Lead Security Engineer

Role Overview

Lead Security Engineer to strengthen threat models and implement robust security controls across cloud and on-premises infrastructure. This is a hands-on leadership role driving security initiatives across networks, endpoints, identity and access management, and data protection.

Key Responsibilities

• Develop, tune, and automate detection and alerting pipelines; support incident response investigations and root-cause analysis
• Lead endpoint and server hardening efforts across Windows, macOS, and Linux systems with secure configurations and continuous compliance
• Mature and maintain enterprise detection and response capabilities with 100% visibility and monitoring coverage across all assets
• Oversee vulnerability management lifecycle from scanning and triage to remediation tracking and executive reporting
• Design and implement security automation to streamline access management, alert triage, and compliance evidence collection
• Develop, enforce, and continuously refine Zero Trust Network Access (ZTNA) policies for both on-premises and cloud environments
• Collaborate with engineering teams on threat modeling, application security reviews, and secure-by-design architecture decisions

Requirements

• 7+ years of experience in security engineering, cloud security, or incident response (ideally in SaaS or cloud-native companies at scale)
• Deep understanding of AWS security services (GuardDuty, IAM, KMS, CloudTrail, etc.) and multi-account environment best practices
• Hands-on experience with CrowdStrike endpoint and server monitoring including API integrations and telemetry enrichment
• Expertise designing, tuning, and maintaining SIEM and detection pipelines in Datadog with custom metrics, dashboards, and automated workflows
• Strong proficiency with Terraform including secure IaC design, module development, and policy-as-code implementations
• Familiarity with operational technology (OT) security including segmentation, asset discovery, and threat detection in industrial or lab environments
• Experience automating security operations using Python, PowerShell, or Bash
• Strong understanding of vulnerability management, patch governance, and remediation prioritization
• Experience implementing Zero Trust Network Access (ZTNA) and securing hybrid cloud/on-prem environments