Security Engineer

• Build detections and security signal pipelines in Datadog. • Serve as the subject matter expert on AWS Cloud and on-prem infrastructure security. • Define and set up AWS and on-prem Security Monitoring/Best Practices Strategy. • Act as the technical lead during security incidents, including investigation and remediation. • Improve Terraform Modules and Infrastructure as Code (IaC) to follow security best practices. • Develop and implement a vulnerability monitoring strategy and integrate it into CI/CD pipelines. • Build security automation using Python, scripting, and APIs. • Partner with Infrastructure on AWS security engineering, including IAM, KMS, and network segmentation. • Operate SOC 2 Type 2 evidence collection and audit response. • Drive ISO 27001 implementation work, including risk assessments and control mapping. • Ensure infrastructure compliance with regulatory requirements. • Run vendor and subprocessor risk reviews. • Respond to customer security questionnaires and external inquiries. • Mentor and enable other team members to improve their security posture. • 4–7 years of security engineering experience, ideally at a SaaS or remote-first company. • Software development experience with Go or Python. • Proven AWS Security Experience (IAM, KMS, VPC, CloudTrail, GuardDuty). • Direct experience supporting a SOC 2 Type 2 audit cycle. • Familiarity with compliance requirements such as ISO 27001, HIPAA, and GDPR. • Experience with IaC tools like Terraform and containers such as Docker. • Proficiency with monitoring and observability tools like Datadog or Prometheus. • Strong focus on risk awareness and knowing when to make fast versus slow decisions. • Security certifications such as CISSP, AWS Security Specialty, or GIAC are a plus.