Senior Security Operations Engineer

About the role

This is a senior position in a fast‑growing AI‑driven technology company. You will work at the intersection of security engineering and security operations, protecting large‑scale cloud infrastructure, applications and sensitive customer environments that power advanced voice AI solutions.

Key responsibilities

• Conduct threat modeling, security architecture reviews and secure code reviews for new services and infrastructure changes.
• Design, deploy and maintain security tooling in development pipelines, including SAST, SCA, DAST, secret scanning and IaC security controls.
• Partner with engineering teams to harden AWS infrastructure, IAM configurations, Terraform‑managed environments and network segmentation.
• Lead vulnerability management: triage, prioritize, track and support remediation across systems and applications.
• Support incident response activities, including investigations, root‑cause analysis and post‑incident hardening.
• Monitor and respond to security alerts from endpoint, cloud and application security platforms.
• Participate in compliance and audit activities for SOC 2, ISO 27001, PCI 4.0 and related frameworks.
• Assist sales, legal and customer‑facing teams with security questionnaires, RFP responses and trust‑related requests.

Required profile

• 5+ years of experience in security engineering, security operations or hybrid security‑focused roles within cloud or technology environments.
• Hands‑on experience with application security concepts, threat modeling, secure code review and OWASP Top 10.
• Proven ability to work autonomously in a fully remote, collaborative setting.

Required skills

• AWS cloud security and IAM
• Terraform and infrastructure‑as‑code security
• SAST, SCA, DAST and secret scanning tools
• Vulnerability management and incident response
• Threat modeling and secure code review
• Knowledge of SOC 2, ISO 27001 and PCI 4.0 compliance frameworks
• Understanding of OWASP Top 10 vulnerabilities