CrawlJobs Logo

Senior Security Engineer

scribd.com Logo

Scribd

Location Icon

Location:
United States , San Francisco

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

119000.00 - 225500.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

The Infrastructure Security team at Scribd is responsible for protecting our applications, platforms, and users through proactive, engineering-led security practices. As Scribd continues to scale, we are evolving our Detection & Response capabilities from reactive alerting toward a time-based security model - where speed, signal quality, and resilience are first-class design goals. As a Senior Security Engineer focused on Detection & Response, you will help shape Scribd’s long-term detection and response capabilities while owning execution within a defined domain. You’ll work closely with application, infrastructure, and IT security teams - as well as our managed detection and response (MDR) partner - to design high-fidelity telemetry, operationalize our SIEM, and continuously reduce mean time to detect and respond (MTTD/MTTR). This role is ideal for someone who enjoys building durable security systems, translating incidents into engineering improvements, and gradually expanding ownership through demonstrated impact.

Job Responsibility:

  • Design and operationalize detection capabilities
  • Own and evolve detection coverage across applications, APIs, cloud infrastructure, identity, and bot/abuse surfaces
  • Translate threat models and real incidents into high-confidence detection patterns
  • Partner with engineers to instrument high-quality, security-relevant telemetry at the application and platform layers
  • Operationalize and mature the SIEM
  • Lead enrichment, normalization, and correlation of logs into actionable security signals
  • Define detection standards and patterns to reduce noise and improve signal quality
  • Ensure telemetry supports both internal investigations and MDR-led monitoring
  • Improve response speed and quality
  • Reduce MTTD and MTTR through improved triage, automation, and contextual alerting
  • Build and maintain runbooks, response workflows, and post-incident learning loops
  • Partner with IT Security and the MDR provider to continuously improve detection and response outcomes
  • Advance runtime and behavior-based protections
  • Help design and deploy runtime detection and protection techniques (RASP-like approaches), especially for modern interfaces such as GraphQL
  • Support bot detection, abuse prevention, and DDoS mitigation in collaboration with application and platform teams
  • Leverage deception techniques (e.g., honeypots, canaries) to detect and learn from adversary behavior
  • Define and track meaningful metrics
  • Implement and track detection and response KPIs (e.g., coverage, signal quality, MTTD/MTTR)
  • Use metrics to guide prioritization and measure improvement over time
  • Align measurements with frameworks such as Time-Based Security and NIST CSF
  • Validate and improve continuously
  • Participate in purple-team exercises, tabletop simulations, and incident retrospectives
  • Ensure detection, response, and protection capabilities work cohesively within targeted timeframes

Requirements:

  • 4+ years of experience in security engineering, detection engineering, incident response, or an equivalent blend of software and security engineering
  • Hands-on experience designing or operating detection and response systems (not just responding to alerts)
  • Strong understanding of logging, telemetry, and signal design in modern cloud and application environments
  • Experience with SIEM technologies such as Splunk, Elasticsearch, Datadog, Chronicle, or similar platforms
  • Experience partnering with or operating alongside an MDR or SOC provider
  • Familiarity with threat detection and response frameworks (e.g., MITRE ATT&CK, Time-Based Security, NIST CSF)
  • Ability to write quality code or tooling in at least one backend language (preferably Python, Ruby, or Go)
  • Strong collaboration and communication skills, with the ability to influence engineers without formal authority

Nice to have:

  • Experience with bot detection, abuse prevention, or DDoS mitigation
  • Experience instrumenting or protecting GraphQL APIs
  • Cloud security experience (AWS preferred)
  • Infrastructure-as-Code experience (Terraform, CloudFormation)
  • Experience building automation for alerting, triage, or response workflows
  • Exposure to purple-team or adversary simulation exercises
What we offer:
  • Healthcare Insurance Coverage (Medical/Dental/Vision): 100% paid for employees
  • 12 weeks paid parental leave
  • Short-term/long-term disability plans
  • 401k/RSP matching
  • Onboarding stipend for home office peripherals + accessories
  • Learning & Development allowance
  • Learning & Development programs
  • Quarterly stipend for Wellness, WiFi, etc.
  • Mental Health support & resources
  • Free subscription to the Scribd Inc. suite of products
  • Referral Bonuses
  • Book Benefit
  • Sabbaticals
  • Company-wide events
  • Team engagement budgets
  • Vacation & Personal Days
  • Paid Holidays (+ winter break)
  • Flexible Sick Time
  • Volunteer Day
  • Company-wide Employee Resource Groups and programs that foster an inclusive and diverse workplace
  • Access to AI Tools: We provide free access to best-in-class AI tools, empowering you to boost productivity, streamline workflows, and accelerate bold innovation

