Helping Organizations with Digital Transformation
Senior Software Engineer, Security Infrastructure
Location
United States
Posted
57 days ago
Salary
$170K - $220K / year
Seniority
Senior
Job Description
Senior Software Engineer, Security Infrastructure
Cadence Solutions
Role Description We're hiring a Senior Software Engineer, Security Infrastructure to build scalable security infrastructure that embeds compliance and risk controls directly into the Cadence platform. You will solve complex security challenges such as data classification, AI governance, GRC automation, and secure integration with healthcare partners and external systems. What You'll Do - Embed directly within Product and Platform Engineering teams to implement security-critical features and components of Cadence's platform, and drive teams toward secure architectural and implementation decisions as needed. - Build security capabilities that differentiate Cadence and influence the broader healthcare ecosystem, including reusable security primitives, contributions to open standards and open-source initiatives, and partnerships with customers and vendors to raise the bar for privacy, interoperability, and secure AI adoption. - Design and implement security controls across cloud infrastructure, Kubernetes, CI/CD systems, endpoints, identity systems, secrets management, and broader platform security primitives to keep core systems secure. - Build AI governance processes, frameworks, and safeguards that help ensure Cadence's AI systems are safe, reliable, fair, and aligned with patient safety outcomes. Qualifications - Bachelor's or Master's degree in Computer Science, Engineering, or a related field, or equivalent work experience. - 3+ years of software engineering experience, with at least 2+ years building and shipping real systems or infrastructure. - Strong ability to navigate and reason across the stack - quickly understanding unfamiliar codebases, architectures, and tooling ecosystems. - Ability to identify patterns and design scalable “golden paths” (e.g., logging, access controls, network security) that work across teams. - Effective communicator who translates technical findings into clear designs, builds alignment, and drives initiatives from concept to execution. - Demonstrated interest in security and the ability to think adversarially - approaching system design with rigor, considering failure modes, and leveraging modern tools to accelerate solutions. Requirements - 3+ years of software engineering experience. - At least 2+ years building and shipping real systems or infrastructure. Benefits - Competitive pay & equity* - Fully remote - Comprehensive health coverage: Medical, dental & vision - Paid time off - 401k plan + matching - Paid parental leave - Home office stipend *Benefit offerings may vary depending on job profile, job level and worker type.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Security Engineer – SIEM/SOAR
GuidePoint SecurityWe help organizations make smarter cybersecurity decisions that minimize risk.
• GuidePoint Security provides trusted cybersecurity expertise, solutions and services • Enabling organizations to identify threats, optimize resources and integrate solutions that mitigate risk • Collaborate and provide mentorship and guidance at every opportunity
Senior Cyber Security Engineer
LoenbroLoenbro is a trusted, long-term construction lifecycle partner to thousands of customers across the U.S. Our market spans all industries and our service offerings include: Critical Electrical, Mechanical & Structural Soft Crafts Inspection Underground Maintenance and Installation Fabrication Our expertise lies in simplifying the complex and establishing long-standing relationships with our partners. We have a national presence but a local approach—every customer benefits from our capabilities and our care. At Loenbro, we don’t just offer jobs—we build careers grounded in integrity, teamwork, excellence, and purpose. Join a team where your expertise is valued, your growth is supported, and your work helps maintain and enhance the critical infrastructure that powers communities across the nation.
