Staff Security Engineer

Position Overview

• Location Type: Remote
• Job Type: Full-Time
• Salary: Not provided

Atlan is revolutionizing how organizations manage and utilize data. As the world’s first active metadata platform, we help teams transform data chaos into clarity and seamless collaboration. We empower ambitious teams across industries to unlock the full potential of their data. Recognized as leaders by Gartner and Forrester and backed by Insight Partners, Atlan is at the forefront of reimagining how humans and data work together.

Requirements

• Experience: 10+ years of experience leading security initiatives for enterprises in an information security (InfoSec) consultant or architect role.
• DevSecOps: Proven experience with implementing DevSecOps principles, including Shift Left and Policy as Code methodologies.
• Application Security: Experience implementing application security architecture.
• Cloud Security: Experience implementing cloud security architecture.
• Kubernetes (K8s) Security: In-depth knowledge and experience with Kubernetes (K8s) security is required.
• Secure Development Lifecycle (SDLC): Experience integrating security practices into the SDLC.
• SaaS/Platform Security: Experience with SaaS security or platform security is a strong plus.
• Security Knowledge: Strong understanding of security threats, vulnerabilities, and risk mitigation strategies.

Responsibilities

• Security Assessment: Conduct a thorough security assessment of Atlan’s current infrastructure, applications, and cloud environments, identifying strengths and areas for improvement.
• Threat Modeling & Risk Assessment: Conduct detailed threat modelling and risk assessments to identify, prioritize, and mitigate potential security threats.
• Documentation: Document the existing security architecture, policies, and procedures.
• Security Strategy: Develop and implement a comprehensive security strategy aligned with Atlan's business goals and industry best practices.
• Metrics & KPIs: Establish security metrics and key performance indicators (KPIs) to measure the effectiveness of security controls.
• Security Controls: Design and implement robust security controls across the platform, including network, application, and infrastructure security.
• CI/CD Integration: Integrate security best practices into the CI/CD pipeline to ensure seamless DevSecOps practices (Shift Left, Policy as Code).
• Incident Response: Develop and implement incident response plans, conduct regular drills, and continuously improve security operations through monitoring and ongoing assessments.
• Security Advocacy: Advocate for security best practices across the organization, fostering a security-first mindset and a culture of security awareness.
• Mentorship: Lead and mentor other team members, promoting continuous learning and improvement in security practices.
• Compliance: Ensure compliance with relevant security standards and regulations (e.g., PCI DSS, GDPR).
• Audits & Certifications: Prepare for and assist in security audits and certifications.

Application Instructions

Not provided

Company Information

Atlan is recognised as leaders by Gartner and Forrester and backed by Insight Partners. We are at the forefront of reimagining how humans and data work together.