We are looking for a Senior Security Engineer to build and scale the technical foundations of our security posture. Unlike a GRC specialist, you will be the technical bridge - engineering the controls that meet compliance requirements and explaining their technical implementation to GRC partners. You will focus on building modern identity platforms, architecting global attack surface visibility across both corporate and product environments.

• Design and implement scalable IAM guardrails for cloud and corporate environments (AWS/GCP/Azure, Okta)

• Lead the design and implementation of security architecture and Zero Trust strategies

• Mentor engineers and scale security knowledge across the organization

• Evaluate and implement security technologies from PoC to production

• Re-architect platforms to eliminate classes of vulnerabilities

• Lead critical incident response efforts

• Develop automated pipelines for asset inventory and SBOM generation

• Define and drive technical roadmap for data protection (encryption, tokenization, key management)

• Implement secure-by-default configurations for containerized environments (Kubernetes, EKS) and IaC workflows (Terraform)

• Engineer resilient systems with disaster recovery capabilities

• Provide authoritative context and guidance on security controls to compliance and audit teams

• Participate in on-call rotation

• 6+ years in technical security roles, with a minimum of 3+ years specifically in Cloud Security Engineering within a SaaS environment.

• Software Development Mastery: Must be highly proficient in Python, Go, or similar languages to develop custom security tooling, internal APIs, and automated remediation systems.

• Identity Architecture Expertise: Deep technical knowledge of identity platforms (IdP, IGA, PAM) and standards such as SAML, OAuth 2.0, OIDC, and SCIM ; experience integrating Microsoft Entra ID (Okta/Azure AD) with cloud environments is essential.

• Infrastructure as Code (IaC) Engineering: Proven track record of building hardened, reusable Terraform modules and implementing global security guardrails and Service Control Policies (SCPs).

• Container & Orchestration Security: Expertise in engineering secure-by-default configurations for Kubernetes (EKS) and containerized environments.

• Automated Security Pipelines: Experience developing and integrating security controls (SAST/SCA/SBOM) into CI/CD workflows using GitHub Actions or GitLab CI.

• Cloud Platform Depth: Strong, hands-on experience with AWS security services-including IAM, KMS, Security Hub, and GuardDuty-with the ability to architect systems across Azure and GCP.

• Data Protection Engineering: Strong knowledge of encryption, key management, tokenization, and DLP to drive the technical roadmap for data protection.

• Security Domain Expertise: Deep understanding of Network Security, application security, and the ability to re-architect platforms to systematically eliminate classes of vulnerabilities.

• Incident Response Leadership: Ability to lead critical incident response efforts and engineer resilient systems with disaster recovery capabilities.

• Communication & Stakeholder Alignment: Excellent English communication skills to provide authoritative guidance to both technical engineering teams and non-technical compliance/audit partners