Back to Jobs
Bulgaria, Ukraine, Romania, Poland, Lithuania, Kyiv, Estonia, Georgia, Palestine Remote (Global) Full-time

RemoFirst is hiring a Lead Security Engineer

Responsibilities

  • Design and maintain secure architecture for client-facing authentication platforms using Auth0
  • Optimize internal identity services to enable automated user provisioning via SCIM
  • Configure OIDC-based federated identity with enterprise customers' identity providers
  • Administer and automate operations within the Okta identity environment
  • Ensure reliable single sign-on, user lifecycle synchronization, and hardware-enforced multi-factor authentication
  • Collaborate across departments to manage intricate role-based access controls
  • Apply the principle of least privilege consistently across AWS services and accounts
  • Oversee detailed AWS IAM policies and organizational Service Control Policies (SCPs)
  • Perform routine internal penetration tests and vulnerability assessments on Python/Django and Java/Spring Boot applications
  • Liaise with third-party penetration testing teams for independent security evaluations
  • Conduct code reviews with development teams, focusing on secure implementation of security libraries
  • Implement robust security controls for Postgres database instances
  • Support engineering teams in identifying and mitigating potential threats through structured modeling
  • Strengthen Kafka message queues against unauthorized access and data exposure
  • Operate and maintain static and dynamic application security testing tools
  • Identify and remediate risks from outdated dependencies and improper software licensing
  • Develop developer-friendly security workflows that integrate seamlessly into the SDLC
  • Establish security boundaries and best practices for artificial intelligence projects
  • Protect personal and sensitive data within prompts used in large language models
  • Secure the end-to-end pipeline for machine learning model development and deployment
  • Lead certification efforts for SOC 2 Type II and ISO 27001 audits
  • Maintain an up-to-date inventory of organizational security risks
  • Support customer-facing teams in responding to security questionnaires from enterprise clients
  • Leverage automated compliance tools to maintain continuous audit readiness
  • Manage and update the organization's Trust Center hosted in Thoropass

Work Arrangement

Remote (Worldwide)

About company
RemoFirst
A remote work platform or company focusing on enabling distributed teams across multiple countries in Europe and Africa
All jobs at RemoFirst Visit website
Job Details
Department Engineering
Category security
Posted 3 months ago