Role Description We are seeking a highly experienced Senior Cyber Security Engineer to lead and support enterprise security initiatives, with a strong focus on security platform migrations and day-to-day cybersecurity operations. This role is responsible for ensuring the organization’s security posture is maintained and continuously improved while enabling secure adoption of new technologies. The ideal candidate is a hands-on security practitioner with deep experience in enterprise environments, capable of driving security initiatives, supporting operational teams, and guiding cross-functional stakeholders. Essential Job Responsibilities - Security Platform Ownership, Migration, and Transformation - Lead and support the daily management, governance, and migration of security platforms (e.g., EDR, identity, email security, cloud security tools) with minimal operational disruption. - Evaluate current security tools and recommend improvements or replacements aligned to business and risk requirements. - Coordinate with IT, infrastructure, and business teams to ensure secure management, configuration, and implementation of security platforms. - Develop and execute migration plans, including validation, testing, and cutover strategies. - Ensure proper configuration, hardening, and alignment to security standards. - Operational Cybersecurity (Day-to-Day) - Monitor and respond to security alerts and incidents in collaboration with SOC or IT teams. - Perform investigation and triage of security events, including root cause analysis and mitigation. - Manage vulnerability remediation efforts and track risk reduction progress. - Maintain and improve endpoint, identity, and network security controls. - Support incident response activities, including containment, eradication, and recovery. - Risk and Security Governance - Identify, assess, and communicate cybersecurity risks to leadership and stakeholders. - Ensure security controls align with regulatory and compliance requirements (e.g., NIST, CIS, ISO frameworks). - Contribute to the development and enforcement of security policies, standards, and procedures. - Participate in audits, assessments, and security reviews. - Collaboration & Leadership - Act as a subject matter expert for cybersecurity initiatives across the organization. - Partner with architecture, infrastructure, and application teams to embed security into projects. - Provide guidance and mentorship to junior security team members. - Support security awareness and best practice adoption across the business. Qualifications - 4–5+ years of hands-on cybersecurity experience in a fast-paced, complex enterprise environment. - Proven track record as a hands-on individual contributor (not primarily management-focused). - Experience across multiple cybersecurity domains (at least 3) such as: - Endpoint Detection & Response (EDR) - Identity & Access Management (IAM) - SIEM / SOAR - Cloud security - Email security or network security - Experience with security operations, including: - Incident response, investigation, and triage - Vulnerability management and remediation - Endpoint, identity, or network security controls - Demonstrated ability to own and manage security tools/platforms end-to-end. - Experience supporting or participating in security tool implementations, migrations, or transformations. - Working knowledge of security frameworks such as NIST, CIS, or ISO. - Strong ability to learn new technologies quickly and operate in a vendor-agnostic environment. - Excellent communication and collaboration skills, with the ability to work across technical and business teams. - Ability to thrive in a fast-moving, evolving environment with shifting priorities. Requirements - Experience with CrowdStrike or similar EDR platforms, especially in migration or large-scale deployments. - Experience with security automation or scripting (e.g., Python, PowerShell). - Hands-on experience with cloud platforms (Azure, AWS, or GCP security tooling). - Experience in rapid-growth or transformation-focused environments. - Exposure to OT/industrial or construction-related environments (nice to have). - Experience acting as a technical lead or subject matter expert, including mentoring others. - Relevant certifications (e.g., CISSP, GIAC, Security+) or demonstrated commitment to continuous learning. Benefits - Medical, dental, and vision insurance. - 401(k) retirement plan with company match. - Paid time off (PTO) and holiday pay. - Life and disability insurance. - Professional development and training opportunities. - Employee assistance program (EAP). - Benefits eligibility may vary based on employment classification and hours worked.
Principal Security Operations and Enablement Engineer
HuntressManaged endpoint protection, detection and response for the 99% who need it most.
