RemoteLeaf Logo
Log in Sign up

Staff Security Engineer

2 hours, 13 minutes ago
Australia
Full-time
Lead
Security Engineer
Cybersecurity
AWS CI/CD Go Kubernetes Penetration Testing Ruby Secrets Management Terraform
Apply Now
Buildkite

Buildkite

Buildkite: Powerful CI/CD platform for fast, secure, and scalable pipelines on your own infrastructure, offering flexibility, security, and data-driven insights.

Commercial Services & Supplies
51-250
Founded 2014
$41M raised
View All Jobs 14

Description

  • Lead threat modeling and architectural security reviews across the organization.
  • Conduct adversary simulations, penetration tests, and abuse-case testing against key application and business areas.
  • Drive technical strategy for application security, adversarial testing, and cloud security.
  • Design scalable security guardrails across CI/CD, infrastructure-as-code, and developer tooling.
  • Improve vulnerability discovery, triage, remediation workflows, and ownership models.
  • Strengthen supply chain and dependency security across build systems and artifacts.
  • Design security controls embedded into product and infrastructure.
  • Partner with engineering leaders and senior ICs to align on security trade-offs.
  • Lead high-impact security initiatives from discovery through rollout.
  • Shape incident readiness, detection improvements, and post-incident hardening.
  • Mentor engineers to improve secure design and implementation practices.
  • Use automation, tooling, and policy-as-code to reduce recurring security issues.

Requirements

  • 7+ years of experience in security engineering, with strong depth in application security and adversarial testing.
  • Extensive knowledge of common web and API vulnerabilities, including the OWASP Top 10 and beyond.
  • Experience designing and reviewing secure architectures for distributed systems.
  • Hands-on adversarial security experience, including offensive testing, exploit validation, abuse-case modeling, or red teaming.
  • Strong understanding of cloud security fundamentals, ideally in AWS.
  • Experience securing CI/CD pipelines and modern developer platforms.
  • Familiarity with Terraform or other infrastructure-as-code systems.
  • Experience with Kubernetes security patterns and workload controls.
  • Strong understanding of identity, secrets management, and access control systems.
  • Comfort reading and writing production code in Ruby, Go, or similar languages.

Benefits

  • Competitive compensation, including salary, equity, and benefits.
  • Flexible, remote-first work culture.
  • Meaningful technical challenges at scale.
  • Opportunities for professional growth and company-wide technical influence.
  • Collaborative, inclusive, and innovative culture.
  • Reasonable accommodations during the recruitment process for candidates who need support.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

ZoomInfo

Senior Director, Security Architecture

ZoomInfo 1K-5K Professional Services

ZoomInfo is seeking a Senior Director of Security Architecture to lead the company’s security architecture strategy across product and enterprise environments, including cloud, applications, data, and AI security.

Ireland Lead Security Engineer
1 hour, 58 minutes ago
Submer

Director / Vice President, IT/OT (Global)

Submer 51-250 IT Services

Rubix is hiring a Director or VP of IT/OT to lead the convergence of information and operational technologies across its global AI data center portfolio and drive reliable, scalable, and secure infrastructure growth.

Anywhere United States United Kingdom Full-time Lead Infrastructure Engineer Security Engineer
Cybersecurity
2 hours, 43 minutes ago
qode

Microsoft 365 Security Engineer

qode Internet Software & Services

Microsoft is hiring a contract Microsoft 365 Security Engineer to implement enterprise data protection, device management, and access security solutions for a remote-first project.

United States Contract Senior Security Engineer
$146k-$166k
2 hours, 58 minutes ago
The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
1 day, 2 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers