Remoote.app

Work from anywhere. Start here.

JobsFree resume builderCompaniesLog in
Apply

Security Engineer

Posted 4 months agoViewed

View full description

💎 Seniority level: Middle, 3 - 5+ years

📍 Location: United States, PST, NOT STATED

💸 Salary: $97,000 - $106,000 per year

🔍 Industry: Cybersecurity

🏢 Company: Bugcrowd👥 501-1000💰 $30,000,000 Series D almost 5 years agoCrowdsourcingPenetration TestingSecurityCyber Security

🗣️ Languages: English

⏳ Experience: 3 - 5+ years

🪄 Skills: AWSPythonBashGitKotlinRubyRuby on RailsJiraGoScripting

Requirements:
  • Bachelor's Degree in a relevant field or commensurate experience
  • 3 - 5+ years of professional experience in a similar role or its equivalent
  • Experience with writing IR plans and operating within an IR practice
  • Working knowledge of Threat Intelligence and its use in creating security controls
  • Familiarity with Pentesting techniques and OWASP Top 10
  • Ability to understand and work with developers to patch vulnerabilities
  • Scripting knowledge in at least one: Bash, Python, JavaScript, Ruby
  • Self-motivated and organized
  • Cloud security experience or holds AWS cloud certifications
  • Experience with Identity and Access Management (IAM) controls
  • Familiarity with git
  • Familiarity with a ticketing system / issue tracking system (e.g.: Jira)
Responsibilities:
  • Aiding within the Incident Response process
  • Threat hunting
  • Developing patches and security controls within Ruby on Rails, Golang, and Kotlin applications
  • Communicating technical knowledge to multiple audiences
  • Significant familiarity with AWS and network security controls
  • Identifying vulnerability root causes
  • Performing basic risk assessments and triaging
  • Educating developers on security best practices
  • Architecting solutions with developers to remediate security concerns
  • Performing basic red team assessments
  • Testing new features within the platform and services
  • Automating security tasks to increase workflow efficiency
  • Mentoring other team members
Apply

Related Jobs

Apply
🔥 Senior Security Engineer
Posted about 3 hours ago

📍 United States

🧭 Full-Time

🔍 Technology

🏢 Company: ButterflyMX👥 251-500💰 $50,000,000 Series D about 3 years agoSmart HomeSecurityReal EstateSoftware

  • 5+ years of security engineering experience building, managing & scaling security operations in a cloud native startup.
  • Experience securing a tech stack that includes SaaS, Mobile, & IoT.
  • Proficiency in deploying security solutions in remote-first organizations with a cloud tech stack for SaaS.
  • AWS Security SME knowledge of securing EC2, S3, Lambda, EKS.
  • Experience with AWS Security Stack: WAF, Inspector, Security Hub, GuardDuty.
  • Knowledge of security overlay solutions: EDR, SIEM, CNAPP/CSPM, DSPM, DLP, IDS/IPS.
  • Extensive experience across multiple security domains: cloud security, data security, incident management, etc.
  • Experience maintaining SOC 2 Type II compliance and implementing data privacy controls.
  • Expertise in DevSecOps practices, including automating security testing in CI/CD pipelines.
  • Incident response management experience and ability to educate on application security vulnerabilities.
  • Continuous improvement mindset and inclination to engage in hands-on work.
  • Design, implement, mature & maintain robust security controls & processes across our technology stack to protect sensitive data & systems.
  • Lead vulnerability management & remediation efforts to improve the security posture & resiliency of ButterflyMX.
  • Extend detection & response capabilities, triaging alerts, investigating, and remediating incidents.
  • Drive security incident response efforts including containment, investigation, recovery, and lessons learned.
  • Ensure compliance with industry standards & best practices such as SOC2, ISO, NIST, GDPR, CCPA.
  • Evaluate & implement new security technologies to enhance security posture.
  • Collaborate with teams to integrate security into the product development lifecycle.
  • Stay updated with security threats and trends.
  • Develop & conduct regular security awareness training for employees.
  • Serve as a point of contact for security-related inquiries.

AWSAWS EKSCybersecurityIoTCI/CDTerraform

Posted about 3 hours ago
Apply
Apply
🔥 Security Engineer II, Cloud Security
Posted 3 days ago

📍 US

🧭 Full-Time

💸 174300.0 - 205000.0 USD per year

🔍 Cloud Security

🏢 Company: HashiCorp👥 1001-5000💰 Secondary Market almost 4 years ago🫂 Last layoff over 1 year agoPrivate CloudDevOpsInformation TechnologyCyber SecuritySoftwareCloud Infrastructure

  • Broad understanding of AWS security fundamentals, including policy evaluation logic.
  • Interest in topics like Building a Data Perimeter on AWS.
  • 3+ years of software development experience, preferably in Go and/or Python.
  • Experience codifying infrastructure and deployment pipelines, preferably using Terraform and GitHub Actions.
  • Strong written and verbal communication skills for articulating security risks.
  • Ability to identify impactful opportunities and outline actionable paths.
  • Understanding and display of HashiCorp principles in work and interactions.
  • Define insightful metrics to guide cloud security posture and progress.
  • Ensure best practices are implemented across a multi-cloud environment.
  • Collaborate with engineering and stakeholders to create secure-by-default environments.
  • Develop tools to advance the cloud security program.

AWSPythonGoTerraform

Posted 3 days ago
Apply
Apply
🔥 Senior Information Security Engineer
Posted 3 days ago

📍 Hungary, Portugal, United States of America

🔍 Password and identity management

  • Background in Computer Science, Information Security, or related field preferred.
  • Strong experience in information security engineering focusing on Edge security solutions.
  • Expert-level knowledge of Akamai products including Kona Site Defender and WAF.
  • Hands-on experience in managing Akamai’s advanced security configurations.
  • Knowledge of industry-standard security frameworks.
  • Proficiency in programming languages like Python, PHP, or C#.
  • Strong problem-solving abilities and collaborative mindset.
  • Excellent written and verbal communication skills in English.
  • Research, identify, and implement security measures for LastPass products.
  • Configure and maintain Akamai security services like WAF and Edge DNS.
  • Analyze, configure, and optimize security rules within Akamai products.
  • Audit Akamai security configurations for policy compliance.
  • Collaborate with teams to share security practices and support DevSecOps.
  • Implement threat detection strategies.
  • Lead incident response efforts and work on future prevention strategies.
  • Communicate security concepts to stakeholders.

PHPPythonCybersecurityC#Compliance

Posted 3 days ago
Apply
Apply
🔥 Senior Application Security Engineer
Posted 6 days ago

📍 United States

🧭 Full-Time

💸 100000.0 - 170000.0 USD per year

🔍 Benefits administration

🏢 Company: bswift

  • 5+ years of experience in application security or DevSecOps, ideally in an agile, cloud-first environment.
  • Hands-on experience with application security testing tools such as SAST, DAST, and IAST.
  • Deep understanding of OWASP Top 10 and its application in the software development lifecycle.
  • Experience with React/JS, Microsoft .NET stacks hosted in AWS.
  • Experience integrating security testing into CI/CD.
  • Strong knowledge of cloud-native security in AWS and securing containerized applications.
  • Experience designing security training programs.
  • Proven ability to work cross-functionally on security initiatives.
  • Design and implement an application security program aligned with best practices and OWASP Top 10.
  • Integrate security testing across the development lifecycle with automation.
  • Collaborate with engineering and DevOps to enhance CI/CD security.
  • Cultivate a security-first culture within development teams through training and collaboration.
  • Launch a Security Ninja Champion Program.
  • Establish application security metrics for continuous improvement.
  • Evaluate current application security and identify areas for strategic improvement.
  • Provide secure design recommendations and manage penetration testing.

AWSKubernetesMicrosoft .NETOAuthReact.jsCI/CD

Posted 6 days ago
Apply
Apply
🔥 Security Engineer - Cloud & Endpoint Security
Posted 12 days ago

📍 United States

🧭 Contract

🔍 Cybersecurity

🏢 Company: MWResource, Inc.

