Senior Security Engineer 3 - Infrastructure and Automation

PagerDuty is seeking a Senior Security Engineer (Infrastructure & Automation) to join our diverse, customer-focused team! As a Senior Security Engineer, you will be a key contributor leading security initiatives around foundational infrastructure supporting PagerDuty's SaaS offerings. Your primary focus will be on infrastructure security through architecture reviews, threat modeling, and security tool implementations, while leveraging automation to scale security solutions. Since we own and operate what we build, you'll collaborate closely with engineers across many teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers.

This is an exciting opportunity to build lovable security solutions that make developers and customers happy. The ideal candidate believes in securing infrastructure at scale and creating automated solutions that make security the easiest choice.

KEY RESPONSIBILITIES  

• Lead technical security initiatives by conducting architecture reviews and threat modeling sessions for new and existing services

• Design and implement security controls for cloud infrastructure and containerized environments

• Work closely with Product Engineering teams to review service designs (full stack) and provide security-focused recommendations

• Resolve technical ambiguity in system designs, collaborating with engineering management and staff engineers

• Monitor and maintain security tooling supporting infrastructure security controls

• Design and implement security automations and tool integrations to scale security operations

• Build and maintain security guardrails and automated compliance controls

• Develop automated vulnerability management workflows to drive timely remediation

• Create security relevant alerting and metrics for visibility and reporting

• Implement automated incident response playbooks

• Mentor and guide team members on security best practices and implementation approaches

• Participate in our team's on-call rotation, triaging and addressing security issues as they arise.

• Contribute to roadmap and annual planning discussions

BASIC QUALIFICATIONS

• 5+ years of experience as a full-stack Security Engineer in a AWS native, micro-service SaaS environment

• Strong expertise in cloud security, particularly AWS services including but not limited to:

  • GuardDuty, CloudTrail, Secrets Manager

  • EKS/ECR, IAM family, Config

  • Service Mesh architectures

• Proficiency with security tools:

  • Vulnerability Management & EDR: Wiz, Snyk, Qualys/Nessus, Crowdstrike

  • SIEM: SumoLogic or Splunk

• Experience with Infrastructure as Code and CI/CD:

  • Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD

• 4+ years of experience and proficiency in at least one programming language and framework (Python, Bash, Ruby on Rails, Elixir, or Java)

• Strong understanding of Threat Modeling principles

• Experience with Security Incident Response & Risk Management

• High appetite for challenging problems with a high degree of ownership.

PREFERRED QUALIFICATIONS

• Current or past experience with obtaining and maintaining FedRAMP authorization

• Experience working at a SaaS company larger than 1000 employees and 100M in revenue

• Strong problem-solving abilities with effective change management skills

• Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure.

• Demonstrated history of mentoring and coaching

• Experience building Security Orchestration, Automation, and Response (SOAR) playbooks

• Strong written and verbal communication skills

• Working knowledge and experience with PagerDuty Incident Management and Process Automation products.

• Familiarity with Corporate security needs and solutions, and ability to provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO strategic initiatives and mandates.

The base salary range for this position is 152,000 - 248,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits.

Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience.

Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process.