Senior Security Engineer – Cloud & Platform Security

CaptivateIQ
Full_time$155k-185k/year (USD)

📍 Job Overview

  • Job Title: Senior Security Engineer – Cloud & Platform Security
  • Company: CaptivateIQ
  • Location: Canada, Remote - North America
  • Job Type: Full-time
  • Category: DevOps & Infrastructure Security
  • Date Posted: 2025-07-31
  • Experience Level: 5-10 years
  • Remote Status: Remote OK

🚀 Role Summary

  • Cloud Security Architecture: Design and enforce security baselines for AWS services, network segmentation, containerized workloads, and IAM.
  • Secure CI/CD Enablement: Embed automated security controls into build and deployment pipelines and enforce secure infrastructure-as-code practices.
  • Threat Detection & Monitoring: Develop and tune detection logic for cloud and infrastructure threats; integrate logs with SIEM for security observability.
  • Identity & Access Governance: Implement least privilege, zero-trust principles, and centralized access governance across infrastructure and internal tools.
  • Incident Response Leadership: Act as a primary technical lead for cloud/infrastructure security incidents and root cause analysis.

📝 Enhancement Note: This role requires a strong technical background in cloud security, with a focus on AWS services and secure multi-tenant SaaS architectures. Experience in DevSecOps and partnering with SRE teams is essential for success in this position.

💻 Primary Responsibilities

  • Cloud Security Architecture & Posture Management

    • Design and enforce security baselines for AWS services, network segmentation, containerized workloads, and IAM.
    • Leverage modern cloud security technologies to monitor for configuration drift and anomalous activity.

  • Secure CI/CD Enablement

    • Embed automated security controls into build and deployment pipelines.
    • Enforce secure infrastructure-as-code practices (Terraform).

  • Cloud Threat Detection & Monitoring

    • Develop and tune detection logic for cloud and infrastructure threats.
    • Integrate logs with SIEM for security observability.

  • Identity & Access Governance

    • Implement least privilege, zero-trust principles, and centralized access governance across infrastructure and internal tools.

  • Vulnerability Management

    • Own vulnerability identification, prioritization, and remediation for infrastructure components and dependencies.

  • Incident Response Leadership

    • Act as a primary technical lead for cloud/infrastructure security incidents and root cause analysis.

  • Compliance Alignment

    • Contribute to security audits, control validation, and evidence collection for SOC 2, ISO 27001, and other frameworks.

  • Cross-Team Enablement

    • Partner with SRE to ensure reliability and security guardrails align without slowing delivery.

🎓 Skills & Qualifications

Education: Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (e.g., CISSP, CISM) are a plus.

Experience: 7+ years of experience in a security engineer or related role, including 4+ years specializing in cloud and infrastructure security.

Required Skills:

  • Advanced expertise of AWS security architecture, IAM, ZTNA, and secure multi-tenant SaaS designs.
  • Strong communication and ability to influence technical decisions across teams.
  • Hands-on experience securing containers and orchestration frameworks (Docker, ECS, Kubernetes).
  • Strong programming and scripting skills (Python preferred) for automation and tooling.
  • Experience integrating security into CI/CD pipelines and infrastructure-as-code environments.
  • Deep understanding of detection strategies, logging, and incident response for cloud workloads.
  • Proven ability to lead incident response for cloud and infrastructure security events.
  • Familiarity leveraging Cloud-Native Application Protection Platform (CNAPP) tooling.
  • Knowledge of compliance frameworks (SOC 2, ISO 27001) and cloud security benchmarks (CIS, CSA CCM).

Preferred Skills:

  • Experience with Terraform and infrastructure-as-code practices.
  • Familiarity with SIEM systems (e.g., Splunk, ELK Stack).
  • Background in DevOps and collaboration with SRE teams.

📊 Web Portfolio & Project Requirements

  • Portfolio Essentials:

    • Demonstrate experience in cloud security architecture and design.
    • Showcase incident response leadership and problem-solving skills.
    • Highlight projects that involve secure CI/CD pipelines and infrastructure-as-code practices.

  • Technical Documentation:

    • Provide examples of security baselines, IAM policies, and network segmentation designs.
    • Include incident response reports and post-mortem analyses.
    • Showcase security tooling and automation scripts.

💵 Compensation & Benefits

Salary Range: $154,500 - $184,713 a year (US-only)

Benefits:

  • 100% of medical, dental, and vision covered including 75% for dependents (US-only)
  • Flexible vacation days and quarterly mental health days
  • One-time expense on 1-year work anniversary (travel, home furnishings, fancy meal)
  • 401k plan to participate in and save towards the future (US-only)
  • Newest Apple products to help you do your best work
  • Employee Resource Groups (ERGs) to support and celebrate the shared identities and life experiences of communities within CaptivateIQ

🎯 Team & Company Context

🏢 Company Culture

Industry: Software as a Service (SaaS) - Sales Performance Management

Company Size: Medium (201-500 employees)

Founded: 2016

Team Structure:

  • Security team responsible for cloud and infrastructure security.
  • Collaboration with SRE teams to ensure reliability and security guardrails.
  • Cross-functional collaboration with product, engineering, and other departments.

