Design, build, and maintain internal applications and integrations that enhance the organization’s core cybersecurity operations
Bridge security engineering and software development, focusing on automating compliance, improving risk visibility, and accelerating security workflows through infrastructure-as-code and AI-driven modeling
Work closely with compliance analysts, infrastructure teams, and service owners across the enterprise to develop secure, scalable solutions supporting continuous compliance, risk modeling, and operational visibility
Design and develop internal cybersecurity tools and services to support compliance, visibility and risk modeling functions
Build and maintain integrations between legacy, in-house, and cloud-based systems using APIs and SDKs
Implement and manage IaC frameworks to automate security configuration and auditing workflows
Collaborate with compliance teams to translate audit and control requirements (SOX, PCI, etc.) into code-based solutions and enhancements in existing applications
Contribute to data ingestion and analytics pipelines that improve visibility across cloud and on-prem environments
Develop AI/ML models to assist with automated risk categorization, configuration detection, or control validation
Work with DevOps and Security Engineering to maintain consistent RBAC, IAM, and policy enforcement across multi-cloud and Kubernetes environments
Build, document, and maintain runbooks specific to internal APIs, service architecture, and developed frameworks
Stay up to date on cybersecurity trends, industry standards (ISO, NIST, CIS), and regulatory requirements
Provide mentorship and technical guidance to engineers and analysts, ensuring secure design and operational excellence.

Requirements

Minimum of 3+ years of experience in software development
Experience with modern security tooling, DevSecOps, and AI/ML in cybersecurity
Knowledge of AWS: IAM, RBAC modeling, API and SDK-based resource discovery, Systems Manager (SSM)
Proficiency in Git & GitHub: version control, branching strategies, and CI/CD pipelines
Familiarity with Linux: security models, permissions, and bash scripting
Experience with SQL: relational data modeling, queries, and integration with back-end systems
Proficient in Programming Languages: Python, C#, and/or Ruby
Understanding of Infrastructure as Code: Terraform
Understanding of Databases: user permission models for MSSQL, MySQL, PostgreSQL, Couchbase, and MemSQL
Understanding of Operating Environments: on-premises, cloud, and Kubernetes-based systems
Knowledge of Identity Systems: Active Directory, LDAP, Okta; user lifecycle management and directory integrations
Familiarity with Configuration & Deployment Tools: Helm and Salt
Experience in developing control-based automation and integrating security telemetry into compliance and risk modeling functions.
Relevant security certifications such as OSCP, ISC2 CISSP, AWS Certified Security - Specialty, SANS, CEH, etc. are a major plus.
Bachelor's degree in Computer Science, Information Systems, Software, Electronics Engineering, or comparable field of study, and/or equivalent work experience.

Benefits

A bonus and/or long-term incentive units may be provided as part of the compensation package
Full range of medical, financial, and/or other benefits, dependent on the level and position offered

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills

PythonC#RubySQLTerraformGitGitHubLinuxAI/MLInfrastructure as Code

Soft skills

mentorshiptechnical guidancecollaborationcommunicationproblem-solvingorganizational skillsrisk managementcompliance awarenessoperational excellenceautomation

Certifications

OSCPCISSPAWS Certified Security - SpecialtySANSCEH