RemoteLeaf Logo
Log in Sign up

Senior Security Engineer

1 hour, 40 minutes ago
Anywhere
Full-time
Senior
Security Engineer
Cybersecurity
AWS GCP Kafka Kubernetes Microservices Node.js Python Secrets Management Terraform
Apply Now
Federato

Federato

Federato is an underwriting platform for insurance carriers that provides real-time insights to encourage empowerment, good risk-taking, and strong decision-making at all levels of underwriting. Their RiskOps platform brings speed and precision to unde...

Insurance
11-50
Founded 2020
$40M raised
View All Jobs 3

Description

  • Contribute to the application security program by working with SAST, DAST, and SCA tooling and driving vulnerability remediation with engineering teams.
  • Participate in threat modeling and secure design reviews for new products and services.
  • Share incident response on-call duties, including investigating, containing, and resolving security incidents.
  • Refine incident response runbooks, detection coverage, and post-incident processes.
  • Help harden the cloud and Kubernetes environment across GCP and GKE, including IAM, least privilege, secrets management, container security, supply chain security, and Terraform guardrails.
  • Build high-signal detections and security automation from cloud, identity, and application telemetry.
  • Automate manual security workflows such as vulnerability triage, access reviews, SaaS posture checks, and security questionnaires.
  • Support customer security questionnaires and audits by building internal tooling and a knowledge base.
  • Contribute to business continuity and disaster recovery planning and run exercises against DR plans.
  • Help drive a security culture across engineering through training, secure-coding guidance, and standards work.

Requirements

  • 5+ years of hands-on experience managing cloud infrastructure and automation.
  • 3+ years of experience with cloud providers, preferably Google Cloud Platform (GCP).
  • Experience with cloud security on GCP or AWS, including IAM, Kubernetes, and infrastructure as code.
  • Experience with Node.js or Python for backend services in a microservices architecture.
  • Experience supporting SOC 2 Type II, ISO 27001, or similar security certifications.
  • Knowledge of asynchronous processing, message queues such as Kafka or Pub/Sub, and event-driven backend architecture.
  • Experience focused on improving internal engineering team success.
  • Experience with incident response, detections, or security automation is strongly relevant for this role.

Benefits

  • $160,000 - $200,000 annual salary.
  • Stock options as part of total compensation.
  • Benefits package included.
  • Additional perks included as part of total compensation.
  • Flexible, fast-moving, and collaborative culture focused on learning and adapting.
  • Equal-opportunity employer with reasonable accommodation available during the application and interview process.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Zensurance

Security Engineer (Remote First)

Zensurance 51-250 Insurance

Zensurance is hiring a remote-first Security Engineer in Toronto to support its company-wide information security program and strengthen risk, incident, and security operations across the business.

Canada Full-time Senior Security Engineer
$110k-$150k
Agile AWS CrowdStrike Cybersecurity
2 hours, 28 minutes ago
Nebius

Security Automation Engineer (SOAR)

Nebius 51-250 Internet Software & Services

Nebius is hiring a Security Automation Engineer to build and scale SOC automation across security operations, integrating SIEM, EDR, and other platforms while shaping SOAR capabilities in a greenfield environment.

Israel Full-time Mid Level Security Engineer Software Engineer
AWS Azure CrowdStrike GCP LLM Python REST API SIEM SOC Splunk
5 hours, 32 minutes ago
INflow Federal

DevSecOps Engineer

INflow Federal 51-250 Aerospace & Defense

INflow Federal is seeking a fully remote DevSecOps Engineer to support an enterprise case management solution for Department of Defense mission partners by securing and automating cloud-based CI/CD and infrastructure operations in AWS GovCloud.

United States Full-time Senior DevOps Engineer Security Engineer
Agile AWS Bash CI/CD CloudFormation Docker ELK Stack Git GitLab CI Helm Jenkins Kubernetes PowerShell Prometheus Python Terraform
6 hours, 20 minutes ago
INflow Federal

Cyber Security Architect

INflow Federal 51-250 Aerospace & Defense

INflow Federal is hiring a fully remote Cyber Security Architect to design and sustain secure enterprise architectures for a modernized Department of Defense information system supporting mission operations.

United States Full-time Senior Security Engineer
Agile DevSecOps ELK Stack OAuth Penetration Testing SAML Splunk
8 hours, 1 minute ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers