Senior Security Engineer

Responsibilities

• Linux Hardening & Threat Detection: Secure our underlying Linux infrastructure and container runtimes. Deploy, tune, and manage our SIEM for continuous threat detection, file integrity monitoring, and host-based intrusion detection (HIDS) across our fleet.
• Identity & Access Control: Design and enforce secure access patterns. Ruthlessly eliminate shared accounts, long-lived credentials, and overly broad permissions across the organization.
• Cloud & Infrastructure Governance: Own the security posture across our cloud environments. Implement secure infrastructure-as-code practices using Terraform and Terraform workflow.
• Secure CI/CD & Supply Chain: Protect our production deployment paths against supply-chain attacks.
• Policy-as-Code & Preventive Guardrails: Build and maintain automated security controls into Terraform, Terraform Workflow, Git repository, and CI/CD workflows.
• Vulnerability Management: Drive faster CVE response times and vulnerability closures across our infrastructure. Reduce the ad hoc security burden currently spread across the engineering team.
• Incident Response & Compliance: Serve as the clear owner for external security reports, responsible disclosures, and audits, reducing the ad-hoc burden on the broader engineering team.
• Work closely with all Engineering teams in eliminating security threats.

Requirements

• Bachelor's degree in Computer Science, Cyber Security or similar technical field of study or equivalent practical experience
• Proven experience as a Security Engineer, with a minimum of 5 years working in a cyber security focused role
• Deep Linux Expertise: Extensive experience securing, hardening, and operating Linux-based infrastructure and containerized environments
• Cloud-Native Security: Experience securing Kubernetes or similar orchestration platforms, container images, runtime behavior, service mesh or network policies, and workload identity patterns.
• Identity-First Security: Strong understanding of SSO, MFA/passkeys, RBAC, just-in-time access, privileged access management, OIDC federation, and elimination of static credentials.
• Policy-as-Code: Ability to translate security requirements into automated controls.
• SIEM & Endpoint Security: Hands-on experience configuring and maintaining SIEM for centralized logging, vulnerability detection, and active response.
• Cloud & IaC Proficiency: Hands-on experience architecting security in mainstream cloud environments, and deep familiarity with Terraform, Ansible, and Git.
• AI Security Awareness: Practical understanding of LLM and agentic AI risks, including prompt injection, excessive agency, tool abuse, data leakage, insecure plugin/tool integrations, and secure approval boundaries.
• Security Ownership: Comfortable defining security metrics, driving remediation across teams, prioritizing risk pragmatically, and communicating trade-offs clearly to engineering leaders.
• Pragmatic Approach: You focus on automated guardrails, robust monitoring, and secure default paths rather than manual checklists and roadblocks.
• Our benefits include:
• Flexible working hours
• 20 days of vacation base, plus one extra day for every four years of experience
• 3-4 days of extra days off per year when we celebrate our successes globally
• Constant learning and development opportunities
• Yearly bonus

Benefits

Additional Information

DeepIntent is leading the healthcare advertising industry with data-driven solutions built for the future. From day one, our mission has been to improve patient outcomes through the artful use of advertising, data science, and real-world clinical data. For more information visit, www.DeepIntent.com .

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at deepintent? Share your experience