RemoteLeaf Logo
Log in Sign up

Lead Security Engineer

3 weeks, 3 days ago
Palestine, Georgia, Bulgaria, Estonia, Lithuania, Poland, Romania, Ukraine
Full-time
Senior
Security Engineer
Cybersecurity
AWS Django FastAPI Java Kafka MongoDB OpenID Connect PostgreSQL Python RabbitMQ SAML Spring Boot
Apply Now
Remofirst

Remofirst

Remofirst: Simplifying global HR solutions with streamlined payroll, compliance, and remote hiring in 180+ countries.

Professional Services
11-50
Founded 2021
View All Jobs 18

Description

  • Own the architecture and security of the customer-facing Auth0 implementation, including SCIM provisioning and OIDC federation with enterprise identity providers.
  • Manage and automate the internal Okta environment, including SSO, lifecycle management, hardware-based MFA, and complex RBAC.
  • Enforce least privilege across the AWS environment by managing IAM policies and service control policies.
  • Conduct internal pentests and vulnerability scans against Python/Django and Java/Spring Boot services and coordinate with third-party pen testers.
  • Review application code and help engineers build secure services, databases, and message streams across Postgres and Kafka.
  • Own SAST and DAST processes, including detection of license misuse and outdated libraries.
  • Define guardrails for AI initiatives, including prompt data privacy and model pipeline security.
  • Lead SOC 2 Type II and ISO 27001 efforts, maintain the risk register, and support security questionnaires from customers.
  • Use compliance automation tools and manage the Trust Center in Thoropass to keep the organization audit-ready.
  • Help draft and implement practical security policies covering data residency, logging, audit trails, and non-repudiation.

Requirements

  • 5+ years of experience in security engineering.
  • Experience with Python/Java environments, including Django, FastAPI, and Spring Boot.
  • Experience with Kafka, RabbitMQ, PostgreSQL, and some MongoDB.
  • Strong knowledge of AWS infrastructure, including EKS, RDS, IAM, and S3.
  • Familiarity with IAM tools such as Okta and/or Auth0.
  • Understanding of SAML, OIDC, and API-based security.
  • Familiarity with the SOC 2 and ISO 27001 audit cycle.
  • Comfortable working with internal and external Risk & Compliance teams.
  • Ability to explain ISO 27001 requirements to software engineers in practical terms.
  • Bonus: awareness of OWASP Top 10 for LLMs, including prompt injection and data leakage risks.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Rubrik

Senior Information Security Engineer – Data

Rubrik 1K-5K IT Services

Rubrik is hiring a Senior Security Engineer to operate its SIEM environment and help build a Security Data Lake platform that supports security monitoring, analytics, and automated SecOps across a global multi-cloud footprint.

India Full-time Senior Data Engineer Security Engineer
AWS Azure CI/CD Databricks Elasticsearch GCP Kubernetes LLM Python SIEM Snowflake Splunk Terraform
1 hour ago
Anduril Industries

Senior Technical Security Application Engineer, Secured Spaces

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Senior Technical Security Application Engineer to own the design, commissioning, and lifecycle sustainment of intrusion detection and access control systems for secured spaces supporting its defense technology operations.

United States Full-time Senior Security Engineer
$166k-$200k
2 hours, 28 minutes ago
Pinterest

Security Software Engineer II, Internal Identity & Access Management

Pinterest 5K-10K Internet Software & Services

Pinterest is hiring a software engineer for its Internal Identity & Access Management team to build production infrastructure for identity, authentication, and authorization across critical systems.

United States Full-time Junior Security Engineer Software Engineer
$124k-$255k
AWS C++ Envoy Go Kubernetes Microservices OAuth Puppet Python React SAML Terraform TypeScript
4 hours, 44 minutes ago
Arize AI

DevSecOps Engineer (TypeScript & Agentic AI)

Arize AI 51-250 IT Services

Arize AI is hiring a remote IT Support Specialist to support Mac-only endpoints, cloud systems, and compliance operations for a distributed team.

United States Full-time Junior Security Engineer Systems Administrator
Confluence GitHub JIRA TypeScript
4 hours, 45 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers