Senior Security Engineer II (Engineering & Tooling), Remote at Aledade
You're a seasoned security engineer with 7+ years of experience, holding a Bachelor's degree in Computer Science or a related field, and possess strong hands-on
Work type: remote
Location: Remote, United States
Type: Full-time
Summary
You're a seasoned security engineer with 7+ years of experience, holding a Bachelor's degree in Computer Science or a related field, and possess strong hands-on expertise in various security tools and cloud environments.
**What makes it worth a look...**
This fully remote Senior Security Engineer II role at Aledade focuses on infrastructure security and tooling, offering a chance to provide technical leadership and mentor junior team members.
**You might be a good fit if you...**
* Have strong expertise with SIEM (Splunk or Sumo logic), EDR (CrowdStrike, SentinelOne), and vulnerability management tools (Tenable, Qualys, Wiz, Snyk).
* Are proficient in securing cloud environments (AWS, Azure, or GCP) and understand cloud-native security solutions.
* Can automate security processes using scripting languages (Python, PowerShell) and tools like Terraform or Ansible.
* Hold certifications such as CISSP, GSEC, or AWS Certified Security Specialty.
Job Description
As a Senior Security Engineer you will design, implement, and maintain security systems and tooling across our infrastructure. The ideal candidate will have a strong background in security engineering, an in-depth understanding of security tools, and a proactive approach to mitigating cybersecurity risks. This role involves both hands-on technical work, working closely with cross-functional teams and strategic collaboration to enhance our overall security posture. This candidate will provide technical leadership and coach junior members of the security engineering team.
## Primary Duties:
- Primary focus will be on infrastructure security through architecture reviews, threat modeling for new and existing services and security tool implementations, while leveraging automation to scale security solutions.
- Design, deploy, and manage advanced security tools, including SIEM, EDR, DLP, vulnerability management, and firewalls.
- Engineer solutions to integrate security tooling across cloud environments, ensuring seamless protection and visibility. Collaborate with cloud engineering teams to implement and secure cloud-native solutions (e.g., IAM, VPC, security groups, cloud firewalls), implement security controls for cloud infrastructure and containerized environments.
- Lead the evaluation, implementation, and configuration of new security technologies to address evolving threats and stay updated on emerging technologies, trends, and best practices in security engineering and tooling.
- Develop and maintain secure configurations for operating systems, applications, and networking equipment and Automate security processes using scripting languages (Python, PowerShell) and tools like Terraform or Ansible.
- Conduct security assessments and ensure vulnerability management programs are effective, addressing gaps proactively.
## Minimum Qualifications:
- Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).
- 7+ years of experience in security engineering, including designing and managing security tools.
- Strong understanding of Threat Modeling Principles
- Experience with Security Incident Response & Risk Management
- Strong hands-on expertise with SIEM (e.g., Splunk or Sumo logic), EDR (e.g., CrowdStrike, SentinelOne), and vulnerability management tools (e.g., Tenable, Qualys), Wiz, Snyk etc.
- Proficiency in securing cloud environments (AWS, Azure, or GCP), including experience with IAM, VPCs, security groups, EKS/ECR and cloud-native security solutions (e.g., AWS Security Hub, Azure Sentinel).
- Experience with automation tools IAC and CI/CD: Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD and scripting (Python, PowerShell, or Bash) for integrating and managing security solutions.
- Familiarity with DevSecOps practices, container security (e.g., Kubernetes, Docker), and CI/CD pipeline security.
- Proven track record in incident response, threat hunting, and forensic investigations.
- Certifications such as CISSP, GSEC, AWS Certified Security Specialty, or equivalent.
## Preferred Knowledge, Skills, and/or Abilities:
- Strongly Preferred:
- Experience with Datadog for metrics and log analysis.
- Experience in monitoring security tools and leading forensic investigations and helping in incident response efforts.
- Experience with Security incident response & Risk Management.
- Stay updated on emerging technologies, trends, and best practices in security engineering and tooling.
- Experience with Zero Trust models, microsegmentation, and cloud-native security solutions (e.g., AWS Security Hub, Azure Sentinel).
- Knowledge of regulatory frameworks (e.g., PCI DSS, GDPR, HIPAA) and how to engineer tools to support compliance.
- Has mentored junior engineers and provided technical leadership for security-focused initiatives.
- Strong analytical and problem-solving skills, with excellent communication and documentation abilities.
- Previous experience in healthcare, finance, or government sectors, particularly in managing network security within compliance frameworks like HIPAA, PCI-DSS, or SOX.
- Preferred:
- Certifications such as CISSP, CCNP, CEH, or similar are strongly preferred.
As a Senior Security Engineer you will design, implement, and maintain security systems and tooling across our infrastructure. The ideal candidate will have a strong background in security engineering, an in-depth understanding of security tools, and a proactive approach to mitigating cybersecurity risks. This role involves both hands-on technical work, working closely with cross-functional teams and strategic collaboration to enhance our overall security posture. This candidate will provide technical leadership and coach junior members of the security engineering team.
View this job on nocollar jobs