Welcome to RemoteYeah 2.0! Find out more about the new version here.

Remote Senior Product Security Engineer

at Monte Carlo

Posted 1 week ago 1 applied

Description:

  • Monte Carlo is seeking a Senior Product Security Engineer to lead security engineering efforts in a cloud-first environment.
  • The role is central to maintaining and enhancing the vulnerability management program, developing security automation, and managing security alerting/reporting.
  • The engineer will actively participate in new features and code reviews to support the Engineering team.
  • The position requires a deep understanding of AWS security, secure Python development, and security automation.
  • Strong DevSecOps experience, especially embedded within infrastructure and Terraform repositories, is essential.
  • Familiarity with AI tools and their security implications is a plus as the company expands into ML/AI-driven areas.
  • Responsibilities include leading security engineering, driving secure practices, enhancing vulnerability management, developing security automation, managing security alerting/reporting, and participating in code reviews.

Requirements:

  • Candidates must have in-depth knowledge of AWS security.
  • A strong background in secure Python development and security automation is required.
  • Hands-on DevSecOps experience embedded in infrastructure-level systems, including Terraform repositories, is necessary.
  • Experience with SIEM tools such as Splunk, Panther, or Datadog is expected.
  • A strong sense of ownership, a bias for action, and a collaborative mindset are essential traits.
  • Excellent communication skills and a strategic approach to solving security challenges are required.
  • Familiarity with AI tools and security in ML/AI environments is preferred.
  • Security experience in GCP or Azure is a plus.
  • Experience managing a Vulnerability Management program is beneficial.
  • Familiarity with SCA tooling (GitHub Advanced Security, Orca, Wiz, etc.) is advantageous.
  • Understanding of SOC 2, ISO 27001, and/or NIST 800-53 compliance frameworks is preferred.
  • Red/Blue/Purple team experience for supporting 3rd-party pentest scoping is a plus.

Benefits:

  • The role offers a competitive salary, benefits, and equity package.
  • The salary is specifically for US-based employees and will be aligned with the specified range.
  • Various factors, including a candidateโ€™s professional background and experience, will be considered when determining compensation.
  • Final offer amounts may vary from the amounts listed.
  • Monte Carlo is committed to building an inclusive global team that represents a variety of backgrounds, perspectives, beliefs, and experiences.