RemoteLeaf Logo
Log in Sign up

Lead Security Engineer

1 hour, 59 minutes ago
Bulgaria, Estonia, Lithuania, Poland, Romania, Ukraine, Palestine, Georgia
Full-time
Senior
Security Engineer
Cybersecurity
AWS Django FastAPI Java Kafka MongoDB OpenID Connect PostgreSQL Python RabbitMQ SAML Spring Boot
Apply Now
Remofirst

Remofirst

Remofirst: Simplifying global HR solutions with streamlined payroll, compliance, and remote hiring in 180+ countries.

Professional Services
11-50
Founded 2021
View All Jobs 14

Description

  • Own the architecture and security of the customer-facing Auth0 implementation, including SCIM provisioning and OIDC federation with enterprise identity providers.
  • Manage and automate the internal Okta environment, including SSO, lifecycle management, hardware-based MFA, and complex RBAC.
  • Enforce least privilege across the AWS environment by managing IAM policies and service control policies.
  • Conduct internal pentests and vulnerability scans against Python/Django and Java/Spring Boot services and coordinate with third-party pen testers.
  • Review application code and help engineers build secure services, databases, and message streams across Postgres and Kafka.
  • Own SAST and DAST processes, including detection of license misuse and outdated libraries.
  • Define guardrails for AI initiatives, including prompt data privacy and model pipeline security.
  • Lead SOC 2 Type II and ISO 27001 efforts, maintain the risk register, and support security questionnaires from customers.
  • Use compliance automation tools and manage the Trust Center in Thoropass to keep the organization audit-ready.
  • Help draft and implement practical security policies covering data residency, logging, audit trails, and non-repudiation.

Requirements

  • 5+ years of experience in security engineering.
  • Experience with Python/Java environments, including Django, FastAPI, and Spring Boot.
  • Experience with Kafka, RabbitMQ, PostgreSQL, and some MongoDB.
  • Strong knowledge of AWS infrastructure, including EKS, RDS, IAM, and S3.
  • Familiarity with IAM tools such as Okta and/or Auth0.
  • Understanding of SAML, OIDC, and API-based security.
  • Familiarity with the SOC 2 and ISO 27001 audit cycle.
  • Comfortable working with internal and external Risk & Compliance teams.
  • Ability to explain ISO 27001 requirements to software engineers in practical terms.
  • Bonus: awareness of OWASP Top 10 for LLMs, including prompt injection and data leakage risks.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Trooptravel

Senior Platform Engineering Manager

Trooptravel 51-250 Consumer Services

TROOP is hiring a Senior Platform Engineering Manager to lead its platform and security engineering efforts for a remote-first meeting planning and group travel logistics platform serving teams across multiple regions.

Spain South Africa Full-time Lead Platform Engineer Security Engineer
Argo CD CI/CD GCP GitHub GitLab GitOps Helm Kubernetes OpenTelemetry Terraform WAF
14 minutes ago
Seesaw

Security Engineer

Seesaw 251-1K Diversified Consumer Services

Seesaw is hiring a Security Engineer to strengthen security foundations across its elementary learning platform and internal systems by embedding secure, automated guardrails into engineering and cloud workflows.

United States Full-time Mid Level Security Engineer
$125k-$145k
AWS AWS CDK CloudFormation Datadog GitHub Actions GitLab CI OWASP Python Terraform
14 minutes ago
Smart Working

Senior Security Engineer, India (Remote, Full-Time) [AS219]

Smart Working Internet Software & Services

Smart Working is hiring a Senior Security Engineer in India to embed security across a product-led technology platform, with a focus on application security, cloud security, and security operations in a remote, full-time setting.

India Full-time Senior Security Engineer
AWS CI/CD DevSecOps Docker Encryption GCP Kubernetes Microservices OWASP
14 minutes ago
ERG

Senior Azure Systems Engineer (GCC High / CMMC)

ERG 251-1K Professional Services

ERG is seeking a Senior Azure Systems Engineer to support a mature, enterprise cloud environment with a focus on Azure, Office 365, and GCC High/CMMC-compliant infrastructure for mission-driven clients.

United States Full-time Senior Cloud Engineer Security Engineer
$125k-$145k
Azure CrowdStrike PowerShell SIEM
14 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers