Lead Security Engineer

Job Summary

A company is looking for a Lead Security Engineer to enhance security practices within engineering teams.

Key Responsibilities

• Embed security best practices into the software development lifecycle (SDLC) from design to deployment
• Lead the creation and execution of the application security (AppSec) roadmap, including secure code reviews and threat modeling
• Drive the adoption of security tooling and automation in CI/CD pipelines

Required Qualifications

• 5+ years in security engineering or software engineering with a focus on application security
• Experience in high-growth or cloud-native environments, particularly with Kubernetes
• Strong understanding of web app and API security, threat modeling, and secure software patterns
• Proven ability to influence security outcomes without direct authority
• Familiarity with compliance frameworks like SOC 2 or ISO 27001 is a plus