Talent.com
Staff Security Engineer

Staff Security Engineer

engineDenver, CO, United States
1 day ago
Job type
  • Full-time
Job description

Overview

Engine is transforming business travel into something personalized, rewarding, and simple. Were building a platform that brings together corporate travel, a powerful charge card, and modern spend management in one place. Engine is seeking a highly-skilled and motivated Staff Security Engineer to join our team. You will be responsible for ensuring the security and integrity of our applications and software systems, help build out a vulnerability management pipeline, and contribute to our application security program. You will coordinate closely with senior leadership and engineering teams to deploy and execute the program, ensuring that Engine adheres to best practices in application security.

Responsibilities

  • Develop and manage threat detection capabilities, including configuring, tuning, and managing a SIEM solution to identify, analyze, and respond to security threats across multiple layers.
  • Perform architecture reviews, code reviews, infrastructure config reviews, and light penetration testing on web applications, mobile apps, and other software systems to identify and resolve vulnerabilities and other security risks.
  • Maintain a vulnerability management CI / CD pipeline within our existing container / application delivery infrastructure while aligning security goals with business objectives.
  • Collaborate with development and infrastructure leadership to enforce secure coding practices, security controls, and remediation strategies throughout the software development lifecycle (SDLC).
  • Strategize and implement secure architectures, frameworks, and tooling for enterprise security.
  • Develop and maintain security guidelines for managing and deploying security tools.
  • Stay up-to-date with the latest security threats, vulnerabilities, and industry best practices, and provide guidance to development teams accordingly.
  • Participate in incident response and forensic investigations related to application security breaches or incidents.
  • Develop relevant security training and awareness programs for developers, operations teams, and other stakeholders.

Qualifications / What You'll Bring to Engine

  • Proficiency in one or more programming languages (e.g., Ruby, Java, Python, C#, Node.js).
  • Expertise in implementing and managing SIEM solutions with comprehensive and efficient alerting and monitoring capabilities.
  • Knowledge of containerization technologies (e.g., Docker, Kubernetes) and experience with automated container vulnerability management.
  • Mastered static and dynamic application security testing tools (SAST, DAST, IAST, etc.) and comfortable with manual validation testing.
  • Expertise in web application security principles, browsers, OWASP Top 10, secure coding practices, and threat modeling with frameworks like the MITRE Top 25.
  • Knowledge of secure software development methodologies (e.g., DevSecOps, Secure SDLC).
  • Experience with Web Application Firewalls (WAF).
  • Experience with cloud security concepts and best practices.
  • Experience working with compliance frameworks such as SOC 2 and PCI.
  • Excellent analytical, problem-solving, and communication skills.
  • Ability to work collaboratively with cross-functional engineering leadership, including developers, operations, and fraud teams.
  • A passion for mentoring others.

    • Applications for this role will be accepted through 1 / 20 / 2026 or until the role is filled. We encourage you to apply early, as we may begin reviewing applications before the deadline.

    Compensation & Benefits

    Base Pay Range : $190,000$230,000 USD

  • Base compensation is complemented by equity and / or variable pay (OTE).
  • Full compensation details will be shared by your recruiter as you move through the process.
  • Perks and benefits include a range of offerings; details at .
  • Hybrid-hub model : options for in-office, remote, or hybrid work arrangements to support success.

    • Location

    Boulder, CO

    Ready to Build the Future of Work Travel?

    Join us on our mission to transform how work travel worksfor businesses, for travelers, and for the industry. Apply now and lets make travel simpler, smarter, and more enjoyabletogether.

    #J-18808-Ljbffr

    Create a job alert for this search

    Staff Security Engineer • Denver, CO, United States