Additional Information:

Job Posted:
February 18, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Scribd - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Security Engineer

Senior Security Engineer

Atlassians can choose where they work – whether in an office, from home, or a co...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated expertise and experience working in security-focused roles
  • Significant experience collaborating with engineering teams to conduct security assessments and threat modelling for on-premise as well as SaaS products
  • Strong expertise in cloud security, with a focus on AWS, GCP, and Azure, coupled with experience in container security, particularly in Docker and Kubernetes
  • Expertise in overseeing security design reviews for transitioning services from monolithic to microservices architecture
  • Experience coding in Java, Javascript, Python, or Go, and at least one scripting language
  • Experience leading large-scale projects from start to finish and mentoring other security practitioners
  • Adept experience providing SME knowledge and guidance to stakeholders and engineering functions
What we offer
What we offer
  • health coverage
  • paid volunteer days
  • wellness resources
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

PagerDuty is seeking a Senior Security Engineer to join our diverse, customer-fo...
Location
Location
Canada , Toronto
Salary
Salary:
137000.00 - 207000.00 CAD / Year
https://www.pagerduty.com Logo
PagerDuty
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proficiency with Application & Product Security typically associated with 4 - 5 years of experience in a Security Engineering role working with a cloud-native, microservices environment, preferably AWS
  • Familiarity with cloud-native product technologies including: Vulnerability detection via multiple approaches including SAST, DAST, SCA, and runtime (e.g., Qualys/Nessus, Wiz, Snyk, GHAS, Semgrep, etc.)
  • CI/CD technologies and integrations (e.g., CircleCI, Buildkite, Helm, Terraform, Chef)
  • Product security event logging standards and analysis tools (e.g., SIEM such as: SumoLogic, LogRythm, or Splunk, etc.)
  • Security Incident Response & Risk Management processes and tools
  • Proficiency in at least one programming language and framework (e.g. Python, Bash, Phoenix/Elixir, Java, Ruby on Rails), typically associated with 3 - 4 years of experience with the language/framework
  • Have exceptional written, oral communication, and interpersonal skills
  • Organizational skills with the ability to successfully manage multiple priorities and deadlines
Job Responsibility
Job Responsibility
  • Embrace the role of hands-on technical lead in defining product security standards and guiding platform protections
  • Establish criteria and conduct comprehensive security reviews throughout all stages of product development to identify and address security risks
  • Perform regular threat assessments, coordinate with third-party testers for penetration testing, and conduct internal penetration testing to identify and mitigate security risks
  • Mentor and guide team members to ensure product and business objectives are prioritized in project implementations, fostering a strong documentation culture with project charters and design documents
  • Work with loosely defined requirements where you exercise your analytical skills to clarify questions, share your approach, and collaborate with the team to design and implement effective security frameworks. Maintain a strong appetite for challenging problems with a high degree of ownership
  • Participate in the team’s On-Call rotation, triaging and addressing security issues as they arise, and implement measures to prevent future occurrences
  • Enable service team security implementations by developing security-as-code constructs, including infrastructure-as-code (IaC) modules, libraries and frontend components, while creating and maintaining developer-focused documentation to promote easy adoption
  • Establish and uphold baseline standards and hardened configurations for platform components
  • Continuously enhance security frameworks by focusing on product security standards and software supply chain protections, tailored for application security in cloud-native, microservices environments
What we offer
What we offer
  • Competitive salary
  • Comprehensive benefits package from day one
  • Flexible work arrangements
  • Company equity
  • ESPP (Employee Stock Purchase Program)
  • Retirement or pension plan
  • Generous paid vacation time
  • Paid holidays and sick leave
  • Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO
  • Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

