Senior Security Engineer

Summary

Join Underdog, the fastest-growing sports gaming company, and contribute to building innovative games and products for American sports fans. As a Cloud Security Engineer, you will manage and optimize cloud security monitoring tooling, investigate security incidents, and implement security logging and monitoring. You will also conduct vulnerability management, develop security automation, and collaborate with development and operations teams. This role requires 5+ years of experience in cloud security, hands-on experience with Kubernetes, and knowledge of at least one programming language. Underdog offers a competitive salary, unlimited PTO, parental leave, a home office allowance, and comprehensive benefits.

Requirements

• 5+ years of experience in cloud security, preferably with AWS services (CloudTrail, IAM, EC2, S3, RDS, etc.)
• Hands-on experience with Kubernetes and container environments
• Knowledge of at least one programming language (Python, Ruby, JavaScript/TypeScript, etc.)
• Experience with security frameworks and compliance standards (e.g., CIS, NIST, SOC 2, ISO 27001)
• Strong problem-solving skills and ability to work independently or as part of a team

Responsibilities

• Manage and optimize tooling for cloud security monitoring
• Investigate security incidents, perform root cause analysis, and recommend corrective actions
• Implement security logging and monitoring to detect and respond to threats
• Conduct vulnerability management to identify and remediate security risks in cloud infrastructure, as well as mobile and web application code
• Develop and maintain security automation scripts and services
• Secure and optimize CDN configurations to enhance application security and performance
• Collaborate with development and operations teams to integrate security into CI/CD pipelines
• Stay up to date with emerging threats, vulnerabilities, and security best practices

Preferred Qualifications

• Experience with Cloudflare (WARP VPN, WAF, bot management, rate limiting, workers, etc.)
• Hands-on experience with Lacework
• Hands-on experience with Infrastructure-as-Code (IaC) tools such as Terraform and Helm
• Hands-on experience with application/security logging such as DataDog and SumoLogic
• Hands-on experience with Nessus and Qualys vulnerability scanners

Benefits

• Unlimited PTO (we're extremely flexible with the exception of the first few weeks before & into the NFL season)
• 16 weeks of fully paid parental leave
• A $500 home office allowance
• A connected virtual first culture with a highly engaged distributed workforce
• 5% 401k match, FSA, company paid health, dental, vision plan options for employees and dependents