Senior Security Engineer 3 - Infrastructure And Automation

Summary

Join PagerDuty as a Senior Security Engineer (Infrastructure & Automation) and lead security initiatives for our SaaS offerings. You will conduct architecture reviews, threat modeling, and implement security tools, leveraging automation to scale solutions. Collaborate with engineering teams to ensure secure and reliable systems. This role requires extensive experience in cloud security, particularly AWS, and proficiency in security tools and automation. The ideal candidate is passionate about securing infrastructure at scale and creating automated solutions. We offer a competitive salary and benefits package, including flexible work arrangements and generous paid time off.

Requirements

• 5+ years of experience as a full-stack Security Engineer in a AWS native, micro-service SaaS environment
• Strong expertise in cloud security, particularly AWS services including but not limited to: GuardDuty, CloudTrail, Secrets Manager, EKS/ECR, IAM family, Config, Service Mesh architectures
• Proficiency with security tools: Vulnerability Management & EDR: Wiz, Snyk, Qualys/Nessus, Crowdstrike; SIEM: SumoLogic or Splunk
• Experience with Infrastructure as Code and CI/CD: Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD
• 4+ years of experience and proficiency in at least one programming language and framework (Python, Bash, Ruby on Rails, Elixir, or Java)
• Strong understanding of Threat Modeling principles
• Experience with Security Incident Response & Risk Management
• High appetite for challenging problems with a high degree of ownership

Responsibilities

• Lead technical security initiatives by conducting architecture reviews and threat modeling sessions for new and existing services
• Design and implement security controls for cloud infrastructure and containerized environments
• Work closely with Product Engineering teams to review service designs (full stack) and provide security-focused recommendations
• Resolve technical ambiguity in system designs, collaborating with engineering management and staff engineers
• Monitor and maintain security tooling supporting infrastructure security controls
• Design and implement security automations and tool integrations to scale security operations
• Build and maintain security guardrails and automated compliance controls
• Develop automated vulnerability management workflows to drive timely remediation
• Create security relevant alerting and metrics for visibility and reporting
• Implement automated incident response playbooks
• Mentor and guide team members on security best practices and implementation approaches
• Participate in our team's on-call rotation, triaging and addressing security issues as they arise
• Contribute to roadmap and annual planning discussions

Preferred Qualifications

• Current or past experience with obtaining and maintaining FedRAMP authorization
• Experience working at a SaaS company larger than 1000 employees and 100M in revenue
• Strong problem-solving abilities with effective change management skills
• Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure
• Demonstrated history of mentoring and coaching
• Experience building Security Orchestration, Automation, and Response (SOAR) playbooks
• Strong written and verbal communication skills
• Working knowledge and experience with PagerDuty Incident Management and Process Automation products
• Familiarity with Corporate security needs and solutions, and ability to provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO strategic initiatives and mandates

Benefits

• Competitive salary
• Comprehensive benefits package from day one
• Flexible work arrangements
• Generous paid vacation time
• Paid holidays and sick leave
• Dutonian Wellness Days - scheduled company-wide paid days off in addition to PTO
• Company equity*
• ESPP (Employee Stock Purchase Program)*
• Retirement or pension plan*
• Paid parental leave - up to 22 weeks for pregnant parent, up to 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)*
• HibernationDuty - an annual company paid week off when everyone at PagerDuty, with the exception of a small, coverage crew, is asked to take a much needed break to truly disconnect and recharge
• Paid volunteer time off - 20 hours per year
• Company-wide hack weeks
• Mental wellness programs