Senior Security Engineer ||

Position Summary

A Security Engineer within the Security Operations team collaborates across the organization to construct and manage security tools and processes. Leveraging extensive expertise in systems, automation, and security, a Senior Security Engineer is tasked with operating technology, devising solutions, and ensuring continuous compliance on a large scale.

In the role of a Senior Security Engineer, you will take the lead in expanding visibility into Harness’ security posture, automating essential security technologies, and fostering ongoing enhancements throughout our technical infrastructure. Your responsibilities include designing solutions aligned with Harness' security objectives, working closely with engineering teams to achieve project goals, and spearheading cross-team initiatives with Engineering and Product. This role provides an opportunity to refine existing skills and acquire new ones in line with the company’s growth trajectory

About the role

• Take a leading role in the design of the next level of secure operations for Harness' cloud and business infrastructure
• Take charge of implementing and overseeing security tooling, encompassing the detection and alerting systems for identifying malicious activity and insecure configurations
• Utilize automation to effectively manage and enhance the security posture of Harness' multi-cloud Kubernetes-based infrastructure
•  Use Harness CI/CD to integrate security processes like vulnerability management into the SDLC 
• Contribute to the development, review, and implementation of technical security and compliance-related engineering requirements across global Engineering teams
• Detect, respond, and mitigate security related events and incidents.
• ​​Collaborate with fellow Developers and Product Managers to analyze and implement security standards, methods, and architectures

About you

• You have at least 7 years of relevant industry experience as a systems engineer, security engineer, cloud security, site reliability engineer, a comparable position
• You possess expert-level professional knowledge in enterprise applications and infrastructure
• You bring extensive prior experience in a cloud-native environment, with proficiency in platforms such as AWS, GCP, and Azure
• You have exposure to industry regulations and compliance certifications (ISO 27001, SOC 2, FedRAMP, SOX, etc.)
• You are seeking to contribute to a high-growth environment and play a key role in building new programs from the ground up
• You care about the details, and are willing to ask questions when you’re unsure
• You are comfortable handling the unknown, and seek to bring clarity in ambiguous situations

Bonus Points!

• You have a BS in Computer Science or a related degree
• You have experience and exposure to a containerized environment
• You hold relevant security or technical certifications (CISA, CEH, AWS/GCP/Azure Professional)
• You are familiar with what’s going on under the hood of a cloud console, and can speak to best practices for configuration and management
• You are eager to learn, and to share your knowledge with colleagues
• You like to automate the boring stuff