Security Engineer • Lead

Who you are

You have a visionary mindset with a strong background in security engineering, having led teams in developing and implementing security strategies for customer-facing products. Your hands-on experience with S-SDLC automation, including SAST, DAST, IAST, and SCA integration, positions you as a leader in the field. You are familiar with global compliance standards such as PCI DSS, SOC2, HIPAA, and FedRAMP, ensuring that security practices align with regulatory requirements. Your ability to communicate complex security risks to executive stakeholders while maintaining technical credibility with engineers is a key strength.

What you'll do

In this role, you will own the overall strategy and roadmap for the Product Security and Security Engineering programs, ensuring that security is integrated into every aspect of product development. You will develop and scale a 'shift left' security culture by integrating automated security tooling and 'Security as Code' solutions directly into the IDE and CI processes. You will oversee the design and implementation of highly scalable security frameworks for authentication, authorization, and encryption, including transitions to Passkeys. As a key liaison between Security, Engineering, and Product teams, you will drive risk remediation and ensure 'Security by Design' principles are followed. You will also recruit, mentor, and manage high-performing teams, fostering a culture of security awareness and excellence.

What we offer

At TripActions, you will be part of a dynamic team that is committed to innovation and excellence in security. We provide opportunities for professional growth and development, as well as a collaborative work environment where your contributions will have a significant impact on the company's success. We encourage you to apply even if your experience doesn't match every requirement, as we value diverse perspectives and backgrounds.