causaly - Senior Security Engineer
Upload My Resume
Drop here or click to browse · Tap to choose · PDF, DOCX, DOC, RTF, TXT
Requirements
• Strong knowledge of cloud security — IAM, network security, secure configuration best practices. • Hands-on experience with security tooling in CI/CD pipelines (SAST, SCA, secrets scanning, container scanning). • Proven experience in a vulnerability management role, through the entire lifecycle. • Passionate and knowledgeable about using LLMs for building robust security practices, including triage, secure code review, threat analysis and tooling • In-depth knowledge of secure coding practices in Node.js, TypeScript, Python, and/or React. • Familiarity with security frameworks and standards (e.g. OWASP, NIST, CIS Benchmarks). • Strong communication skills, with the ability to translate risk for both technical and non-technical audiences. • Experience with Semgrep for static analysis and custom rule authoring. • Experience with Wiz for cloud security posture management. • Experience running or contributing to a Security Champions program. • Experience with threat modelling (e.g. STRIDE). • Familiarity with SOC 2 and ISO 27001. • Relevant certifications are considered a plus (e.g. CISSP, IaaS specific certifications, etc..).
Responsibilities
• Own the vulnerability management program end-to-end: strategy, tooling, prioritisation, and remediation tracking across dependencies, containers, and cloud environments. • Define and maintain a dependency security strategy, including policies for third-party library adoption and update cadence. • Integrate and maintain security tooling in CI/CD pipelines (SAST, SCA, secrets detection, container scanning). • Act as a security consultant to product and engineering squads — supporting design reviews, architecture decisions, and secure coding practices. • Define and maintain security standards and guidelines practical for development teams. • Manage and continuously improve the Security Champions program — growing security awareness and capability across engineering teams. • Support SecOps in incident triage and response, contributing security engineering context where needed.
Benefits
• 🩺 Private medical insurance • 🦷 Private dental insurance • 🤓 Personal development budget • 🧘 Individual wellbeing budget • 🌴 25 days holiday plus bank holidays • 🥳 Your birthday off! • 🚀 Potential to have real impact and accelerated career growth as a member of an international team that's building a transformative AI product.
No credit card. Takes 10 seconds.