CrawlJobs Logo

Staff Platform Security Engineer

United States, Oakland 196033.00 - 245041.50 USD / Year · Job Posted February 20, 2026
Apply Position
Job Link Share

Job Description

Fivetran is building data pipelines to power the modern data stack for thousands of companies. We’re looking for a Staff Platform Security Engineer to enhance the security of our cloud-native and hybrid infrastructure. This individual contributor (IC) role is hands-on and execution-focused, requiring expertise in application security, cloud security, and DevSecOps. You will work closely with engineering teams to integrate security into the development lifecycle, automate security processes, and ensure resilience against emerging threats.

Job Responsibility

  • Collaborate with engineering teams to integrate and manage security tooling within the SDLC, strategically automating security checks and feedback loops to enhance efficiency and security posture.
  • Perform vulnerability scanning and participate in penetration testing exercises, automating scanning processes judiciously to identify common weaknesses, while reserving manual efforts for complex and nuanced assessments. Report findings and assist with remediation efforts.
  • Develop and maintain automation scripts and infrastructure-as-code for security checks related to machine configurations, container images, IAM policies, firewall rules, and cloud storage policies.
  • Implement and configure security controls within enterprise applications based on security best practices and architectural guidance.
  • Contribute to threat modeling efforts by providing technical insights and implementing identified security controls.
  • Work directly with engineering teams to troubleshoot and resolve security challenges across the stack while promoting a security-first mindset, identifying and automating recurring troubleshooting steps or remediation processes where it significantly improves response times and reduces manual intervention.
  • Implement and operationalize security solutions for cloud-native and hybrid infrastructure based on architectural guidelines.
  • Collaborate with infrastructure and cloud security teams to implement and maintain security controls across the entire technology stack, strategically prioritizing automation for consistent enforcement, monitoring, and alerting to improve overall security and reduce manual overhead.
  • Implement and manage security assessment tools, including vulnerability scanners, SIEM agents, DLP endpoints, and EDR sensors.
  • Participate in security assessment reviews by providing practical implementation feedback and identifying potential operational challenges.
  • Develop and maintain scripts and tools to automate security monitoring and alerting.
  • Stay up to date with cybersecurity threats and trends, applying this knowledge to improve implemented security controls and operational processes.

Requirements

  • Application Security Expertise: Deep expertise in identifying and mitigating security vulnerabilities within applications (e.g., OWASP Top 10), particularly in Java codebases.
  • Secure SDLC: Extensive experience integrating security into the software development lifecycle, from design and code review to testing and deployment.
  • Java Proficiency: Senior-level experience with Java codebases: building, running, profiling, and optimizing Java applications in secure environments.
  • Container Security: Strong experience with Docker image creation, optimization, and vulnerability mitigation, specifically for applications.
  • CI/CD & Automation: Proficiency with CI/CD tools (e.g., Jenkins, GitLab CI, GitHub Actions) and experience integrating security tools into automated pipelines.
  • Tooling Familiarity: Familiarity with a range of security tools for CI/CD security, static analysis (SAST), dynamic analysis (DAST), dependency analysis (SCA), and secrets management.
  • Adversarial AI & Defense: Familiarity with modern attack techniques, offensive security methodologies, and defense strategies, including OWASP Top 10 for LLMs (e.g., Prompt Injection, Data Poisoning, and Model Inversion).
  • Scripting: Proficiency in scripting or programming languages (e.g., Bash, Python, Go) to automate security processes and tool integration.
  • Problem-Solving: Excellent problem-solving and troubleshooting skills, with the ability to work independently in fast-paced environments.
  • Communication: Strong communication skills with the ability to effectively collaborate with and educate engineering teams on security principles and best practices.
  • Curiosity & Urgency: Demonstrates strong curiosity, a sense of urgency, and a hands-on approach to diving deep into complex technical problems to drive timely and effective solutions.

What we offer

  • 100% employer-paid medical insurance*
  • Generous paid time-off policy (PTO), plus paid sick time, inclusive parental leave policy, holidays, and volunteer days off
  • RSU stock grants*
  • Professional development and training opportunities
  • Company virtual happy hours, free food, and fun team-building activities
  • Monthly cell phone stipend
  • Access to an innovative mental health support platform that offers personalized care and resources in areas such as: therapy, coaching, and self-guided mindfulness exercises for all covered employees and their covered dependents.

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Staff Platform Security Engineer

8 matching positions

Staff Platform Security Engineer

Fivetran is building data pipelines to power the modern data stack for thousands...
Location
Location
United States , Denver
Salary
Salary:
171389.00 - 214236.00 USD / Year
fivetran.com Logo
Fivetran
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Application Security Expertise: Deep expertise in identifying and mitigating security vulnerabilities within applications (e.g., OWASP Top 10), particularly in Java codebases
  • Secure SDLC: Extensive experience integrating security into the software development lifecycle, from design and code review to testing and deployment
  • Java Proficiency: Senior-level experience with Java codebases: building, running, profiling, and optimizing Java applications in secure environments
  • Container Security: Strong experience with Docker image creation, optimization, and vulnerability mitigation, specifically for applications
  • CI/CD & Automation: Proficiency with CI/CD tools (e.g., Jenkins, GitLab CI, GitHub Actions) and experience integrating security tools into automated pipelines
  • Tooling Familiarity: Familiarity with a range of security tools for CI/CD security, static analysis (SAST), dynamic analysis (DAST), dependency analysis (SCA), and secrets management
  • Adversarial AI & Defense: Familiarity with modern attack techniques, offensive security methodologies, and defense strategies, including OWASP Top 10 for LLMs (e.g., Prompt Injection, Data Poisoning, and Model Inversion)
  • Scripting: Proficiency in scripting or programming languages (e.g., Bash, Python, Go) to automate security processes and tool integration
  • Problem-Solving: Excellent problem-solving and troubleshooting skills, with the ability to work independently in fast-paced environments
  • Communication: Strong communication skills with the ability to effectively collaborate with and educate engineering teams on security principles and best practices
Job Responsibility
Job Responsibility
  • Collaborate with engineering teams to integrate and manage security tooling within the SDLC, strategically automating security checks and feedback loops to enhance efficiency and security posture
  • Perform vulnerability scanning and participate in penetration testing exercises, automating scanning processes judiciously to identify common weaknesses, while reserving manual efforts for complex and nuanced assessments. Report findings and assist with remediation efforts
  • Develop and maintain automation scripts and infrastructure-as-code for security checks related to machine configurations, container images, IAM policies, firewall rules, and cloud storage policies
  • Implement and configure security controls within enterprise applications based on security best practices and architectural guidance
  • Contribute to threat modeling efforts by providing technical insights and implementing identified security controls
  • Work directly with engineering teams to troubleshoot and resolve security challenges across the stack while promoting a security-first mindset, identifying and automating recurring troubleshooting steps or remediation processes where it significantly improves response times and reduces manual intervention
  • Implement and operationalize security solutions for cloud-native and hybrid infrastructure based on architectural guidelines
  • Collaborate with infrastructure and cloud security teams to implement and maintain security controls across the entire technology stack, strategically prioritizing automation for consistent enforcement, monitoring, and alerting to improve overall security and reduce manual overhead
  • Implement and manage security assessment tools, including vulnerability scanners, SIEM agents, DLP endpoints, and EDR sensors
  • Participate in security assessment reviews by providing practical implementation feedback and identifying potential operational challenges
What we offer
What we offer
  • 100% employer-paid medical insurance*
  • Generous paid time-off policy (PTO), plus paid sick time, inclusive parental leave policy, holidays, and volunteer days off
  • RSU stock grants*
  • Professional development and training opportunities
  • Company virtual happy hours, free food, and fun team-building activities
  • Monthly cell phone stipend
  • Access to an innovative mental health support platform that offers personalized care and resources in areas such as: therapy, coaching, and self-guided mindfulness exercises for all covered employees and their covered dependents
  • Fulltime
Read More
Arrow Right

Staff Product Security Engineer - Customer Platform

We are seeking a seasoned and highly skilled Staff Product Security Engineer - C...
Location
Location
United States
Salary
Salary:
190000.00 - 260000.00 USD / Year
valon.ai Logo
Valon Tech
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years in progressive senior security engineering or architect level roles
  • 3+ years leading security design for enterprise-grade cloud and SaaS platforms
  • Bachelor's degree in Information Security, Computer Science, Technology or related field
  • Relevant security certifications (e.g., CISSP, CISM, CCSK, CCSP or similar)
  • Proven ability to design security reference architectures and implement customer platform security controls and technologies (IAM, API security, encryption/key management, logging/monitoring and others)
  • Hands-on experience with modern security technologies and tooling across cloud and application security
Job Responsibility
Job Responsibility
  • Define and evolve product security architecture and strategy for Valon’s multi-tenant SaaS platform
  • Architect and guide secure implementation of customer-facing security capabilities in conjunction with Engineering (e.g., authentication / authorization models, identity integration, access controls, audit and logging, encryption / key management)
  • Build and maintain security reference architectures and standardized secure design patterns for product teams
  • Lead threat modeling, security design and code reviews for new features, services, and major architectural changes
  • Collaborate with Product, Engineering, Data, Compliance, Legal, and other teams to identify and drive mitigation for product and data security risks
  • Support vulnerability triage, remediation strategy, and root cause analysis for product security issues
  • Support security compliance and regulatory needs (e.g., SOC 2, CCPA, NYDFS, FTC), including customer-facing security discussions and due diligence
  • Develop, implement, and enforce security policies, standards, and procedures
  • Support operational activities including security advisory and consultative reviews, incident response, issue remediation, and other security processes
What we offer
What we offer
  • Competitive salary with a meaningful stake in the company via equity
  • 401k plan
  • Comprehensive medical, dental, & vision benefits
  • Pre-tax deductions for public transportation, rideshare services, and parking expenses
  • Company wide orientation
  • Learning & development opportunities including regular review cycles that feature 360 degree feedback
  • Quarterly budgets for team and company outings
  • Flexible paid time off
  • Sick days
  • 11 company holidays
  • Fulltime
Read More
Arrow Right

Sr Staff ML Engineer - Production & MLOps Focus - GenAI Security Platform

Join our team building a cutting-edge multi-tenanted GenAI Security Platform tha...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of ML engineering experience with hands-on LLM/NLP work
  • Practical experience building LLM-based applications (agents, multi-turn systems, evaluators)
  • Understanding of model fine-tuning, embedding optimization, and prompt engineering
  • Experience with LLM APIs (OpenAI, Anthropic, AWS Bedrock, Azure OpenAI)
  • Knowledge of LLM orchestration frameworks ( LangChain, LlamaIndex, Pydantic AI, custom solutions)
  • Familiarity with model architectures and when to fine-tune vs prompt engineer
  • Strong experience deploying ML models to production at scale
  • Experience with Model serving frameworks (vLLM preferred
  • TensorRT-LLM, Ray Serve, or similar a plus)
  • Kubernetes and Docker proficiency for ML workload orchestration
Job Responsibility
Job Responsibility
  • Build and deploy LLM-based agents and multi-step evaluation workflows
  • Fine-tune models, optimize embeddings, and manage model weights and artifacts
  • Deploy and scale ML services on Kubernetes with proper monitoring and resource management
  • Implement experiment tracking, model versioning, and deployment automation
  • Develop observability dashboards for ML metrics, costs, latency, and quality
  • Optimize LLM API usage through caching, batching, and intelligent routing strategies
  • Manage vector database infrastructure and semantic search systems
  • Create CI/CD pipelines for ML artifacts and automated testing frameworks
  • Collaborate with ML researchers to productionize prototypes and scale experiments
  • Fulltime
Read More
Arrow Right

Senior Staff Engineer Software (Cloud Platform, Production & Reliability – Machine Identity Security)

