We are seeking a Staff 2 Security Platform Engineer to architect, build, and operate security services that are core to the company’s cloud infrastructure and product platforms.
This is a hybrid engineering role, blending deep software development expertise with hands-on operational excellence.
You will design highly scalable security services such as authentication, authorization, identity, secrets management, policy enforcement, and security telemetry pipelines.
You will ensure these systems are reliable, observable, and resilient in production.
The role involves collaboration across engineering, security, compliance, and platform organizations to deliver secure-by-default building blocks for product teams.
Responsibilities include architecting, designing, and developing security platform services with a focus on scalability, security, and developer experience.
You will lead operational design for reliability, build comprehensive observability, monitoring, and incident response automation into security-critical services.
The role requires building automation and tooling for self-healing systems, proactive risk detection, failure recovery, and continuous resilience testing.
You will collaborate with compliance, governance, and risk teams to translate regulatory and policy requirements into scalable technical controls.
Leading technical design reviews, security architecture reviews, and incident postmortems for platform-level incidents is also part of the job.
Mentoring engineers on security and operational best practices is expected.
You will own the end-to-end delivery of services from initial design and development through deployment, production hardening, and lifecycle maintenance.
Requirements:
You must have 10+ years of experience in software engineering, SRE, or security engineering roles, with significant experience operating security platform services.
Strong backend software development experience in languages such as Go, Java, Rust, or Python is required.
Expertise with distributed systems, cloud infrastructure (AWS, GCP, Azure), Kubernetes, service mesh, and container orchestration is necessary.
A strong understanding of security domains including IAM, OAuth2, OIDC, PKI, secrets management, policy engines, audit pipelines, and zero trust architecture is essential.
Experience in building highly reliable, observable, and resilient production systems is required.
Operational expertise in SLOs, SLIs, error budgets, on-call leadership, and incident management is necessary.
Strong collaboration skills to drive alignment across engineering, security, and compliance stakeholders are required.
Excellent communication skills with the ability to influence technical and business leaders are essential.
Benefits:
The company promotes a culture of belonging, ensuring that everyone can lead, grow, and challenge what’s possible.
Confluent is proud to be an equal opportunity workplace, where employment decisions are based on job-related criteria without regard to protected classifications.
The company values diverse perspectives and works across time zones and backgrounds to foster innovation.
