomes.
  • Exposure to SEIM, logging, and observability platforms for security telemetry
  • Strong documentation skills and the ability to clearly communicate complex technical concepts.
Benefits
  • An inclusive culture strongly reflecting our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others.
  • The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences.
  • Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so.
  • An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
TerraformCI/CDSecure Service Edge (SSE)ZscalerImpervaCSPMAWSPythonInfrastructure-as-CodeNetwork Security
Soft Skills
mentoringcollaborationcommunicationsystem thinkingdesign for scale