The Production Engineering team is responsible for building, scaling, and operat...
Location
Location
United States , Santa Clara
Salary
Salary:
126000.00 - 203500.00 USD / Year
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in DevOps, Platform Engineering, or Site Reliability Engineering (SRE)
  • Strong experience designing and operating cloud infrastructure on AWS, Azure, or GCP
  • Deep expertise managing and scaling Kubernetes environments (EKS, AKS, or GKE)
  • Strong experience with Infrastructure as Code tools (Terraform, Ansible, or Pulumi)
  • Proven experience designing and maintaining complex CI/CD systems (Jenkins, GitLab CI, ArgoCD, GitHub Actions)
  • Strong programming/scripting skills (Python, Go, or similar) for automation and tooling
  • Experience operating in high-scale, 24/7 production environments with ownership of incident response and reliability
  • Solid understanding of Linux systems and networking fundamentals (DNS, TCP/IP, load balancing, VPC, mTLS)
  • Strong problem-solving skills and ability to work across teams
Job Responsibility
Job Responsibility
  • Design, build, and evolve highly available cloud infrastructure platforms with a focus on scalability, resilience, and reliability
  • Lead improvements across production systems, including performance, availability, and incident response
  • Drive and standardize Infrastructure as Code (IaC) practices to improve consistency and reduce operational overhead
  • Design and optimize CI/CD pipelines to support fast, secure, and reliable software delivery at scale
  • Partner with development teams to improve system reliability, observability, and cloud-native design patterns
  • Define and implement monitoring, alerting, and observability strategies across distributed systems
  • Lead incident response efforts, including root cause analysis and long-term remediation strategies
  • Identify and eliminate operational toil through automation and system improvements
  • Mentor engineers and contribute to raising the bar for production engineering practices
What we offer
What we offer
  • restricted stock units
  • bonus
  • Fulltime
Read More
Arrow Right
New

Staff Security Engineer, Enterprise Security Operations

We're searching for a Staff Security Engineer, Enterprise Security Operations to...
Location
Location
United States , Detroit
Salary
Salary:
171000.00 - 273000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of hands-on experience in enterprise security operations, security platform administration, or a senior SOC engineering role
  • Expert-level proficiency administering and operating at least two enterprise security platforms (e.g., CrowdStrike, SentinelOne, Splunk, Panther, Sentinel, Jamf, Kandji/Iru, Puppet, WorkspaceONE, Intune, Zscaler, Okta, Proofpoint, Wiz, osquery)
  • Demonstrated ability to tune and optimize security platforms beyond out-of-the-box configurations
  • Strong log analysis and threat hunting skills
  • Experience conducting thorough incident investigations
  • Ability to assess security control effectiveness
  • Comfort working under pressure in ambiguous, fast-moving situations with competing priorities
Job Responsibility
Job Responsibility
  • Own the operational health, configuration, and continuous improvement of Aurora's enterprise security platform stack
  • Develop and refine detection rules, correlation logic, and alert policies
  • Conduct proactive threat hunting across Aurora's security telemetry
  • Serve as the deepest internal expert on Aurora's enterprise security tooling
  • Participate in the team's on-call rotation, leading deep-dive investigations into security alerts and incidents
  • Continuously audit and validate that existing security controls are configured correctly
  • Maintain operational runbooks, detection documentation, and platform configuration records
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Benefits
  • Fulltime
Read More
Arrow Right
New

Staff Security Engineer, Enterprise Security Architecture

Aurora’s mission is to deliver the benefits of self-driving technology safely, q...
Location
Location
United States , Detroit
Salary
Salary:
171000.00 - 273000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of professional experience in Information Security, Enterprise Architecture, Security Engineering, or related technical leadership capacities
  • 5+ years specifically focused on designing enterprise-scale security architectures across diverse domains, including endpoint, network, infrastructure, vulnerability management, resilience, and enterprise platforms
  • Demonstrated success in developing enterprise security architecture strategies, reference architectures, and scalable technical standards
  • Extensive technical depth in Zero Trust principles, enterprise security frameworks, and modern backend or enterprise security architecture design patterns
  • Comprehensive knowledge of core enterprise security domains, including endpoint security, network security, PKI, enterprise vulnerability management, resilience, data protection, and governance integration
  • Proven ability to translate governance, compliance, and strategic business requirements into actionable technical architecture and implementation guidance
  • Experience representing security interests within architecture review boards, governance committees, or enterprise-wide design councils
  • Advanced familiarity with enterprise infrastructure, SaaS ecosystems, internal platforms, and the strategic integration of security tooling
  • Adept at evaluating technical tradeoffs, identifying scalability constraints, and assessing the long-term implications of enterprise security architecture decisions
  • Exceptional documentation skills, including the creation of detailed architecture diagrams, technical standards, and strategic narratives for executive leadership
Job Responsibility
Job Responsibility
  • Define and champion Aurora’s enterprise security architecture strategy, roadmap, and target-state operating model across enterprise and backend operational security domains
  • Develop enterprise security reference architectures, design patterns, and technical standards for endpoint security, network security, infrastructure security, enterprise vulnerability management, data protection, resilience, enterprise platforms, and security tooling
  • Translate security strategy, governance requirements, and business priorities into scalable technical architecture and implementation guidance
  • Partner with GRC to operationalize security policies, standards, and control objectives into practical enterprise security architectures
  • Support and influence Aurora’s broader Enterprise Architecture Committee by representing enterprise security priorities, technical standards, and strategic design principles
  • Participate in architecture review boards, design committees, and strategic planning forums to ensure enterprise security alignment across major initiatives
  • Architect secure solutions for workforce platforms, enterprise systems, internal infrastructure, and backend operational ecosystems using Zero Trust principles and modern security frameworks
  • Guide enterprise security design for endpoint security, network security, PKI, enterprise vulnerability management, BCP/DR, data security, enterprise infrastructure, and security tooling modernization
  • Provide architectural oversight for major enterprise security initiatives, ensuring scalability, interoperability, governance alignment, and reduced fragmentation
  • Partner with Security Engineering, GRC, Cloud Security, IT, Product Security, and IAM teams to align technical security capabilities while maintaining clear domain boundaries
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Benefits
  • Fulltime
Read More
Arrow Right
New

