[Hiring] Senior Security Engineer @Federato

Role Description

Contribute to our application security program:

• Work with our SAST, DAST, and SCA tooling.
• Triage and prioritize vulnerabilities.
• Partner with engineering teams to drive remediation.
• Participate in threat modeling and secure design reviews on new products and services.

Share incident response on-call:

• Investigate, contain, and resolve security incidents alongside the rest of the team.
• Help refine our runbooks, detection coverage, and post-incident process.

Help harden our cloud and Kubernetes environment:

• Contribute to security posture across GCP and GKE.
• Focus on IAM and least-privilege, secrets management, container and supply chain security, and IaC guardrails (Terraform).

Build detections and security automation:

• Engineer high-signal detections from cloud, identity, and application telemetry.
• Automate the toil of vuln triage, access reviews, SaaS posture, questionnaire workflows.

Streamline customer security work:

• Help respond to customer security questionnaires and audits.
• Build internal tooling and a knowledge base to scale as deal volume grows.

Strengthen business continuity and DR:

• Help assess threats to continuity.
• Contribute to DR plans and run real exercises against them.

Help drive a security culture across engineering:

• Pair on developer training, secure-coding guidance, and standards work.
• Make the secure path the easy path.

Qualifications

• 5+ years of hands-on experience managing cloud infrastructure and automation.
• Experience in achieving SOC2 Type II, ISO 27001, or similar certifications.
• Experience with Node.js or Python for backend services in a microservices architecture.
• 3+ years of experience with cloud providers, preferably Google Cloud Platform (GCP).
• Solid experience with cloud security on GCP or AWS, including IAM, Kubernetes, and IaC.
• Knowledge of asynchronous processing, message queues (e.g., Kafka, Pub/Sub), and event-driven architecture for backend applications.
• Experience focused on the internal engineer team success.

Requirements

• $160,000 - $180,000 a year.
• Final offer amounts are determined by multiple factors including candidate location, experience and expertise and may vary from the amounts listed above.
• Total compensation package does include stock options, benefits and additional perks.

Benefits

• Culture fit is essential; we value learning and the ability to change our minds.
• We move fast and are eager to listen to our users.
• We are here to have fun and make a difference.

Company Description

We are an equal-opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender expression, sexual orientation, age, marital status, veteran status or disability status. We will provide reasonable accommodation to individuals with disabilities to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation at [email protected]