Senior Security Engineer (AWS, IAM)
To see similar active jobs please follow this link: Remote System Administration jobs
PagerDuty is seeking a Senior Security Engineer (AWS, IAM) to join our diverse, customer-focused team! As a Senior Security Engineer, you will be a key contributor to leading security initiatives around foundational infrastructure supporting the PagerDuty SaaS offerings through architecture reviews, threat modeling sessions, and designing security tool implementations supporting PagerDuty’s security mission. Since we own and operate what we build, you’ll collaborate closely with engineers across many teams. You will work closely with our internal development teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers. This is an exciting opportunity to build lovable security solutions that make developers and customers happy. The ideal candidate will come from a large enterprise environment focused on IAM strategy for product and infrastructure security. Things that make you smile: Secure Infrastructure, systems, automation, analysis, coding, and cute animal memes.
KEY RESPONSIBILITIES
Act as technical team lead by providing mentorship designing and scoping implementation of security projects and guiding team members to ensure implementation is completed. Work closely with Product Engineering teams to review service designs (full stack) and provide security-focused recommendations to address potential threats or insecure designs. Provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO mandates.
Mentor and help guide team members to ensure product and business objectives are considered for project implementations.
Work with loosely defined requirements where you exercise your analytical skills to clarify questions, share your approach, and collaborate with the rest of the team to build/test elegant solutions.
Participate in our team’s on-call rotation, triaging and addressing security issues as they arise.
Enable service team security implementations by building security-as-code constructs into infrastructure-as-code (IaC) modules, maintaining hardened configurations in platform components (container images, kubernetes deployments, etc.), and maintaining developer focused documentation to ensure low effort adoption.
Continually improve infrastructure security implementations with consideration for IAM, Network Access, and Security Alerting supporting kubernetes and AWS infrastructure with services operating modern-day a microservice architecture.
BASIC QUALIFICATIONS
5+ years of experience as a full-stack Security Engineer in a cloud-native, micro-service SaaS, PaaS, or IaaS environment.
Strong understanding of AWS IAM best practices, and demonstrated experience in implementing a strong and scalable IAM strategy.
Must have current AWS and Kubernetes (EKS) experience.
Technical stack experience required to be successful in this role:
AWS Security (GuardDuty, CloudTrail, Secrets Manager, EKS/ECR, IAM family, Config), Vulnerability management (Qualys/Nessus, Twistlock, Snyk), SIEM (SumoLogic or Splunk), Container Security, CI/CD Discipline (Helm, Terraform, Chef, Kubernetes (EKS)), Security Incident Response & Risk Management.
Proficiency in at least one programming language and framework (e.g. Ruby on Rails, Python, Phoenix/Elixir, Java).
Familiarity with Threat Modeling principles.
PREFERRED QUALIFICATIONS
Current or past experience with obtaining and maintaining FedRAMP authorization.
Experience working at a SaaS company larger than 1000 employees and 100M in revenue.
Ability to think through a complex problem, build a solution, and execute that solution with effective change management skills.
Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure.
Ability to design, monitor, and operate security logging and alerting toolsets.
Demonstrated history of mentoring and coaching.
Familiarity with Corporate security needs and solutions.
The base salary range for this position is 176,000 - 277,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits.
Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience.
Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process.
About the job
Senior Security Engineer (AWS, IAM)
To see similar active jobs please follow this link: Remote System Administration jobs
PagerDuty is seeking a Senior Security Engineer (AWS, IAM) to join our diverse, customer-focused team! As a Senior Security Engineer, you will be a key contributor to leading security initiatives around foundational infrastructure supporting the PagerDuty SaaS offerings through architecture reviews, threat modeling sessions, and designing security tool implementations supporting PagerDuty’s security mission. Since we own and operate what we build, you’ll collaborate closely with engineers across many teams. You will work closely with our internal development teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers. This is an exciting opportunity to build lovable security solutions that make developers and customers happy. The ideal candidate will come from a large enterprise environment focused on IAM strategy for product and infrastructure security. Things that make you smile: Secure Infrastructure, systems, automation, analysis, coding, and cute animal memes.
KEY RESPONSIBILITIES
Act as technical team lead by providing mentorship designing and scoping implementation of security projects and guiding team members to ensure implementation is completed. Work closely with Product Engineering teams to review service designs (full stack) and provide security-focused recommendations to address potential threats or insecure designs. Provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO mandates.
Mentor and help guide team members to ensure product and business objectives are considered for project implementations.
Work with loosely defined requirements where you exercise your analytical skills to clarify questions, share your approach, and collaborate with the rest of the team to build/test elegant solutions.
Participate in our team’s on-call rotation, triaging and addressing security issues as they arise.
Enable service team security implementations by building security-as-code constructs into infrastructure-as-code (IaC) modules, maintaining hardened configurations in platform components (container images, kubernetes deployments, etc.), and maintaining developer focused documentation to ensure low effort adoption.
Continually improve infrastructure security implementations with consideration for IAM, Network Access, and Security Alerting supporting kubernetes and AWS infrastructure with services operating modern-day a microservice architecture.
BASIC QUALIFICATIONS
5+ years of experience as a full-stack Security Engineer in a cloud-native, micro-service SaaS, PaaS, or IaaS environment.
Strong understanding of AWS IAM best practices, and demonstrated experience in implementing a strong and scalable IAM strategy.
Must have current AWS and Kubernetes (EKS) experience.
Technical stack experience required to be successful in this role:
AWS Security (GuardDuty, CloudTrail, Secrets Manager, EKS/ECR, IAM family, Config), Vulnerability management (Qualys/Nessus, Twistlock, Snyk), SIEM (SumoLogic or Splunk), Container Security, CI/CD Discipline (Helm, Terraform, Chef, Kubernetes (EKS)), Security Incident Response & Risk Management.
Proficiency in at least one programming language and framework (e.g. Ruby on Rails, Python, Phoenix/Elixir, Java).
Familiarity with Threat Modeling principles.
PREFERRED QUALIFICATIONS
Current or past experience with obtaining and maintaining FedRAMP authorization.
Experience working at a SaaS company larger than 1000 employees and 100M in revenue.
Ability to think through a complex problem, build a solution, and execute that solution with effective change management skills.
Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure.
Ability to design, monitor, and operate security logging and alerting toolsets.
Demonstrated history of mentoring and coaching.
Familiarity with Corporate security needs and solutions.
The base salary range for this position is 176,000 - 277,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits.
Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience.
Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process.