Development Methodology:

  • Agile/Scrum methodologies for security projects and incident response.
  • Infrastructure-as-code (IaC) practices for secure deployment and configuration management.
  • Continuous Integration and Continuous Deployment (CI/CD) pipelines for automated testing and deployment.

Company Website: CaptivateIQ

📝 Enhancement Note: CaptivateIQ is a fast-growing SaaS company focused on Sales Performance Management. As a Senior Security Engineer, you'll play a crucial role in ensuring the security and compliance of their cloud infrastructure and platform.

📈 Career & Growth Analysis

Web Technology Career Level: Senior Security Engineer - Responsible for designing and implementing scalable security controls across cloud infrastructure and platform development lifecycle. Leads incident response and drives compliance readiness.

Reporting Structure: Reports directly to the Head of Security or a similar role. Collaborates with SRE teams and other departments to ensure security and reliability.

Technical Impact: Directly responsible for the security of CaptivateIQ's cloud infrastructure and platform. Ensures compliance with relevant security standards and frameworks. Leads incident response efforts to minimize the impact of security incidents on the business.

Growth Opportunities:

  • Technical leadership and mentoring opportunities within the security team.
  • Potential expansion into other security domains or management roles as the company grows.
  • Opportunities to work on emerging security technologies and trends.

🌐 Work Environment

Office Type: Hybrid - Remote work available, with the option to work from the office or remotely.

Office Location(s): Canada, with remote work available for North America.

Workspace Context:

  • Collaborative workspace with a focus on cross-functional teamwork.
  • Access to modern development tools, multiple monitors, and testing devices.
  • Opportunities for knowledge sharing, technical mentoring, and continuous learning.

Work Schedule: Full-time, with flexible working hours and the option to work remotely.

📝 Enhancement Note: CaptivateIQ offers a hybrid work environment with a focus on collaboration and cross-functional teamwork. Remote work is available for North American-based employees, providing flexibility and work-life balance.

📄 Application & Technical Interview Process

Interview Process:

  1. Resume Review: Review of resume and portfolio materials to assess relevant experience and skills.
  2. Phone/Video Screen: A brief call to discuss the role, company, and answer any initial questions.
  3. Technical Deep Dive: A technical conversation focused on cloud security architecture, incident response, and security tooling.
  4. Behavioral & Cultural Fit: An interview to assess cultural fit, problem-solving skills, and communication abilities.
  5. Final Decision: A final discussion with the hiring manager to make a decision.

Portfolio Review Tips:

  • Highlight cloud security architecture and design projects.
  • Include incident response case studies and post-mortem analyses.
  • Showcase security tooling and automation scripts.

Technical Challenge Preparation:

  • Brush up on AWS security best practices and services.
  • Review incident response processes and methodologies.
  • Familiarize yourself with relevant compliance frameworks (SOC 2, ISO 27001) and cloud security benchmarks (CIS, CSA CCM).

ATS Keywords:

  • Cloud Security: AWS Security, IAM, ZTNA, Multi-tenant SaaS, Cloud Security Architecture, Cloud Security Posture Management
  • Incident Response: Incident Response Leadership, Root Cause Analysis, Security Incident Management, Incident Response Planning
  • Security Tools: Cloud-Native Application Protection Platform (CNAPP), Cloud Security Posture Management (CSPM), Cloud Workload Protection (CWP), Cloud Identity and Access Management (CIEM), Data Security Posture Management (DSPM), Security Information and Event Management (SIEM)
  • Programming & Scripting: Python, Terraform, Infrastructure-as-Code (IaC), CI/CD Pipelines
  • Compliance Frameworks: SOC 2, ISO 27001, CIS, CSA CCM

📌 Application Steps

To apply for this Senior Security Engineer – Cloud & Platform Security position:

  1. Submit your application through the application link.
  2. Tailor your resume and portfolio to highlight relevant cloud security architecture, incident response, and security tooling experience.
  3. Prepare for technical interviews by brushing up on AWS security best practices, incident response processes, and relevant compliance frameworks.
  4. Research CaptivateIQ's company culture, values, and mission to ensure a strong cultural fit.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and cloud security industry-standard assumptions. All details should be verified directly with the hiring organization before making application decisions.

Application Requirements

Candidates should have 7+ years of experience in security engineering, with at least 4 years focused on cloud and infrastructure security. Advanced expertise in AWS security architecture and strong programming skills are essential.