Senior Security Engineer

Summary

Join Ditto's expanding security team as a seasoned security professional to elevate its security program. You will significantly influence the team's direction, threat response, and the development of a more secure and efficient organization. Leverage your expertise in security engineering, DevSecOps, or related fields to make a substantial impact. This role requires a strong understanding of public key cryptography and hands-on cloud infrastructure security experience (AWS focus). You will implement and tune security monitoring tools and participate in on-call rotations. Excellent communication skills and experience in fully remote asynchronous environments are essential. Ditto offers competitive salaries, stock options, comprehensive benefits, and a flexible work environment.

Requirements

• 6+ years of experience in security engineering, DevSecOps, or related technical security roles
• Strong understanding of public key cryptography, including implementation, management and troubleshooting
• Hands-on experience securing cloud infrastructure (Focused on AWS. Additional Azure, or GCP experience is a bonus)
• Experience in implementing and tuning security monitor tooling. For example, Wiz, SentinelOne, GitHub Advanced Security, etc
• Willing to take part in an on-call rotation
• Excellent written communication skills and experience working in fully remote async environments
• An interest in pushing their boundaries, learning new skills and growing their career

Responsibilities

• Develop and implement security strategies and solutions
• Respond to and mitigate security threats and vulnerabilities
• Build and maintain security monitoring tools and systems
• Collaborate with engineering teams to integrate security into the software development lifecycle (DevSecOps)
• Participate in on-call rotations to provide timely security support
• Document security processes and procedures
• Stay current on the latest security threats and vulnerabilities

Preferred Qualifications

• Scripting experience (Python, Typescript, or similar)
• Kubernetes experience
• Knowledge of Federal compliance frameworks (CMMC, FedRAMP, etc)
• Relevant security certifications (CISSP, GCIH, OSCP, or similar)

Benefits

• Competitive salaries
• Stock options
• Medical, dental, vision, life, and disability coverage
• Flexible spending account (FSA)
• Flexible vacation policy
• 401(k) plan
• Office located in Atlanta, GA. Available for team member use