Staff Security Engineer - US (Remote)

5+ years of experience in security engineering for production SaaS systems Strong understanding of cloud security (AWS preferred) Strong understanding of modern DevSecOps practices Experience designing or integrating automated security pipelines and observability systems Solid understanding of web application security (OWASP Top 10, API security, encryption standards) Hands-on experience with IaC (Terraform, Pulumi, CloudFormation) Hands-on experience with containerized environments (Docker, Kubernetes) Experience building or securing systems involving large language models (OpenAI, Anthropic, or similar) Excellent collaboration and communication skills

Design and implement automated systems to monitor, detect, and mitigate security risks Integrate continuous security testing into CI/CD pipelines Build and maintain automated alerting and remediation workflows Architect and implement robust authentication and authorization frameworks Harden cloud environments (AWS, GCP) and enforce least-privilege IAM Conduct architecture reviews, threat modeling, and code audits Define secure coding standards and best practices Develop security frameworks and tooling for LLM vulnerabilities Implement guardrails for AI systems Design safe orchestration between models, APIs, and user data Own and improve incident detection, response, and recovery processes Collaborate on internal audits and compliance efforts Advise on emerging threats, vulnerabilities, and best practices