As a Senior Security Engineer, you will play a crucial role in safeguarding Dash...
Location
Location
France , Paris
Salary
Salary:
Not provided
dashlane.com Logo
Dashlane
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Familiarity with application security best practices, including threat modeling
  • Experience operating within an SDLC program
  • An understanding of CI/CD pipelines and their security implications
  • Familiarity in Identity and Access Management (IAM) frameworks and protocols (Passkeys, SAML, OAuth, SCIM, etc)
  • Interest in enabling secure use of AI tools to drive efficiency, creativity, and impact internally
  • Communication & Collaboration: You engage and listen empathetically to others, adjusting your communication style to fit the audience and message.
  • Mentoring: You enjoy using your knowledge and experience to support and uplevel those around you.
  • Motivated Learner: You learn new technologies and processes quickly, and understand where to look for knowledge when you need it.
  • Adaptability: You are a jack or jane of all trades - you’re comfortable digging into non-technical parts of the business to provide security support and guidance.
Job Responsibility
Job Responsibility
  • Help drive the continuous improvement of Dashlane’s security program across the product and company
  • Assist with architecture design reviews, threat modeling, and technical security assessments of Dashlane’s product (application and infrastructure) to identify security risks and provide mitigation guidance
  • Ensure security best practices are integrated throughout the software development lifecycle (SDLC)
  • Build upon and scale Vulnerability Management to ensure the team can track, analyze, and manage vulnerabilities and their remediation
  • Perform risk assessments of Dashlane’s internal systems, environments, assets, and data, and implement security best practices accordingly
  • Participate in Compliance and Incident Response activities
What we offer
What we offer
  • Flex Benefits - monthly amount to be allocated to a pool of benefits of your choice.
  • Health insurance covered by Dashlane.
  • Extended time off and well-being days - add 5 days to you vacation quota, plus your birthday day off, and 4 extra days (one per quarter) to acknowledge the importance of your wellbeing.
  • Equal Parental leave - regardless of gender, up to 20 weeks fully paid leave to take care of their new baby, within the first year of birth or adoption.
  • Mentorship program - select your mentor from our internal pool and continue your learning path!
  • Flexible working hours - depending on the role, determine a schedule that fits your need, in alignment with your manager.
  • Donation matching program - give back to the community and support actions that lead to positive social impact under the historically marginalized communities. Every donation will be matched by Dashlane.
  • Mental health services through Spring Health for you and for you and family members.
  • Team buildings & seasonal social events.
  • Weekly lunch in the office and monthly happy hour and much more.
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

The Senior Security Engineer will provide hands-on technical leadership within t...
Location
Location
United Kingdom , Leeds; Thame
Salary
Salary:
65000.00 - 75000.00 GBP / Year
pexa.co.uk Logo
PEXA UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proactive, can-do attitude to get things done quickly and efficiently
  • Strong collaboration and communication skills
  • Willingness to contribute ideas to the security programme
  • Demonstratable first-hand experience in achieving organisational adherence to security best practices
  • Experience in the practical protection of a remote working laptop estate and SaaS cloud solutions
  • Experience in identity and access management solutions
  • Experience in device business automation and updates
  • Experience in the security aspects of cloud web application hosting and defence measures like WAF
Job Responsibility
Job Responsibility
  • Maintenance and Operational Security: Ensure all security solutions remain operationally effective
  • Ensure technical teams timely patch applications, systems, software, and hardware
  • Maintain and audit secure configurations for devices, applications, and cloud environments
  • Access Control and Identity Management: Conduct regular user and privileged account reviews
  • Manage and monitor Privileged Identity Management (PIM) profiles and elevated access accounts
  • Coordinate with IT and HR for onboarding/offboarding
  • Tool, Infrastructure, and Encryption Management: Maintain and optimise security infrastructure and tools
  • Oversee encryption key and certificate management
  • Work with vendors and internal teams to ensure tools remain current
  • VPN, Network & Firewall Security: Design, configure, and maintain secure VPN and Zero-Trust network solutions
What we offer
What we offer
  • Your growth: We encourage you to hit your personal and professional learning and development goals with our tailored programs and tools
  • Your wellness: We care about your holistic wellbeing
  • Your work/life blend: We want to help you create your ideal work/life blend
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

The primary focus of this role is web application security. The security team wo...
Location
Location
Salary
Salary:
110000.00 - 190000.00 USD / Year
aha.io Logo
Aha!
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Four+ years of experience working in application security
  • Active collaborator with engineering and product teams
  • Experience with security reviews or threat modeling for a full-stack web application
  • Experience with security tools such as CodeQL or Burp Suite
Job Responsibility
Job Responsibility
  • Identifying application security threats and mitigations early
  • Improving and maintaining security code scanning tools
  • Contributing to application security scanning or testing
  • Developing and sharing secure patterns internally for ongoing education
What we offer
What we offer
  • Profit sharing
  • Medical, dental, and vision plans (for many teammates, we cover 100% of the premiums)
  • Up to 200 hours of paid time off a year to spend however you want
  • 30 to 90 days of paid parental leave and five to 10 days of paid care and bereavement leave
  • Up to $1,000 annually for third-party education, along with paid time off to immerse yourself in learning
  • Volunteer opportunities throughout the year
  • Fulltime
Read More
Arrow Right

