Security Engineer, Lead
Chai Discovery
Position Overview:
As a Security Engineer, you will serve as the technical and strategic driver for the company's security posture. You will lead a small but growing team of security engineers, partnering with product and infrastructure groups to design, implement, and continuously improve secure‑by‑design solutions that scale.
Responsibilities:
Lead and mentor a team of security engineers, setting clear objectives and reviewing performance.
Define and execute the security engineering roadmap in alignment with business and compliance requirements.
Drive threat modeling, risk assessments, and architecture reviews for new and existing services.
Design, deploy, and operate detection & response capabilities.
Architect and enforce zero‑trust network segmentation, IAM policies, and least‑privilege access.
Serve as incident commander for high‑severity security incidents, coordinating investigation, containment, and remediation.
Evaluate and integrate security tooling and managed services; manage vendor relationships and budget.
Produce and present security metrics, KPIs, and risk posture updates to executives and the board.
Qualifications:
8+ years of progressive experience in information security, with at least 2 years leading or managing engineering teams.
Demonstrated expertise in cloud security (AWS, GCP, or Azure) and container security (Docker/Kubernetes).
Hands‑on experience building and operating detection & response pipelines and handling incidents end‑to‑end.
Deep understanding of network protocols, authentication, encryption, and modern zero‑trust architectures.
Familiarity with compliance and risk frameworks (SOC 2, ISO 27001, PCI‑DSS) and ability to translate requirements into technical controls.
Exceptional verbal and written communication skills; ability to influence and collaborate across functions.