Senior Security Engineer at Zoolatech

ABOUT THE PROJECT

We are seeking a Senior Security Engineer to join a fast-paced Security Engineering team. This role will serve as a key technical leader, focused on building and implementing foundational security controls to protect the platform, data, and users. The goal is to establish a secure, scalable, and resilient cloud infrastructure and product environment by default. The engineer will collaborate cross-functionally with product, IT, and compliance teams to embed security into every stage of the development lifecycle.

REQUIREMENTS

– 6+ years in technical security roles, including 3+ years in cloud security (SaaS environment)
– Deep expertise in product/app security, IAM, IaaS, and network security
– Strong experience with AWS security services (IAM, KMS, Security Hub, GuardDuty)
– Proficiency in identity and access management platforms (IdP, IGA, PAM), and standards (SAML, OAuth 2.0, OIDC, SCIM)
– Proven track record with security guardrails for IaC (preferably Terraform), CI/CD, and Kubernetes
– Experience developing custom security tooling and rules (e.g., CodeQL)
– Strong knowledge of data protection (encryption, key management, DLP, etc.)
– Scripting or automation skills in Python, Go, or similar
– Excellent communication skills in English to communicate to technical and non-technical stakeholders
– Ability to work with alignment to US Central Time (CT)

RESPONSIBILITIES

– Design and implement scalable IAM guardrails for cloud and corporate environments (AWS/GCP/Azure, Okta)
– Lead the design and implementation of security architecture and Zero Trust strategies
– Mentor engineers and scale security knowledge across the organization
– Evaluate and implement security technologies from PoC to production
– Re-architect platforms to eliminate classes of vulnerabilities
– Lead critical incident response efforts
– Develop automated pipelines for asset inventory and SBOM generation
– Define and drive technical roadmap for data protection (encryption, tokenization, key management)
– Implement secure-by-default configurations for containerized environments (Kubernetes, EKS) and IaC workflows (Terraform)
– Engineer resilient systems with disaster recovery capabilities
– Provide authoritative context and guidance on security controls to compliance and audit teams
– Participate in on-call rotation

WHAT WE OFFER

– Paid Vacation
– Sick Days
– Floating Holidays
– Sport/Insurance
– Compensation for English Classes
– Charity Training Compensation

COMPENSATION & BENEFITS

– Negotiable