Lead Security Engineer

About You:

• Security Engineering Technical Lead: You have operated as a senior IC or technical lead for security engineering work, setting strategy while staying hands-on.
• Application Security Builder: Deep experience with secure SDLC practices, shift-left security, threat modeling, API security, and developer-friendly security UX.
• Cloud Security Partner: Comfortable partnering with Platform Engineering on IAM, KMS, CloudTrail, GuardDuty, Security Hub and continuous cloud posture management.

Requirements:

• Experience: 7+ years in security engineering, application security, cloud security, or related technical security roles.
• Technical Leadership: Proven ability to lead broad security engineering initiatives as a senior IC and influence cross-functional technical decisions.
• AWS Security: Hands-on experience with AWS-native security patterns and services, including IAM, KMS, CloudTrail, GuardDuty, and Security Hub.

Desirables:

• Experience securing fintech, benefits, payroll, payments, or other regulated SaaS platforms that process PII, financial data, HRIS data, transaction data.
• Familiarity with SOC 2, HITRUST, PCI, or similar compliance and audit programs, with the ability to support evidence and control design.
• Experience with AWS serverless and managed-service architectures, including API Gateway, Cognito, Lambda, ECS/EKS, RDS, S3, Transfer Family.