Remote Staff Security Engineer

Description:

• Atlan is seeking a Staff Security Engineer to conduct thorough security assessments of the current infrastructure, applications, and cloud environments, identifying strengths and areas for improvement.
• The role involves conducting detailed threat modeling and risk assessments to identify, prioritize, and mitigate potential security threats.
• Responsibilities include documenting existing security architecture, policies, and procedures, and developing a comprehensive security strategy aligned with Atlan's business goals and industry best practices.
• The engineer will establish security metrics and key performance indicators (KPIs) to measure the effectiveness of security controls.
• The position requires designing and implementing robust security controls across the platform, including network, application, and infrastructure security.
• The engineer will integrate security best practices into the CI/CD pipeline to ensure seamless DevSecOps practices.
• Developing and implementing incident response plans, conducting regular drills, and continuously improving security operations through monitoring and ongoing assessments are key tasks.
• The role includes advocating for security best practices across the organization and fostering a security-first mindset and culture of security awareness.
• The engineer will lead and mentor other team members, promoting continuous learning and improvement in security practices.
• Ensuring compliance with relevant security standards and regulations, and preparing for and assisting in security audits and certifications are also part of the job.

Requirements:

• Candidates must have 10+ years of experience leading security initiatives for enterprises in an information security (InfoSec) consultant or architect role.
• Proven experience with implementing DevSecOps principles, including Shift Left and Policy as Code methodologies, is required.
• Experience implementing application security architecture and cloud security architecture is necessary, along with in-depth knowledge and experience with Kubernetes (K8s) security.
• Candidates should have experience integrating security practices into the Secure Development Lifecycle, with SaaS security or platform security experience being a strong plus.
• A strong understanding of security threats, vulnerabilities, and risk mitigation strategies is essential.
• Experience with security tools such as CIS Benchmarks and SIEM solutions is preferred.
• Excellent analytical and problem-solving skills, along with strong communication, collaboration, and interpersonal skills, are required.
• The ability to work independently and as part of a team is necessary, along with a passion for security and a commitment to continuous learning.
• CISSP, CISA, and/or CKS Certifications are strongly preferred.

Benefits:

• At Atlan, employees enjoy ownership from day one, allowing them to own impactful projects, chart their growth, and collaborate with some of the best minds in the industry.
• The company offers limitless opportunities for growth, encouraging employees to take initiative and explore their potential.
• Employees become part of a global data community, deeply embedded in the modern data stack, with opportunities to contribute to open-source projects, attend meet-ups, and grow through conferences and learning opportunities.
• Atlan is a fast-growing, fully remote company trusted by global leaders, providing a category-defining platform for data and AI governance.
• The company is committed to diversity and authenticity, creating a workplace where everyone thrives and ensuring equal opportunity for all employees.