Plus
Включить Plus
Назад
Company hidden
1 день назад

Lead Security Engineer (AWS)

Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
lead
Английский
b2
Страна
US/Canada
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Lead Security Engineer (AWS): Owning the end-to-end security posture for a high-load revenue management platform with an accent on cloud infrastructure, compliance, and customer trust. Focus on building secure CI/CD pipelines, managing vulnerability programs, and leading incident response while aligning with SOC 2 and ISO 27001 standards.

Location: Remote (Must be based in the US or Canada)

Company

hirify.global is the hospitality industry's leading revenue management platform, providing AI-driven pricing and profit optimization tools for hotels, resorts, and casinos worldwide.

What you will do

  • Own the overall security posture across cloud, product, infrastructure, and IT.
  • Lead cloud security initiatives in AWS, including IAM, network security, and container security.
  • Manage vulnerability programs and partner with DevOps to embed security into the SDLC and CI/CD pipelines.
  • Serve as the primary incident leader for major security investigations and tabletop exercises.
  • Drive SOC 2 Type 2, ISO 27001, and ISO 42001 AI governance readiness.
  • Support enterprise security reviews, RFPs, and customer-facing security assurance.

Requirements

  • 8+ years of experience in security, cloud security, or DevSecOps.
  • Strong hands-on knowledge of AWS architecture and risk identification.
  • Experience securing DevOps environments, Kubernetes, and infrastructure-as-code.
  • Familiarity with SOC 2 Type 2, ISO 27001, NIST CSF, and GDPR requirements.
  • Proven ability to translate technical risks into business-level priorities for stakeholders.
  • Must be based in the US or Canada.

Nice to have

  • Hands-on experience with Snyk, Lacework, Vanta, or MDM platforms.
  • Prior ownership of end-to-end SOC 2 Type 2 audit readiness.
  • Experience with ISO 42001 or AI governance frameworks.
  • Background in supporting enterprise SaaS security reviews.

Culture & Benefits

  • Full ownership of a consequential security program with high autonomy.
  • Work at the frontier of security and AI-augmented software development.
  • Exposure to both deep technical architecture and commercial enterprise security reviews.
  • Collaborative environment within a top-rated workplace in hotel tech.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →