Staff Security Engineer

Job Summary

Reporting remotely, the full-time Staff Security Engineer will manage the security maturity of systems and AWS environments, providing architectural judgment and hands-on execution while leading Application Security and Cloud Security functions.

Key responsibilities

• Direct daily execution of Application Security and Cloud Security functions, ensuring alignment with business risk and technical quality
• Architect and deploy defensive controls for AI-enabled capabilities, assessing software and infrastructure to identify weaknesses and implement corrective actions
• Expand automation for cloud assurance and define secure engineering expectations for design, build, test, and release activities

Required qualifications

• 8 to 12 years of experience in security engineering, with hands-on expertise in application and cloud security
• Strong AWS security knowledge, including IAM, networking, encryption, and infrastructure-as-code security
• Experience in regulated environments such as healthcare, finance, or education
• Ability to read and reason about application code and system architecture, with fluency in backend environments like Ruby, Node.js, or Java
• Current knowledge of emerging AI security guidance, including OWASP Top 10 for LLM Applications