Remote Senior Security Engineer

Description:

• Design, harden, and continuously test the security of the Nova platform for SAP.
• Lead internal red team efforts to probe access controls and validate tenant isolation.
• Solve complex authentication and identity issues within SAP environments.
• Raise internal security standards and ensure compliance with frameworks like SOC 2 and ISO 27001.
• Collaborate with customer security teams to translate requirements into platform changes.
• Research and develop offensive and defensive AI security strategies for SAP.
• Represent Nova in the SAP security community through writing and speaking engagements.

Requirements:

• Deep hands-on experience in application security, cloud security (especially AWS), and identity management.
• Adversarial thinking with a background in offensive security or serious defensive engineering.
• Knowledge of AI security issues such as prompt injection and sandbox escape.
• Familiarity with compliance frameworks (SOC 2, ISO 27001, GDPR, CCPA) and ability to exceed them.
• Strong communication skills for both technical and executive audiences.
• Public technical contributions (writing, talks, CVEs) are a plus.

Benefits:

• Work with top engineers and researchers on unique security challenges.
• Competitive compensation and meaningful equity.
• Full health, dental, and vision coverage.