Staff Security Engineer, Enterprise Security Operations

We're searching for a Staff Security Engineer, Enterprise Security Operations to...
Location
Location
United States , San Francisco
Salary
Salary:
189000.00 - 303000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of hands-on experience in enterprise security operations, security platform administration, or a senior SOC engineering role
  • Expert-level proficiency administering and operating at least two enterprise security platforms (e.g., CrowdStrike, SentinelOne, Splunk, Panther, Sentinel, Jamf, Kandji/Iru, Puppet, WorkspaceONE, Intune, Zscaler, Okta, Proofpoint, Wiz, osquery)
  • Demonstrated ability to tune and optimize security platforms beyond out-of-the-box configurations
  • Strong log analysis and threat hunting skills
  • Experience conducting thorough incident investigations
  • Ability to assess security control effectiveness
  • Comfort working under pressure in ambiguous, fast-moving situations with competing priorities
Job Responsibility
Job Responsibility
  • Own the operational health, configuration, and continuous improvement of Aurora's enterprise security platform stack
  • Develop and refine detection rules, correlation logic, and alert policies
  • Conduct proactive threat hunting across Aurora's security telemetry
  • Serve as the deepest internal expert on Aurora's enterprise security tooling
  • Participate in the team's on-call rotation, leading deep-dive investigations into security alerts and incidents
  • Continuously audit and validate that existing security controls are configured to actually do what they are supposed to do
  • Maintain operational runbooks, detection documentation, and platform configuration records
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Fulltime
Read More
Arrow Right
New

Staff Security Engineer, Enterprise Security Operations

Aurora’s mission is to deliver the benefits of self-driving technology safely, q...
Location
Location
United States , Pittsburgh
Salary
Salary:
171000.00 - 273000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of hands-on experience in enterprise security operations, security platform administration, or a senior SOC engineering role
  • Expert-level proficiency administering and operating at least two enterprise security platforms (e.g., CrowdStrike, SentinelOne, Splunk, Panther, Sentinel, Jamf, Kandji/Iru, Puppet, WorkspaceONE, Intune, Zscaler, Okta, Proofpoint, Wiz, osquery), with strong working knowledge across several others
  • Demonstrated ability to tune and optimize security platforms beyond out-of-the-box configurations
  • Strong log analysis and threat hunting skills
  • Experience conducting thorough incident investigations — triage, containment, root cause analysis, and post-incident review
  • Ability to assess security control effectiveness
  • Comfort working under pressure in ambiguous, fast-moving situations with competing priorities
Job Responsibility
Job Responsibility
  • Own the operational health, configuration, and continuous improvement of Aurora's enterprise security platform stack
  • Develop and refine detection rules, correlation logic, and alert policies, reducing noise while ensuring Aurora maintains high-fidelity coverage against real threats
  • Conduct proactive threat hunting across Aurora's security telemetry
  • Serve as the deepest internal expert on Aurora's enterprise security tooling, acting as the escalation point for complex platform issues
  • Participate in the team's on-call rotation, leading deep-dive investigations into security alerts and incidents
  • Continuously audit and validate that existing security controls are configured to actually do what they're supposed to do
  • Maintain operational runbooks, detection documentation, and platform configuration records
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Benefits
  • Fulltime
Read More
Arrow Right