Senior Security Engineer 3 - Infrastructure And Automation

Summary

Join PagerDuty's diverse team as a Senior Security Engineer (Infrastructure & Automation)! You will lead security initiatives, focusing on infrastructure security through architecture reviews, threat modeling, and security tool implementations. Leverage automation to scale security solutions and collaborate with engineers across teams. This role requires 5+ years of experience as a full-stack Security Engineer in an AWS native, micro-service SaaS environment, strong expertise in cloud security, and proficiency with various security tools. The ideal candidate possesses strong problem-solving abilities and a high appetite for challenging problems. PagerDuty offers a competitive salary, comprehensive benefits, flexible work arrangements, and generous paid time off.

Requirements

• 5+ years of experience as a full-stack Security Engineer in a AWS native, micro-service SaaS environment
• Strong expertise in cloud security, particularly AWS services including but not limited to: GuardDuty, CloudTrail, Secrets Manager, EKS/ECR, IAM family, Config, Service Mesh architectures
• Proficiency with security tools: Vulnerability Management & EDR: Wiz, Snyk, Qualys/Nessus, Crowdstrike; SIEM: SumoLogic or Splunk
• Experience with Infrastructure as Code and CI/CD: Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD
• 4+ years of experience and proficiency in at least one programming language and framework (Python, Bash, Ruby on Rails, Elixir, or Java)
• Strong understanding of Threat Modeling principles
• Experience with Security Incident Response & Risk Management
• High appetite for challenging problems with a high degree of ownership

Responsibilities

• Lead technical security initiatives by conducting architecture reviews and threat modeling sessions for new and existing services
• Design and implement security controls for cloud infrastructure and containerized environments
• Work closely with Product Engineering teams to review service designs (full stack) and provide security-focused recommendations
• Resolve technical ambiguity in system designs, collaborating with engineering management and staff engineers
• Monitor and maintain security tooling supporting infrastructure security controls
• Design and implement security automations and tool integrations to scale security operations
• Build and maintain security guardrails and automated compliance controls
• Develop automated vulnerability management workflows to drive timely remediation
• Create security relevant alerting and metrics for visibility and reporting
• Implement automated incident response playbooks
• Mentor and guide team members on security best practices and implementation approaches
• Participate in our team's on-call rotation, triaging and addressing security issues as they arise
• Contribute to roadmap and annual planning discussions

Preferred Qualifications

• Current or past experience with obtaining and maintaining FedRAMP authorization
• Experience working at a SaaS company larger than 1000 employees and 100M in revenue
• Strong problem-solving abilities with effective change management skills
• Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure
• Demonstrated history of mentoring and coaching
• Experience building Security Orchestration, Automation, and Response (SOAR) playbooks
• Strong written and verbal communication skills
• Working knowledge and experience with PagerDuty Incident Management and Process Automation products
• Familiarity with Corporate security needs and solutions, and ability to provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO strategic initiatives and mandates

Benefits

• Competitive salary
• Comprehensive benefits package from day one
• Flexible work arrangements
• Generous paid vacation time
• Paid holidays and sick leave
• Dutonian Wellness Days - scheduled company-wide paid days off in addition to PTO
• Company equity*
• ESPP (Employee Stock Purchase Program)*
• Retirement or pension plan*
• Paid parental leave - up to 22 weeks for pregnant parent, up to 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)*
• HibernationDuty - an annual company paid week off when everyone at PagerDuty, with the exception of a small, coverage crew, is asked to take a much needed break to truly disconnect and recharge
• Paid volunteer time off - 20 hours per year
• Company-wide hack weeks
• Mental wellness programs