RemoteLeaf Logo
Log in Sign up

Lead Security Engineer

2 months ago
India
Full-time
Lead
Security Engineer
Cybersecurity
AWS Burp Suite CI/CD Docker GitHub Actions Go JavaScript Kubernetes Metasploit Node.js Penetration Testing PHP Secrets Management Terraform
Apply Now
HighLevel

HighLevel

HighLevel provides an all-in-one sales and marketing platform that agencies can white label and resell, offering tools and resources designed to help businesses consolidate their marketing efforts and achieve their growth objectives.

Internet Software & Services
251-1K
Founded 2018
$60M raised
View All Jobs 104

Description

  • Perform and lead manual and automated penetration testing across applications, APIs, and cloud services.
  • Drive threat modeling and secure architecture reviews across application and infrastructure layers.
  • Collaborate with Infra/DevOps on cloud network architecture, including VPC design, security groups, routing, and segmentation.
  • Design and advise on cloud-native security controls such as IAM hardening, role boundaries, secrets management, and least privilege.
  • Evaluate and improve Kubernetes and container security posture across runtime, image, and network layers.
  • Implement secure-by-default patterns across the SDLC, CI/CD, and Infrastructure-as-Code.
  • Monitor emerging threats, CVEs, and vulnerabilities relevant to the web, cloud, and infrastructure stack.
  • Influence internal security tooling, automation pipelines, and security review processes.
  • Serve as a security advisor to engineering, SRE, and product teams on key projects.

Requirements

  • 8+ years of total experience in Application Security, Security Engineering, or Penetration Testing roles.
  • Strong hands-on experience with threat modeling, secure architecture reviews, and penetration testing.
  • Familiarity with OWASP Top 10, STRIDE, and modern security frameworks.
  • Experience with tools such as Burp Suite, ZAP, Snyk, Metasploit, and Semgrep.
  • Ability to read and analyze code in JavaScript, Go, PHP, or Node.js.
  • Working knowledge of cloud security principles, preferably AWS.
  • Experience with multi-tenant SaaS platforms or white-labeled architectures is preferred.
  • Familiarity with network-level security concepts such as VPC design, IAM, and zero-trust networks is preferred.
  • Exposure to container security, including Docker and Kubernetes, is preferred.
  • Hands-on experience with IaC security and CI/CD pipelines such as GitHub Actions and Terraform is preferred.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
8 hours, 9 minutes ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
8 hours, 24 minutes ago
Dropbox

Senior Infrastructure Security Engineer

Dropbox 1K-5K Internet Software & Services

Dropbox is hiring a Security Engineer to secure its AI and agentic infrastructure while helping protect products and users across cloud and on-prem environments.

Canada Full-time Lead Infrastructure Engineer Security Engineer
$152k-$206k
Bash CI/CD CrowdStrike Go Java Kubernetes Linux LLM Node.js OAuth OpenID Connect OWASP Python Ruby Rust SIEM
8 hours, 24 minutes ago
Fullscript

Staff, Security Engineer

Fullscript 251-1K Health Care Providers & Services

Fullscript is hiring a Staff Security Engineer to lead hands-on security engineering across its healthcare technology platform, shaping secure product development and protecting systems that support practitioners and patients.

United States Canada Full-time Lead Security Engineer
AWS GitHub GitLab GraphQL JavaScript Node.js Penetration Testing Ruby on Rails
8 hours, 54 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers