Senior Security Engineer 3 - Infrastructure and Automation
To see similar active jobs please follow this link: Remote System Administration jobs
PagerDuty is seeking a Senior Security Engineer (Infrastructure & Automation) to join our diverse, customer-focused team! As a Senior Security Engineer, you will be a key contributor leading security initiatives around foundational infrastructure supporting PagerDuty's SaaS offerings. Your primary focus will be on infrastructure security through architecture reviews, threat modeling, and security tool implementations, while leveraging automation to scale security solutions. Since we own and operate what we build, you'll collaborate closely with engineers across many teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers.
This is an exciting opportunity to build lovable security solutions that make developers and customers happy. The ideal candidate believes in securing infrastructure at scale and creating automated solutions that make security the easiest choice.
KEY RESPONSIBILITIES
Lead technical security initiatives by conducting architecture reviews and threat modeling sessions for new and existing services
Design and implement security controls for cloud infrastructure and containerized environments
Work closely with Product Engineering teams to review service designs (full stack) and provide security-focused recommendations
Resolve technical ambiguity in system designs, collaborating with engineering management and staff engineers
Monitor and maintain security tooling supporting infrastructure security controls
Design and implement security automations and tool integrations to scale security operations
Build and maintain security guardrails and automated compliance controls
Develop automated vulnerability management workflows to drive timely remediation
Create security relevant alerting and metrics for visibility and reporting
Implement automated incident response playbooks
Mentor and guide team members on security best practices and implementation approaches
Participate in our team's on-call rotation, triaging and addressing security issues as they arise.
Contribute to roadmap and annual planning discussions
BASIC QUALIFICATIONS
5+ years of experience as a full-stack Security Engineer in a AWS native, micro-service SaaS environment
Strong expertise in cloud security, particularly AWS services including but not limited to:
GuardDuty, CloudTrail, Secrets Manager
EKS/ECR, IAM family, Config
Service Mesh architectures
Proficiency with security tools:
Vulnerability Management & EDR: Wiz, Snyk, Qualys/Nessus, Crowdstrike
SIEM: SumoLogic or Splunk
Experience with Infrastructure as Code and CI/CD:
Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD
4+ years of experience and proficiency in at least one programming language and framework (Python, Bash, Ruby on Rails, Elixir, or Java)
Strong understanding of Threat Modeling principles
Experience with Security Incident Response & Risk Management
High appetite for challenging problems with a high degree of ownership.
PREFERRED QUALIFICATIONS
Current or past experience with obtaining and maintaining FedRAMP authorization
Experience working at a SaaS company larger than 1000 employees and 100M in revenue
Strong problem-solving abilities with effective change management skills
Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure.
Demonstrated history of mentoring and coaching
Experience building Security Orchestration, Automation, and Response (SOAR) playbooks
Strong written and verbal communication skills
Working knowledge and experience with PagerDuty Incident Management and Process Automation products.
Familiarity with Corporate security needs and solutions, and ability to provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO strategic initiatives and mandates.
The base salary range for this position is 152,000 - 248,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits.
Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience.
Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process.
About the job
Senior Security Engineer 3 - Infrastructure and Automation
To see similar active jobs please follow this link: Remote System Administration jobs
PagerDuty is seeking a Senior Security Engineer (Infrastructure & Automation) to join our diverse, customer-focused team! As a Senior Security Engineer, you will be a key contributor leading security initiatives around foundational infrastructure supporting PagerDuty's SaaS offerings. Your primary focus will be on infrastructure security through architecture reviews, threat modeling, and security tool implementations, while leveraging automation to scale security solutions. Since we own and operate what we build, you'll collaborate closely with engineers across many teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers.
This is an exciting opportunity to build lovable security solutions that make developers and customers happy. The ideal candidate believes in securing infrastructure at scale and creating automated solutions that make security the easiest choice.
KEY RESPONSIBILITIES
Lead technical security initiatives by conducting architecture reviews and threat modeling sessions for new and existing services
Design and implement security controls for cloud infrastructure and containerized environments
Work closely with Product Engineering teams to review service designs (full stack) and provide security-focused recommendations
Resolve technical ambiguity in system designs, collaborating with engineering management and staff engineers
Monitor and maintain security tooling supporting infrastructure security controls
Design and implement security automations and tool integrations to scale security operations
Build and maintain security guardrails and automated compliance controls
Develop automated vulnerability management workflows to drive timely remediation
Create security relevant alerting and metrics for visibility and reporting
Implement automated incident response playbooks
Mentor and guide team members on security best practices and implementation approaches
Participate in our team's on-call rotation, triaging and addressing security issues as they arise.
Contribute to roadmap and annual planning discussions
BASIC QUALIFICATIONS
5+ years of experience as a full-stack Security Engineer in a AWS native, micro-service SaaS environment
Strong expertise in cloud security, particularly AWS services including but not limited to:
GuardDuty, CloudTrail, Secrets Manager
EKS/ECR, IAM family, Config
Service Mesh architectures
Proficiency with security tools:
Vulnerability Management & EDR: Wiz, Snyk, Qualys/Nessus, Crowdstrike
SIEM: SumoLogic or Splunk
Experience with Infrastructure as Code and CI/CD:
Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD
4+ years of experience and proficiency in at least one programming language and framework (Python, Bash, Ruby on Rails, Elixir, or Java)
Strong understanding of Threat Modeling principles
Experience with Security Incident Response & Risk Management
High appetite for challenging problems with a high degree of ownership.
PREFERRED QUALIFICATIONS
Current or past experience with obtaining and maintaining FedRAMP authorization
Experience working at a SaaS company larger than 1000 employees and 100M in revenue
Strong problem-solving abilities with effective change management skills
Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure.
Demonstrated history of mentoring and coaching
Experience building Security Orchestration, Automation, and Response (SOAR) playbooks
Strong written and verbal communication skills
Working knowledge and experience with PagerDuty Incident Management and Process Automation products.
Familiarity with Corporate security needs and solutions, and ability to provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO strategic initiatives and mandates.
The base salary range for this position is 152,000 - 248,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits.
Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience.
Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process.