PermitFlow

Security Engineer

PermitFlow

full-time

Posted on:

Location Type: Hybrid

Location: New York CityNew YorkUnited States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $175,000 - $250,000 per year

Tech Stack

CloudDistributed SystemsDockerGoGoogle Cloud PlatformKubernetesPythonTypeScript

About the role

  • Architect, design, and implement secure, compliant, scalable, and cost-efficient infrastructure solutions to protect a rapidly growing product.
  • Lead the execution and maintenance of our SOC2 compliance program and other security-related certifications.
  • Design, implement, and audit Role-Based Access Controls (RBAC), Identity and Access Management (IAM), and secrets management systems.
  • Design and implement security best practices for backend, frontend services, APIs, and data pipelines.
  • Own security features end-to-end, from architecture and implementation to testing and production deployment.
  • Develop and maintain security automation, Infrastructure as Code, and secure CI/CD pipelines.
  • Implement and manage security monitoring, threat detection, and vulnerability management across our cloud infrastructure.
  • Establish and enforce security best practices for authentication, authorization, logging, and alerting.
  • Lead and participate in incident response, troubleshooting complex security issues and driving postmortem learning and improvements.
  • Collaborate across engineering teams to embed security into the software development lifecycle and balance compliance, velocity, and cost.

Requirements

  • 5+ years of experience in Security Engineering, AppSec, GRC, or similar roles.
  • Proven experience designing and implementing security controls for SOC2, ISO 27001, or similar compliance frameworks.
  • Deep expertise in Role-Based Access Controls (RBAC), Identity and Access Management (IAM), and secrets management.
  • Strong experience with container security and orchestration (Docker, ECS, Kubernetes a plus).
  • Expertise with secure CI/CD pipelines and modern security automation tools.
  • Coding and scripting proficiency (TypeScript, Python, Go, Bash, etc.).
  • Hands-on experience with cloud security (GCP preferred) and securing distributed systems.
  • Familiarity with monitoring, observability, and incident management best practices.
  • Comfortable working in a fast-paced, compliance-focused startup environment, where adaptability and security ownership are essential.
Benefits
  • Competitive salary and meaningful equity in a high-growth company
  • Comprehensive medical, dental, and vision coverage
  • Flexible PTO and paid family leave
  • Home office & equipment stipend
  • Hybrid NYC office culture (3 days in-office/week) with direct access to leadership
  • In-Office Lunch & Dinner Provided
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Security EngineeringApplication Security (AppSec)Governance, Risk, and Compliance (GRC)Role-Based Access Controls (RBAC)Identity and Access Management (IAM)Secrets ManagementContainer SecuritySecure CI/CD PipelinesCoding (TypeScript, Python, Go, Bash)Cloud Security
Soft Skills
LeadershipCollaborationAdaptabilityProblem SolvingIncident Response
Certifications
SOC2ISO 27001