Katana Cloud Inventory is hiring a Senior Security Engineer

Katana Cloud Inventory is looking for a Senior Security Engineer with a builder's mindset to join our remote-first B2B SaaS company. You will collaborate across Product and Engineering to ship automated guardrails, embed security into the SDLC, and build a lightweight, automated security platform that reduces risk while keeping developers productive.

What You'll Do

• Enforce cloud and platform guardrails via IaC (e.g., Terraform), admission policies, and CSPM; champion least privilege, network segmentation, and secrets hygiene.
• Run threat models on new designs; drive secure-coding patterns; implement SAST/DAST/dependency scanning; strengthen supply-chain protections (SBOM, provenance, signing).
• Own detections for high-risk scenarios; maintain IR runbooks; lead and coach incidents and post-mortems that deliver durable fixes.
• Orchestrate vulnerability triage, ownership, and remediation; run coordinated disclosure and occasional pentests or bug bounties.
• Strengthen SSO/MFA, workload identities, and JIT/JEA for privileged operations; reduce long-lived credentials.
• Classify data and enforce encryption, key management, DLP, and egress controls.
• Assess vendors and AI tooling for prompt, privacy, and model risks; define safe-use patterns for engineers.
• Run the Security Champions program; publish clear documentation and how-tos; host knowledge sharing sessions.
• Map controls to SOC 2 and ISO 27001 and automate evidence collection.

What We're Looking For

• Broad security fluency across cloud, identity, SaaS, and endpoints.
• Deep, hands-on strength in at least two areas (e.g., AWS + IAM, or Endpoint/EDR + Detection).
• Ability to comfortably write and read code; contribute small libraries, CI/CD checks, or Terraform modules.
• Experience automating security controls and reducing toil.
• Experience leading through incidents: calm triage, crisp communications, and steady ownership.
• Ability to convert telemetry and risk into clear, decision-ready narratives for both individual contributors and executives.
• Experience designing self-serve security experiences (identity patterns, secrets management, paved-road libraries).
• Ability to influence through clear documentation and programs like Security Champions.

Nice to Have

• Adopt an AI-first mindset, using LLMs and AI agents where appropriate.
• Default to audit-ready, automating evidence collection where possible.
• Collaborate with curiosity, welcome diverse perspectives, mentor generously, and learn fast.

Technical Stack

• Terraform
• AWS
• SAST/DAST tools
• EDR

Team & Environment

You will join a 100+ person global team. This is a function with strong executive backing, partnering closely with Engineering.

Benefits & Compensation

• Competitive compensation plus equity via our Employee Stock Option Program.
• 20 business days of PTO plus 3 paid health days annually.
• Sabbatical after four years.
• Your birthday off.
• Home office stipend.
• SunLife Insurance coverage or wellness allowance.
• Provided hardware and software.

Work Mode

This is a remote-first role for candidates located in Estonia or Portugal.

Our strength lies in diversity; we are a remote-first company with 100+ people from 25+ nationalities. We are committed to equitable opportunities, fostering belonging, and driving innovation.