Staff Security Operations Engineer

Job not on LinkedIn

🕒 Yesterday

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Apollo GraphQL

WebsiteLinkedInAll Job Openings

51 - 200 employees

🔌 API

🏢 Enterprise

☁️ SaaS

API • Enterprise • SaaS

Apollo GraphQL is a company that offers a comprehensive platform for GraphQL development, enabling developers to create powerful, context-rich APIs. The platform, known as Apollo GraphOS, facilitates seamless app development by unifying APIs into a declarative query-based system, enhancing developer efficiency and offering real-time data access. Apollo's solutions support enterprise-level implementations, providing tools for backend teams to create a composable and self-service data graph that powers diverse applications with consistent and performant user experiences. With a focus on scalability, security, and rapid AI-driven iteration, Apollo GraphQL is trusted by industry leaders such as Netflix, PayPal, and Warner Brothers. The company is committed to improving collaboration across development teams and streamlining the delivery of feature improvements.

📋 Description

• Partner with engineering teams to conduct threat modeling and security reviews on new features and architecture changes • Establish and evolve Apollo's application security program including SAST/DAST tooling, dependency scanning, and secure coding standards • Drive security requirements into the SDLC, embedding security gates into CI/CD pipelines • Identify and remediate vulnerabilities in Apollo's products and APIs, with a focus on reducing systemic risk rather than one-off fixes • Act as a security advisor for product teams building customer-facing features, particularly those involving authentication, authorization, and data handling • Advance Apollo’s detection and response strategy in partnership with engineering and IT leadership • Implement and maintain adherence to SOC 2 and other cloud security frameworks • Handle escalations from Sales and Customer Success • Build and tune monitoring, logging, and alerting systems to improve visibility while reducing noise • Drive automation of SecOps workflows to speed up investigation and response • Guide secure adoption of AI across Apollo - from internal use by engineers to AI-powered product features • Participate in our on-call rotation (we keep this lightweight and reasonable)

🎯 Requirements

• 6+ years in security engineering, spanning both application security and security operations • Strong foundation in AppSec: threat modeling, SAST/DAST, dependency management, secure SDLC practices • Deep expertise with detection and response in cloud-native environments • Experience building and automating security tooling (scripting/programming language, SIEM, SOAR, or AppSec tooling) • Proven ability to partner with engineering teams to improve security posture with while minimizing the impact on delivery times • Track record of influencing security culture across an engineering organization • Strong knowledge of SOC 2, ISO 27001, or similar security frameworks • Proven ability to lead or coordinate incident response across multiple teams • Track record of influencing operational security culture and practices without direct authority

🏖️ Benefits

• Health insurance • Dental and Vision benefits • 401(k) • Flexible working hours • Professional development opportunities