Senior Security GRC Engineer

The Senior Security GRC Engineer at Atlassian will be instrumental in implementi...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-7+ years experience in a similar role, preferably in a large-scale SaaS/Product environment
  • Expertise and experience working in security-focused roles
  • Experience with application security, especially web applications
  • Experience in cloud security architecture and infrastructure
  • Experience providing SME knowledge and guidance to stakeholders and engineering functions
  • Experience working with internal/external audit and leadership teams
  • Solid knowledge of cybersecurity principles, risk management strategies, and IT governance frameworks
  • Strong communication and interpersonal skills, with the ability to interact with stakeholders at all levels and explain complex security concepts in an understandable way
  • Relevant certifications such as CISSP, CISM, or CRISC would be beneficial
  • Scripting experience to automate recurring tasks (JQL, SQL, Python, Go)
Job Responsibility
Job Responsibility
  • Deliver technical expertise and innovation, providing security guidance to teams and promoting the adoption of industry-leading methodologies to build secure products by default
  • Drive technical solutions in security and risk management
  • Leverage data analytics and visualization, deriving actionable insights from security governance, risk, and compliance data
  • Promote automation and tooling, encouraging the use of the latest security tools to enhance product security processes
  • Proactively identify and mitigate risks, recognizing potential security threats or compliance concerns specific to product security
  • Collaborate with product security teams, implementing security controls and best practices
  • Regularly evaluate and report, assessing the effectiveness of security controls
  • Influence and align stakeholders, working with security engineers and stakeholders to drive alignment on security initiatives
  • Stay informed on regulatory awareness and compliance, keeping up with the latest developments in legislative, regulatory, and industry security requirements
What we offer
What we offer
  • health coverage
  • paid volunteer days
  • wellness resources
  • Fulltime
Read More
Arrow Right

End Point Security Senior Engineer

Senior Engineer role focused on endpoint security implementation and maintenance...
Location
Location
India , Noida
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience with EDR/XDR platforms such as Microsoft Defender for Endpoint or Sentinel One
  • Familiarity with vulnerability management tools
  • Knowledge of endpoint technologies including BitLocker, Application control, Endpoint privilege management, Windows Defender Firewall
  • Understanding of endpoint threat intelligence and ability to analyze threat data
  • Scripting or automation experience using PowerShell or other scripting languages
  • Total Experience Expected: 02-06 years
  • B.tech/BE/BCA qualification
Job Responsibility
Job Responsibility
  • Implement and maintain endpoint security solutions such as EDR, antivirus, encryption, and application control tools
  • Monitor, analyze, and respond to security alerts and incidents originating from workstations and endpoints
  • Apply and manage workstation hardening standards, including adherence to security baselines
  • Conduct vulnerability assessments on endpoints and coordinate timely remediation activities
  • Manage patch deployment for operating systems and applications to ensure compliance with internal policies and reduce exposure to threats
  • Ensure endpoint systems comply with security policies, standards, and regulatory frameworks
  • Actively participate in incident response efforts related to endpoint breaches or malware incidents
  • Contribute to risk assessments and provide input during security architecture reviews related to endpoints
  • Maintain a strong understanding of Windows and macOS operating systems from a security perspective
  • Fulltime
Read More
Arrow Right

Senior Application Security Engineer

This role involves embedding security into software delivery pipelines, designin...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5–8+ years of experience in Application Security, Product Security, or Secure Software Development
  • hands-on experience securing software delivery pipelines (CI/CD) and source code repositories (GitHub, GitLab, Jenkins)
  • knowledge of supply chain security frameworks and controls (e.g., SLSA, NIST SSDF)
  • familiarity with secrets management, artifact signing (Sigstore, Cosign), and build integrity practices
  • hands-on experience with WAF tuning, API security controls, and vulnerability remediation
  • proficiency with one or more programming languages (Python, Java, Go, JavaScript/Node.js)
  • experience with SAST, DAST, SCA, and container image scanning tools
  • cloud security experience with AWS, Azure, or GCP
  • deep understanding of OWASP Top 10 (Web + API), CWE, and secure coding practices
Job Responsibility
Job Responsibility
  • secure SDLC & DevSecOps integration
  • design and implement security controls for build and release pipelines (GitHub Actions, Jenkins, GitLab, Azure DevOps)
  • ensure code integrity via signing, artifact scanning, and build provenance
  • automate SAST, DAST, SCA, and container image scanning as part of the software delivery pipeline
  • identify and remediate misconfigurations in pipeline environments and access control
  • design, implement, and monitor WAF rules and API protections
  • perform API risk assessments
  • champion secure design patterns
  • conduct secure code reviews and support automation of testing pipelines
  • triage, prioritize, and track security issues identified in code, pipelines, and deployed environments
What we offer
What we offer
  • comprehensive suite of benefits that supports physical, financial and emotional wellbeing
  • programs catered to helping you reach career goals
  • inclusive work environment
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy