About you

We're seeking an experienced Security Engineer to develop and implement comprehensive security measures within our federated data platform's architecture. You'll be responsible for designing robust security controls that protect sensitive data across distributed environments while enabling seamless and compliant data sharing. Your expertise will ensure our platform maintains the highest security standards while supporting our clients' evolving data governance needs.

What you bring to the table

• 5+ years of relevant industry experience developing security architecture for broad and complex systems

• Experience working with both on-premises and major cloud platforms (Azure, GCP, OCI, AWS)

• Experience securing container-based architectures (Kubernetes), APIs, and microservices

• Broad knowledge of software design, architecture, development, and software testing methodologies

• Experience with security frameworks such as NIST CSF, ISO 27001, and MITRE ATT&CK

• Proficiency with Secure Software Development Life Cycle (SDLC) processes and DevSecOps tools (GitHub, Artifactory, SonarQube, Jenkins, DefectDojo)

• Strong understanding of encryption technologies, identity management, and authentication protocols

• Experience with security monitoring solutions and SIEM implementation

• Excellent communication skills with the ability to translate complex security concepts for diverse audiences

Highly Desired Skills

• Experience with federated identity management and zero trust architectures

• Knowledge of data protection regulations (GDPR, CCPA, HIPAA) and compliance requirements

• Expertise in securing AI/ML systems and protecting against model-specific vulnerabilities

• Experience with threat modeling, penetration testing, and vulnerability management

• Background in implementing security for data mesh or federated data architectures

• Cloud security certifications (AWS Security Specialty, Azure Security Engineer, etc.)

• Professional security certifications (CISSP, OSCP, CISM, or equivalent)

• Experience with secure data sharing protocols and privacy-preserving technologies

• Understanding of security implications of distributed ledger technologies

You will be responsible for

• Develop and implement the platform's comprehensive security architecture, including social engineering countermeasures, process, software, hardware, and network elements

• Design and implement robust authentication, authorization, and access control mechanisms for federated data environments

• Create and maintain security documentation, including threat models, security policies, and incident response procedures

• Perform security risk assessments and develop mitigation strategies across the platform

• Collaborate with development teams to integrate security throughout the development lifecycle

• Implement automated security testing and continuous monitoring solutions

• Work with internal teams and clients to understand the risk management needs of different business units and industries

• Ensure the security architecture meets business, privacy, industry, and regulatory standards

• Develop resources and tools to support platform security and enable security self-service capabilities

• Stay current with emerging threats and security technologies relevant to distributed data systems

What we offer

Join us in shaping the future of distributed data architectures in a remote-first environment. Enjoy competitive compensation, generous stock participation and the chance to work with cutting-edge technology.

How to Apply

Please submit your resume along with a brief description of a complex security architecture you've designed and implemented, particularly in a distributed or federated environment. We're interested in understanding your approach to balancing robust security controls with usability and performance requirements.