Partner with a growth-stage technology company to advance their security program across cloud infrastructure, application security, and compliance. Lead threat modeling exercises, conduct secure code reviews, and manage vulnerability intake and remediation workflows. Contribute to the development of AI/LLM security policies and support incident response efforts.
Key Highlights
Key Responsibilities
Technical Skills Required
Benefits & Perks
Nice to Have
Job Description
We're partnering with a well-funded, growth-stage technology company to place a Security Engineer who will own and advance their security program across cloud infrastructure, application security, and compliance. This is a hands-on individual contributor role with broad scope and real influence over how security gets built.
Compensation: $145,000–$165,000k
Logistics: 100% remote in the US
What You'll be Doing: You'll be embedded across the engineering org, working directly with development teams to build security into the SDLC from the ground up. Day-to-day, that means leading threat modeling exercises, conducting secure code reviews, managing vulnerability intake and remediation workflows, and running the company's bug bounty and external pen testing programs.
Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
You'll be responsible for integrating security tooling into CI/CD pipelines and hardening cloud environments across AWS, Azure, GCP, and OCI. You'll also contribute to the development of AI/LLM security policies as the company continues to scale its use of emerging technologies, and support incident response efforts when needed.
The company maintains FedRAMP, ISO 27001, and HITRUST certifications—so you'll be operating in a compliance-forward environment where your work directly supports audit readiness and customer trust.
What's Required of You:
- Hands-on AppSec experience: secure code review, SAST/DAST tooling, dependency management, and working knowledge of OWASP Top 10
- Cloud security depth across at least two of: AWS, Azure, GCP, OCI—with an understanding of shared responsibility models, IAM, network segmentation, and cloud-native security services
- Infrastructure as Code fluency—Terraform or equivalent—with the ability to build and review security controls as part of automated pipelines
- Scripting and automation in Python for security tooling, triage workflows, or custom integrations
- Experience managing CVE lifecycle and vulnerability management programs end-to-end, from identification through validated remediation
- Familiarity with bug bounty program operations and coordinating external pen tests—scoping, triaging findings, and tracking remediation
- Working knowledge of AI/LLM security considerations and emerging best practices in that space is a meaningful plus
- BS in Computer Science, Cybersecurity, Electrical Engineering, or equivalent experience
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
Similar Jobs
Explore other opportunities that match your interests
careerscape
Senior Detection Engineer
Keeper Security, Inc.
