Senior Security Engineer (SecOps)

Overview

A Security Engineer within the Security Operations team collaborates across the organization to construct and manage security tools and processes. Leveraging extensive expertise in systems, automation, and security, a Senior Security Engineer is tasked with operating technology, devising solutions, and ensuring continuous compliance on a large scale.In the role of a Senior Security Engineer, you will take the lead in expanding visibility into Harness’ security posture, automating essential security technologies, and fostering ongoing enhancements throughout our technical infrastructure. Your responsibilities include designing solutions aligned with Harness' security objectives, working closely with engineering teams to achieve project goals, and spearheading cross-team initiatives with Engineering and Product. This role provides an opportunity to refine existing skills and acquire new ones in line with the company’s growth trajectory

Key Responsibilities

• Take a leading role in the design of the next level of secure operations for Harness' cloud and business infrastructure
• Take charge of implementing and overseeing security tooling, encompassing the detection and alerting systems for identifying malicious activity and insecure configurations
• Utilize automation to effectively manage and enhance the security posture of Harness' multi-cloud Kubernetes-based infrastructure
• Use Harness CI/CD to integrate security processes like vulnerability management into the SDLC
• Contribute to the development, review, and implementation of technical security and compliance-related engineering requirements across global Engineering teams
• Detect, respond, and mitigate security related events and incidents.
• Collaborate with fellow Developers and Product Managers to analyze and implement security standards, methods, and architectures

Qualifications

• At least 7 years of relevant industry experience in roles such as systems engineer, security engineer, cloud security specialist, or site reliability engineer.
• Expert-level professional knowledge in enterprise applications and infrastructure.
• Extensive experience working in a cloud-native environment, with proficiency in platforms like AWS, GCP, and Azure.
• Familiarity with industry regulations and compliance certifications, including ISO 27001, SOC 2, FedRAMP, and SOX.
• A desire to contribute to a high-growth environment and take a leading role in building new programs from the ground up.
• Strong attention to detail and a willingness to ask questions when uncertain.
• Comfort with ambiguity, with a proactive approach to bringing clarity in uncertain situations.