Staff Security Operations Engineer

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Staff Security Operations Engineer based in the United States.

This role sits at the intersection of application security, security operations, and engineering partnership, focusing on building secure systems rather than simply responding to threats. You will work closely with product and infrastructure teams to identify vulnerabilities early, shape secure architecture, and embed security into every stage of the software development lifecycle. The position combines offensive security thinking with defensive engineering, requiring someone who can anticipate attack paths while building scalable protections and automation. You will also play a key role in strengthening detection and response capabilities across cloud-native environments, ensuring high visibility and fast, effective incident handling. In addition, you will help define security standards for APIs, authentication, and data handling in modern distributed systems. This is a high-impact role where technical depth, creativity, and collaboration directly influence the security posture of complex, global-scale platforms.

Accountabilities:

• Partner with engineering teams to perform threat modeling, architecture reviews, and security assessments for new features and systems.
• Design, build, and evolve application security programs, including SAST/DAST, dependency scanning, and secure coding practices.
• Embed security controls and requirements into CI/CD pipelines and the broader software development lifecycle.
• Identify, prioritize, and remediate vulnerabilities with a focus on reducing systemic risk across products and APIs.
• Strengthen detection and response capabilities through improved monitoring, logging, alerting, and incident response workflows.
• Automate security operations processes to improve efficiency, reduce noise, and accelerate threat detection and remediation.
• Support compliance initiatives such as SOC 2 and other security frameworks while maintaining scalable engineering practices.
• Act as a security advisor to product and engineering teams, especially around authentication, authorization, and data protection.

Requirements:

• 6+ years of experience in security engineering, spanning both application security and security operations.
• Strong expertise in application security fundamentals including OWASP, threat modeling, secure SDLC, and API security.
• Hands-on experience with cloud security in environments such as AWS or GCP and modern cloud-native architectures.
• Experience building or integrating security tooling, automation, or detection systems (e.g., SIEM, SOAR, or custom scripts).
• Proven ability to collaborate closely with engineers to improve security posture without slowing delivery velocity.
• Strong background in incident response coordination and operational security in production environments.
• Familiarity with security frameworks such as SOC 2, ISO 27001, or equivalent compliance standards.
• Excellent communication skills with the ability to translate complex security risks into clear, actionable guidance.

Benefits:

• Competitive compensation with equity participation in a high-growth engineering organization.
• Remote-first work environment with flexibility across locations.
• Comprehensive health, dental, and vision insurance coverage.
• Generous PTO policy and support for work-life balance.
• Home office setup and ongoing technology support.
• Learning and development budget for courses, certifications, and conferences.
• Opportunities to work on cutting-edge security challenges in large-scale, cloud-native systems.
• Inclusive and collaborative engineering culture focused on innovation and impact.

How Jobgether works:

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

 Why Apply Through Jobgether? 

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1