Security Engineer
OpenRouter
full-time
Posted on:
Location Type: Remote
Location: United States
Visit company websiteExplore more
About the role
- Deploy and operate vulnerability scanning across our cloud infrastructure. Triage findings and drive remediation with engineering teams.
- Lead security assessments for internal and customer security needs (e.g. SOC 2 Type II, ISO 27001, HIPAA audits).
- Maintain vulnerability and remediation documentation for auditors.
- Act as a liaison between product, engineering, compliance, and GTM to guide and prioritize the right security investments.
- Perform penetration tests, tabletop exercises, DR testing, and incident response.
- Manage endpoint security tooling as we scale; conduct audit log reviews and maintain visibility across our stack.
Requirements
- 3-5+ years in security engineering or operations.
- Deep knowledge of cloud security and expertise in operating in a cloud-hosted environment.
- Comfortable in compliance-heavy environments (SOC 2, ISO 27001, HIPAA).
- Strong experience with SIEM platforms (Splunk, Elastic, Panther) and vulnerability scanners (e.g. Qualys, Tenable, Rapid7).
- AI-forward with hands-on experience adopting, leveraging, and integrating AI tools.
- Startup mindset; you thrive building programs from the ground up and not just inheriting existing playbooks.
- Pragmatic and business-oriented, able to balance security rigor and business speed.
- Ability to communicate risk and technical ideas clearly to both technical and non-technical audiences.
Benefits
- 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
vulnerability scanningpenetration testingincident responsecloud securityaudit log reviewsremediation documentationsecurity assessmentsendpoint securitycomplianceAI integration
Soft Skills
communicationleadershippragmaticbusiness-orientedcollaborationproblem-solvingorganizationaladaptabilityrisk assessmentprogram building
Certifications
SOC 2 Type IIISO 27001HIPAA