Senior Security Engineer

Job Summary

Owning the security risk posture for the virtualization stack, the full-time Senior Security Engineer will propose and implement defense-in-depth mitigations while collaborating with engineering teams to enhance security practices in a remote environment.

Key responsibilities

• Propose and implement mitigations and defense-in-depth strategies based on threat modeling of the virtualization stack
• Provide technical expertise in systems architecture and kernel security features to develop comprehensive threat models
• Cultivate a security culture by mentoring teams in best practices and overseeing the vulnerability management program

Required qualifications

• Deep familiarity with at least one kernel security feature (e.g., AppArmor, SELinux)
• Experience assessing performance implications of code changes in virtualization stacks, particularly Qemu and KVM
• Proven ability to partner with engineering teams to address security challenges creatively
• Strong communication skills regarding security topics and vulnerability classes
• Working knowledge of modern development concepts, including virtualized environments and containerization