  • Bachelor’s Degree in a related field or equivalent work experience.
  • 3+ years of experience in cybersecurity, IT, or related roles.
  • 1+ years of experience deploying or managing application allowlisting or reverse proxy solutions.
  • 1+ years of experience with security frameworks such as NIST, MITRE, ISO 27001, or similar frameworks.
  • Hands-on experience with Windows and Linux environments, including command-line configurations.
  • Experience with Airlock or similar allowlisting tools (preferred).
  • Familiarity with scripting/automation tools (Python, PowerShell, or Bash) for configuration and reporting (preferred).
  • Industry certifications such as Sec+, CCSP, or relevant GIAC certifications (preferred).
  • Strong analytical abilities, including process analysis and development, problem-solving, and root cause analysis.
  • Lead the deployment and configuration of Airlock solution, ensuring proper integration with existing infrastructure.
  • Define and implement allowlisting policies to enhance application security and access control.
  • Collaborate with the incident response team to refine alerting and logging capabilities provided by Airlock.
  • Assist in the development of organizational security strategies that align with business objectives and industry best practices.
  • Identify opportunities to automate the configuration and reporting processes for Airlock.
  • Monitor Airlock performance and security logs to detect and respond to threats or issues.
  • Stay updated with the latest cybersecurity threats, trends, and technologies, incorporating them into Airlock configurations.
  • Support the development and maintenance of incident response plans and secure access protocols.

PythonBashCybersecurityLinux

Posted 12 days ago
Apply
Apply
🔥 Senior Security Engineer (SIEM/Cribl) - Northeast region (Remote)
Posted 13 days ago

📍 U.S. based only

🧭 Full-Time

🔍 Information Security

🏢 Company: GuidePoint Security

  • 3+ years of architecture, implementation, and troubleshooting experience with SIEM/SOAR solutions.
  • Proficiency in developing log ingestion and aggregation strategies.
  • Expertise in developing security-focused content for SIEM platforms.
  • Familiarity with key security events on common IT platforms.
  • Deep proficiency in Windows, Mac, and Linux operating systems.
  • General networking and security troubleshooting skills.
  • Scripting and development skills in BASH, Perl, Python, or Java.
  • Strong knowledge of regular expressions.
  • Ability to prioritize and deliver on projects autonomously.
  • Architecture, implementation, and troubleshooting of SIEM/SOAR solutions.
  • Development of log ingestion and aggregation strategies.
  • Creation of complex threat detection logic and operational dashboards.
  • Optimization of resources to identify and mitigate risks.

PythonBashCiscoLinuxTerraformNetworkingAnsible

Posted 13 days ago
Apply
Apply
🔥 Product Security Engineer II
Posted 13 days ago

📍 USA

🧭 Full-Time

💸 104000.0 - 166000.0 USD per year

🔍 Restaurant technology

🏢 Company: Toast👥 51-100Location Based ServicesInternetInformation Technology

  • Strong grasp of common web vulnerabilities and how to mitigate them.
  • Proficiency in at least one programming language (Kotlin, Java, Python, Go, C#, etc.).
  • Experience with security tools like static/dynamic analysis scanners and web proxies.
  • Solid understanding of cloud application architecture, network security, and secure coding practices.
  • Excellent communication skills - can explain complex security concepts to both technical and non-technical audiences.
  • Identify, triage, and provide remediation guidance for application vulnerabilities.
  • Improve developer tooling and adoption to build a more robust SSDLC.
  • Assist incident response teams with application security expertise and tools.
  • Think like an attacker to identify weaknesses in application architecture.
  • Collaborate with developers to bake security into products.
  • Research emerging security trends and technologies.
  • Contribute to Toast's Security Community of Practice.

PythonJavaKotlinC#Go

Posted 13 days ago
Apply
Apply
🔥 Security Engineer
Posted 13 days ago

📍 North America, Europe

💸 140000.0 - 160000.0 USD per year

🔍 Ecommerce

🏢 Company: Bolt👥 1001-5000💰 $236,903,031 Series F about 2 years ago🫂 Last layoff almost 2 years agoFood DeliveryCar SharingTransportationMobile AppsInsurTech

  • Bachelor’s Degree in Computer Science or equivalent work experience.
  • 4+ years of experience in system and/or network security engineering.
  • Scripting and coding skills in languages like Perl, Python, Ruby, or shell scripting.
  • Proven ability to design and deliver enterprise-level security solutions.
  • Knowledge of network and web related protocols including TCP/IP, UDP, IPSEC, and HTTP/S.
  • Ability to identify security risks and develop mitigation plans.
  • Experience managing GNU/Linux systems.
  • Excellent written and verbal communication skills.
  • Experience designing solutions in AWS or other cloud environments.
  • Experience deploying changes as Infrastructure as Code (IAC) using Terraform or equivalent.
  • Craft and build security infrastructure to support Bolt’s products.
  • Use understanding of authentication protocols and security principles to enhance tools.
  • Communicate security concepts and advocate for customer trust.
  • Consult on risk assessment, threat modeling, and vulnerability remediation.
  • Support Incident Response Team through tooling and data analysis.
  • Perform design reviews and risk assessments on application features.
  • Evaluate or create new technologies to resolve complex security issues.

AWSPythonCybersecurityLinuxTerraform

Posted 13 days ago
Apply
Apply
🔥 Staff Security Engineer - Cryptography & Key Management
Posted 17 days ago

📍 U.S.

💸 167100.0 - 244200.0 USD per year

🔍 Financial technology

🏢 Company: Marqeta👥 1001-5000💰 Post-IPO Equity over 3 years ago🫂 Last layoff over 1 year agoCryptocurrencyDebit CardsCredit CardsPaymentsFinTech

  • A minimum of 8 years related experience with a Bachelor’s degree; or 5 years and a Master’s degree; or a PhD with 3 years’ experience.
  • 5+ years of professional experience within data security including encryption, tokenization, PKI implementation and key management.
  • 4+ years of in-depth experience working with payment and/or general-purpose HSMs, cloud KMSs.
  • 4+ years of practical experience in encryption algorithms (e.g., AES, RSA), protocols (e.g., TLS/SSL), key management, secrets management.
  • 3+ years with cloud computing architectures and Infrastructure as Code (e.g., Terraform).
  • 2+ years working experience with security regulatory/compliance requirements including PCI, NIST and GDPR.
  • 2+ years experience with data security, classification and posture management tooling.
  • Strong collaboration and communication skills.
  • Problem-solving skills to navigate complexity and security risks.
  • Lead the development of enterprise-level data security architecture and strategies.
  • Define encryption and secrets management standards, ensuring alignment with product development and enterprise needs.
  • Collaborate closely with security, technology, and privacy teams to implement and maintain standards.
  • Deploy, configure, and manage cloud-based Key Management Services (KMS) and Hardware Security Modules (HSMs).
  • Participate in Proof of Concept (POC) testing for new cryptographic products and services.
  • Serve as a key custodian, overseeing the full lifecycle of sensitive key material.
  • Maintain and update data security tooling such as DSPM and DLP solutions.
  • Ensure compliance with evolving security standards like PCI-DSS and FIPS.
  • Provide operational support, including on-call rotation and documenting critical procedures.

AWSCloud ComputingCybersecurityTerraform

Posted 17 days ago
Apply
Apply
🔥 Cyber Security Engineer
Posted 19 days ago

📍 United States

🔍 Life Sciences

🏢 Company: Apprentice👥 10-50

  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field or equivalent experience.
  • 5-9 years of experience in cybersecurity including SaaS and cloud security.
  • Experience with tools like DataDog, Okta, AWS, Terraform, and Python.
  • Strong knowledge of security frameworks and standards (ISO 27001, NIST, CIS, SOC 2, GDPR).
  • Hands-on experience with incident response, threat hunting, and malware analysis.
  • Familiarity with DevSecOps practices and tools (e.g., Jenkins, Terraform, Kubernetes).
  • Strong scripting and programming skills (Python, Bash, PowerShell).
  • Relevant certifications such as CISSP, CISM, CEH, or AWS Certified Security – Specialty.
  • Experience with Zero Trust security models and secure software development practices.
  • Develop and implement security measures for cloud-based SaaS infrastructure, applications, and data.
  • Monitor and respond to security incidents, investigating breaches and leading response efforts.
  • Conduct regular security assessments, vulnerability scans, and recommend remediation strategies.
  • Collaborate with engineering teams to ensure secure design and architecture of SaaS applications.
  • Ensure compliance with security standards such as ISO 27001, SOC 2, and GDPR.
  • Develop and enforce cloud security best practices including IAM and network security.
  • Identify security risks and maintain risk management documentation.
  • Implement security automation solutions for vulnerability patching and compliance checks.
  • Provide security training and awareness programs to employees.

AWSPythonBashCybersecurityKubernetesTerraformComplianceRisk Management

Posted 19 days ago
Apply