Senior Security Engineer

Job Summary

Owning the security risk posture for the virtualization stack, the full-time Senior Security Engineer will propose and implement defense-in-depth mitigations, collaborate with development teams to enhance security practices, and cultivate a security culture within the organization, all while working remotely.

Key responsibilities

• Propose and implement mitigations and defense-in-depth strategies based on threat modeling of the virtualization stack
• Collaborate with internal engineering teams to assess security risks and recommend efficient designs that meet both functional and security requirements
• Mentor software engineering teams on security best practices and oversee the vulnerability management program

Required qualifications

• Deep familiarity with at least one kernel security feature (e.g., AppArmor, SELinux, Landlock)
• Experience assessing performance implications of code changes to virtualization stacks, particularly in Qemu and KVM
• Proven ability to partner with engineering teams to address security challenges creatively
• Strong communication skills for discussing security topics and providing actionable guidance to product teams
• Working knowledge of modern development concepts, including virtualized environments and containerization