Security Engineer

Job not on LinkedIn

November 4

Apply Now

Receive Emails with Similar Jobs

Veza

WebsiteLinkedInAll Job Openings

Cybersecurity • SaaS • Enterprise

Veza is a leading identity security company specializing in access management and cybersecurity. The company has developed advanced solutions like the Access Graph to visualize and control data access across all enterprise systems, enhancing productivity and security. Veza's offerings include privileged access monitoring, SaaS access security, and cloud access management. These services are designed to secure identities, manage non-human identity access, and automate identity governance. By leveraging its unique GenAI-based capabilities, Veza helps organizations reduce the risk of data breaches and ensure compliance. The platform integrates seamlessly with major cloud providers and security services to provide a comprehensive view of user and machine identities.

51 - 200 employees

Founded 2020

🔒 Cybersecurity

☁️ SaaS

🏢 Enterprise

📋 Description

• Define and monitor standards for the operation, administration, and continuous improvement of AppSec and CloudSec tools, including WAFs, SAST, DAST, SCA, IaC/container scanners, and CNAPP platforms. • Perform threat modeling, architecture reviews, and source code assessments to identify and mitigate risks. • Drive secure-by-design patterns across services, APIs, and infrastructure — including encryption, key management, secrets handling, and secure protocol design. • Partner with product and engineering teams to review plans, designs, and code for security considerations. • Guide cloud hardening across AWS (and optionally Azure/GCP) environments using IaC templates, guardrails, and CSPM/CNAPP controls. • Maintain and update dependencies, container images, and libraries to reduce exposure. • Integrate and automate security tooling (SAST, DAST, SCA, IaC scanning, SBOM generation) within CI/CD pipelines. • Develop scripts and automations (e.g., Python, Bash, Terraform, REST APIs, GitHub Actions, or GitLab CI) to streamline scanning, reporting, and provisioning. • Establish security metrics, KPIs, and dashboards to measure program maturity and remediation progress. • Support the design and implementation of secure pipelines and infrastructure automation in collaboration with DevOps teams. • Triage vulnerabilities across multiple sources (SAST/DAST/SCA/IaC/API/CSPM), manage false positives, and ensure clear audit trails for exceptions. • Serve as first-line triage for Responsible Disclosure submissions — reproduce issues, assign owners, and track SLAs to closure. • Support compliance and audit activities with documentation of logging, monitoring, SBOMs, and vulnerability reporting. • Continuously monitor emerging threats, maintain a security issue register, and report status to leadership. • Collaborate across teams to establish and maintain a roadmap for the Application and Cloud Security programs, continuously evolving capabilities and controls. • Influence engineers and architects to adopt consistent security patterns, frameworks, and templates. • Develop and maintain documentation, threat models, and diagrams (data flow, network) for technical and business stakeholders. • Evaluate new security tools and technologies for alignment with organizational needs.

🎯 Requirements

• 3+ years of experience in Security Engineering, Cloud, or App Security roles. • Proficiency with modern SDLC and DevSecOps practices in cloud-native environments (microservices, containers/Kubernetes, serverless, IaC). • Hands-on experience operating and tuning AppSec tools (SAST, DAST, SCA, IaC/container scanning, CNAPP, WAF). • Strong understanding of cloud architecture, networking, and security (Strong AWS experience required). • Experience with IaC (Terraform, CloudFormation) and CI/CD tools (GitHub, GitLab, CircleCI). • Familiarity with frameworks and standards such as OWASP Top 10, ASVS, NIST SSDF, CIS Benchmarks, ISO 27001, SOC 2. • Scripting/automation skills (Python preferred). • Excellent communication and collaboration skills with the ability to simplify technical risk for diverse audiences.

🏖️ Benefits

• Compensation package includes equity and a competitive benefits package.