CaptivateIQ

Senior Security Engineer – Cloud & Platform Security

Canada

Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
SaaS, Cloud Computing, Sales Performance ManagementIndustries

About CaptivateIQ

CaptivateIQ is the leading Sales Performance Management solution, recognized by Forrester and G2, and trusted by customers including Affirm, Gong, and Figma. With solutions for Sales Planning and Incentives, we help revenue teams automate processes, hit revenue targets, and adapt with business change, ultimately driving efficient growth. It's time to rethink ROI - your return on incentives - with CaptivateIQ.

With backing from Sequoia, Accel, ICONIQ, Sapphire Ventures, and other leading investors, CaptivateIQ is on a mission to enable every company to improve their return on incentives and sales planning.

Come and see why Glassdoor and Comparably have recognized CaptivateIQ as a best place to work!

About the Role

Security is a core value at CaptivateIQ. As we scale and evolve our platform, building security into the foundation of our infrastructure and cloud services is essential to ensuring trust and resilience at every layer of our environment.

As a Senior Security Engineer focused on Cloud & Platform Security, you will be responsible for securing the foundation of our SaaS platform - designing and implementing scalable security controls across our cloud infrastructure and platform development lifecycle. You will evaluate and improve our AWS cloud security posture, manage Cloud Security CNAPP tooling (CSPM, CWP, CIEM, DSPM), and implement threat detection and monitoring strategies. You’ll also lead incident response for infrastructure security events and drive compliance readiness across our cloud environment.

This highly technical role is ideal for an engineer who thrives in cloud-native environments, understands modern DevSecOps practices, and brings deep expertise hardening multi-tenant SaaS architectures and partnering with SRE teams.

Responsibilities

Cloud Security Architecture & Posture Management

  • Design and enforce security baselines for AWS services, network segmentation, containerized workloads, and IAM.
  • Leverage modern cloud security technologies to monitor for configuration drift and anomalous activity.

Secure CI/CD Enablement

  • Embed automated security controls into build and deployment pipelines and enforce secure infrastructure-as-code practices (Terraform).

Cloud Threat Detection & Monitoring

  • Develop and tune detection logic for cloud and infrastructure threats; integrate logs with SIEM for security observability.

Identity & Access Governance

  • Implement least privilege, zero-trust principles, and centralized access governance across infrastructure and internal tools.

Vulnerability Management

  • Own vulnerability identification, prioritization, and remediation for infrastructure components and dependencies.

Incident Response Leadership

  • Act as a primary technical lead for cloud/infrastructure security incidents and root cause analysis.

Compliance Alignment

  • Contribute to security audits, control validation, and evidence collection for SOC 2, ISO 27001, and other frameworks.

Cross-Team Enablement

  • Partner with SRE to ensure reliability and security guardrails align without slowing delivery.

Requirements

  • Experience: 7+ years of experience in a security engineer or related role, including 4+ years specializing in cloud and infrastructure security.
  • AWS Expertise: Advanced expertise of AWS security architecture, IAM, ZTNA, and secure multi-tenant SaaS designs.
  • Communication: Strong communication and ability to influence technical decisions across teams.
  • Containers: Hands-on experience securing containers and orchestration frameworks (Docker, ECS, Kubernetes).
  • Scripting: Strong programming and scripting skills (Python preferred) for automation and tooling.
  • CI/CD: Experience integrating security into CI/CD pipelines and infrastructure-as-code environments.
  • Threat Detection: Deep understanding of detection strategies, logging, and incident response for cloud workloads.
  • Incident Response: Proven ability to lead incident response for cloud and infrastructure security events.
  • CNAPP: Familiarity leveraging Cloud-Native Application Protection Platform (CNAPP) tooling.
  • Compliance: Knowledge of compliance frameworks (SOC 2, ISO 27001).

Skills

AWS
Cloud Security
CNAPP
CSPM
CWP
CIEM
DSPM
Threat Detection
Monitoring
Incident Response
DevSecOps
SaaS Architecture
IAM
Network Segmentation
Container Security

CaptivateIQ

Sales commission automation and tracking platform

About CaptivateIQ

CaptivateIQ provides a sales commission solution that automates and simplifies the commission calculation process for sales teams. The platform integrates various data sources, allowing for real-time commission calculations and reducing the need for manual data entry. Its interface is designed to be user-friendly, resembling tools like Excel or Google Sheets, which makes it accessible to users without coding skills. What sets CaptivateIQ apart from its competitors is its ability to offer customizable reports and commission plans, ensuring that all team members are aligned and motivated. The goal of CaptivateIQ is to help sales-driven organizations optimize their incentive structures and enhance operational efficiency.

San Francisco, CaliforniaHeadquarters
2017Year Founded
$154.7MTotal Funding
SERIES_CCompany Stage
Fintech, Financial ServicesIndustries
201-500Employees

Benefits

Health Insurance
Paid Vacation
401(k) Company Match
Flexible Work Hours
Home Office Stipend
Professional Development Budget

Risks

Emerging fintech startups pose a competitive threat to CaptivateIQ's market share.
Continuous innovation in AI and machine learning may strain CaptivateIQ's resources.
Integration challenges with new features like SmartGrid could disrupt existing client systems.

Differentiation

CaptivateIQ offers a no-code platform for commission management, accessible to non-technical users.
The company provides real-time commission calculations, enhancing speed and accuracy for enterprises.
CaptivateIQ's customizable reports and plans align with personalized employee incentive structures.

Upsides

The rise of no-code platforms supports CaptivateIQ's user-friendly commission management approach.
CaptivateIQ's cloud-based platform benefits from the trend towards remote work solutions.
The subscription-based model offers predictable revenue streams, aligning with industry trends.

Land your dream remote job 3x faster with AI