Role Description Security Operations and Enablement Engineering is the layer between what the security organization needs and what the core platform provides. As a SO&E Engineer, you will close that gap by taking requirements surfaced by Operations and building the workflows, automations, and tooling that make detection and response faster, more consistent, and more scalable. This is not a role that waits for tickets. You will be in the room where operational problems get diagnosed, then own the technical execution that solves them. The work is varied by design. On any given week that might mean: - Building a dashboard that gives leadership real operational visibility - Automating a manual process that is costing analysts time - Translating a fuzzy operational complaint into a scoped, buildable requirement AI and agentic workflows are part of the toolkit here, but the through line is pragmatic problem solving: find what is slowing the security organization down and build something that fixes it. Qualifications - 5+ years building workflow automations, internal tooling, or operational infrastructure in a technical environment, ideally within security or a similarly complex domain - Demonstrated ability to operate across organizational functions — translating operational pain from non-technical stakeholders into precise, scoped technical requirements without significant back-and-forth - Proficiency in Python or similar scripting languages, with the ability to write clean, maintainable code that establishes patterns others can build on - Experience building and maintaining API integrations to connect tools and systems that don't talk to each other out of the box - Familiarity with security operations tooling including SIEMs, ticketing systems, and alerting platforms, sufficient to understand how analysts work and where automation creates real leverage - Experience building dashboards and reporting tooling sufficient to create meaningful operational visibility without relying on a dedicated BI team - Comfort operating in an ambiguous, fast-moving environment where the function is still being defined — able to set technical direction without a fully established playbook Requirements - Own and evolve the SO&E technical strategy, including how the function identifies, prioritizes, and delivers against operational gaps that the core platform does not address - Serve as the primary technical translator for requirements surfaced by SOC and Support Operations Managers, turning operational pain points into scoped, buildable solutions against a prioritized backlog - Partner with the Director to translate Product and operational priorities into scoped technical requirements, ensuring SO&E delivery is sequenced against the gaps that matter most to the business - Translate operational requirements into precise technical solutions including workflow automations, API integrations, internal tooling, and custom dashboards — and establish the standards others build to as the function scales - Build and maintain reporting and dashboard infrastructure that gives operators and leadership meaningful visibility into security performance and workflow health - Identify and drive toil reduction across SOC and Support workflows through automation, tooling improvements, and smarter use of existing capabilities including AI where appropriate - Evaluate new platforms and technologies against backlog needs, with a bias toward solutions that keep the team tool-agnostic and avoid unnecessary dependency - Establish and document technical standards across the build lifecycle that support long-term scalability and create a foundation for the function to grow on Benefits - 100% remote work environment - since our founding in 2015 - Generous paid time off policy, including vacation, sick time, and paid holidays - 12 weeks of paid parental leave - Highly competitive and comprehensive medical, dental, and vision benefits plans - 401(k) with a 5% contribution regardless of employee contribution - Life and Disability insurance plans - Stock options for all full-time employees - One-time $500 reimbursement for building/upgrading home office - Annual allowance for education and professional development assistance - $75 USD/month digital reimbursement - Access to the BetterUp platform for coaching, personal, and professional growth
• Lead the implementation, assessment, and continuous improvement of security controls aligned with NIST SP 800-171 and CMMC 2.0, ensuring organizational readiness for Level 2 certification. • Own and maintain the System Security Plan (SSP), Plans of Action and Milestones (POA&M), security policies, procedures, and compliance documentation. • Map and protect Controlled Unclassified Information (CUI) throughout its lifecycle, including data flows across engineering design (CAD/CAM), procurement, quality, manufacturing, and external suppliers. • Serve as the primary liaison for CMMC assessments, including coordination with C3PAOs, audit preparation, artifact management, and remediation tracking. • Implement and monitor security controls across both IT and OT environments, including identity and access management, multi-factor authentication, encryption, endpoint detection and response (EDR), SIEM, firewalls, and network segmentation. • Conduct vulnerability scanning, risk assessments, and gap analyses against NIST SP 800-171 controls, prioritizing mitigation efforts based on operational and contractual risk. • Lead cyber incident response activities, including documentation and reporting of incidents impacting CUI within required DFARS timelines (e.g., 72-hour reporting). • Partner cross-functionally with engineering, operations, quality, and leadership to embed cybersecurity into product development and manufacturing processes. • Oversee relationships with managed service providers (MSPs), cloud providers, and external security vendors to ensure secure configurations and regulatory compliance. • Develop and deliver practical cybersecurity training tailored to aerospace manufacturing personnel, including phishing awareness, secure technical data handling, and CUI best practices. • Establish compliance dashboards and executive reporting mechanisms to provide visibility into security posture and remediation progress. • Support and secure cloud environments, including Microsoft GCC High or Azure Government, where applicable.



