Partner with the lead security engineer to identify risk, build controls, and drive security initiatives across the organization
Perform security assessments, penetration testing, and code reviews to find and remediate vulnerabilities across our applications and infrastructure
Integrate security tooling and controls into CI/CD pipelines and software development workflows, shifting security left without slowing teams down
Help design and enforce cloud security architecture across our AWS environment, including IAM, WAF, network segmentation, encryption, and runtime threat detection
Develop and continuously improve security monitoring, logging, and alerting capabilities to support incident detection and response
Participate in the security on-call rotation and assist with incident response and investigation as needed
Contribute to compliance efforts across SOC 2, GDPR, CMMC/NIST, etc., including audit support and policy development
Help secure AI/ML pipelines, model training infrastructure, and model artifacts including weights and deployment code
Build and maintain internal security tooling and automation to scale our program without scaling headcount
Partner with engineering, infrastructure, and IT to embed security practices directly into development and delivery workflows

Requirements

Bachelor's or Master's in Computer Science, cybersecurity, or equivalent experience
8+ years in security, with hands-on experience across multiple domains rather than a single specialty
Proven experience with cloud infrastructure security on AWS, including multi-account design, IAM, network segmentation, and runtime threat detection
Solid understanding of Linux, networking, security monitoring, intrusion detection and response, authentication and access control, and security protocols
Proven experience with web application security assessments and penetration testing
Experience with Terraform or other IaC/configuration management tools
Familiarity with compliance frameworks like SOC 2, GDPR, and CMMC, including audit support
Experience building internal security tooling
Familiarity with securing AI/ML pipelines, model training infrastructure, or model artifacts (weights, serving infrastructure, or deployment code)
Strong communication skills and the ability to drive security initiatives cross-functionally without direct authority.

Benefits

Full health, dental, and vision benefits
Extremely flexible PTO and parental leave policy
Office closed the week of Christmas and New Years.
VISA support where applicable

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security assessmentspenetration testingcode reviewscloud security architectureAWSIAMnetwork segmentationencryptionsecurity monitoringintrusion detection

Soft Skills

strong communication skillscross-functional collaborationincident responsepolicy development

Certifications

Bachelor's in Computer ScienceMaster's in Computer Sciencecybersecurity certification