RemoteLeaf Logo
Log in Sign up

Senior Security Engineer

2 weeks, 5 days ago
Anywhere
Full-time
Senior
Security Engineer
Cybersecurity
AWS GCP Kafka Kubernetes Microservices Node.js Python Secrets Management Terraform
Apply Now
Federato

Federato

Federato is an underwriting platform for insurance carriers that provides real-time insights to encourage empowerment, good risk-taking, and strong decision-making at all levels of underwriting. Their RiskOps platform brings speed and precision to unde...

Insurance
11-50
Founded 2020
$40M raised
View All Jobs 6

Description

  • Contribute to the application security program by working with SAST, DAST, and SCA tooling and driving vulnerability remediation with engineering teams.
  • Participate in threat modeling and secure design reviews for new products and services.
  • Share incident response on-call duties, including investigating, containing, and resolving security incidents.
  • Refine incident response runbooks, detection coverage, and post-incident processes.
  • Help harden the cloud and Kubernetes environment across GCP and GKE, including IAM, least privilege, secrets management, container security, supply chain security, and Terraform guardrails.
  • Build high-signal detections and security automation from cloud, identity, and application telemetry.
  • Automate manual security workflows such as vulnerability triage, access reviews, SaaS posture checks, and security questionnaires.
  • Support customer security questionnaires and audits by building internal tooling and a knowledge base.
  • Contribute to business continuity and disaster recovery planning and run exercises against DR plans.
  • Help drive a security culture across engineering through training, secure-coding guidance, and standards work.

Requirements

  • 5+ years of hands-on experience managing cloud infrastructure and automation.
  • 3+ years of experience with cloud providers, preferably Google Cloud Platform (GCP).
  • Experience with cloud security on GCP or AWS, including IAM, Kubernetes, and infrastructure as code.
  • Experience with Node.js or Python for backend services in a microservices architecture.
  • Experience supporting SOC 2 Type II, ISO 27001, or similar security certifications.
  • Knowledge of asynchronous processing, message queues such as Kafka or Pub/Sub, and event-driven backend architecture.
  • Experience focused on improving internal engineering team success.
  • Experience with incident response, detections, or security automation is strongly relevant for this role.

Benefits

  • $160,000 - $200,000 annual salary.
  • Stock options as part of total compensation.
  • Benefits package included.
  • Additional perks included as part of total compensation.
  • Flexible, fast-moving, and collaborative culture focused on learning and adapting.
  • Equal-opportunity employer with reasonable accommodation available during the application and interview process.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Parachute Health

IT & Security Engineer (Contract)

Parachute Health 51-250 Health Care Providers & Services

Parachute Health is hiring a contractor for its IT & Security team to support secure, compliant, and efficient healthcare technology operations across identity, endpoint, network, and cloud security.

United States Contract Entry Level Security Engineer
AWS Bash CrowdStrike DHCP DNS GCP Git GitHub HIPAA Linux macOS OAuth PostgreSQL PowerShell Python SAML Splunk SQL TLS
40 minutes ago
Centorrino Technologies

SAP Security Specialist

Centorrino Technologies 51-250 Internet Software & Services

Centorrino Technologies is seeking a 12-month fixed-term SAP Security Specialist in Melbourne or Hobart to secure and govern a modern, hybrid SAP landscape while supporting enterprise transformation and access governance initiatives.

Australia Contract Senior Security Engineer
SAML
3 hours, 45 minutes ago
MetroStar

Sr. Solutions Architect (DevSecOps) II (6444)

MetroStar 251-1K IT Services

MetroStar is seeking a Sr. Solutions Architect (DevSecOps) II to lead secure platform and cloud solution efforts for containerized, microservices-based environments while ensuring compliance, continuous monitoring, and incident response readiness.

United States Full-time Senior Platform Engineer Security Engineer
$166k-$202k
AWS CI/CD Cybersecurity DevSecOps Jenkins Kubernetes Microservices OpenShift SonarQube Splunk
10 hours, 37 minutes ago
Trility Consulting

Senior DevSecOps Consultant (Azure / Secrets Management)

Trility Consulting 51-250 Internet Software & Services

Trility Consulting is seeking a remote Senior DevSecOps Consultant to lead a short-term Azure security engagement focused on strengthening secrets management, application security, and repeatable DevSecOps standards across client environments.

United States Contract Lead DevOps Engineer Security Engineer
Azure CI/CD DevSecOps GitHub .NET Python Secrets Management SQL Server
11 hours, 16 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers