Jobgether is hiring a Lead Security Engineer to strengthen our cybersecurity posture and ensure a secure user experience. You will oversee the design and implementation of advanced security frameworks, tools, and practices, working closely with product and engineering teams to embed security throughout the software lifecycle.

What You'll Do

Lead and mature security initiatives to ensure protection from design through implementation.
Conduct threat modeling to guide product and application design decisions.
Perform in-depth code reviews to detect vulnerabilities and ensure compliance with best practices.
Identify and triage application vulnerabilities while proposing effective remediation strategies.
Conduct purple team exercises to simulate and counter attack vectors.
Develop and optimize automated security processes, tools, and monitoring systems.
Implement frameworks for severity levels, SLAs, and remediation workflows.
Collaborate with cross-functional teams to integrate security principles into engineering workflows.

What We're Looking For

Proven experience leading and implementing successful application security programs.
Strong background in partnering with cross-functional engineering and product teams.
Expertise in designing remediation strategies and mitigating security vulnerabilities.
Deep understanding of DevSecOps, AppSec, and modern cloud environments.
Experience with AWS, Kubernetes, CI/CD pipelines, Terraform, and CloudFormation.
Familiarity with security and compliance standards such as SOC2, PCI, HIPAA, HITRUST, and NIST.
Experience protecting sensitive data, particularly in healthcare or regulated industries.
Knowledge of securing Ruby on Rails, JavaScript, and GraphQL applications.
Hands-on experience with penetration testing tools such as Burp Suite.
Strong analytical mindset, problem-solving ability, and attention to detail.