FreeHire

CertiK

Senior Security Engineer

Show

You will design and deploy enterprise grade security solutions to safeguard internal networks applications and infrastructure. You will own end to end vulnerability management and lead cross functional incident response with engineering IT and compliance teams. You will conduct threat modeling and risk analysis for high value systems to proactively identify attack vectors and influence system architecture. You will perform comprehensive security assessments across internal and third party systems and guide secure development practices to deliver remediation guidance to engineering teams.

Responsibilities

  • Lead design and deployment of enterprise grade security solutions to safeguard internal networks applications and infrastructure ensuring confidentiality integrity and availability of mission critical systems and data
  • Define and enforce organization wide security policies and standards own end to end vulnerability management lifecycle and lead cross functional incident response with engineering IT and compliance teams
  • Oversee real time threat detection and response operations conduct forensic investigations and drive root cause analysis for high impact security incidents to inform long term defense strategies
  • Manage and execute comprehensive security assessments across internal and third party systems including architecture reviews endpoint security evaluations and infrastructure hardening initiatives
  • Guide secure development practices by applying advanced static and dynamic analysis to identify vulnerabilities and deliver remediation guidance to engineering teams
  • Conduct threat modeling and risk analysis for high value systems to proactively identify attack vectors and influence system and product architecture
  • Architect and maintain internal security tooling to expand detection coverage streamline response workflows and enhance operational visibility

Requirements

  • Master’s degree in Computer Science, Software Engineering, Security Informatics, or related field
  • Expertise in threat modeling/architectural risk assessment using structured methodologies (e.g., STRIDE/DREAD)
  • Advanced knowledge of SSDLC, including static/dynamic analysis/QA practices & end-to-end vulnerability lifecycle management (tracking/remediation coordination/verification)
  • Strong ability to conduct comprehensive security assessments across network infrastructure/application architecture/system configurations
  • Familiarity with cloud environments (AWS/Azure/GCP) & CI/CD deployment workflows; Proficiency in Java/Python with applied skills in secure coding/debugging/symbolic execution & internal tooling/automation scripting

Benefits

  • Medical insurance
  • Vision insurance
  • Dental insurance
  • 401(k) plan with company matching
  • Life and accidental death and dismemberment insurance
  • HSA with high deductible plan
  • FSA
  • Flexible paid time off and holidays
  • Variable commission program for business development sales roles