Senior Security Engineer

Contentful is seeking a Senior Security Engineer to lead and shape security initiatives across cloud-native product infrastructure and corporate environments. The ideal candidate will have 8+ years of security engineering experience and expertise in cloud technologies and security tooling.

Requirements

• 8+ years of security engineering, DevSecops, or equivalent experience
• Expertise with AWS, GCP, and Cloudflare architecture, services, and security features
• Design, implement, and maintain secure CI/CD pipelines by integrating automated security controls such as SAST, DAST, dependency vulnerability scanning, and secrets management
• Proven experience designing and implementing security architecture aligned with business and technical strategies across cloud and application environments
• Mastery in Python to build and maintain security tools
• Exposure to Javascript and Go with the ability to perform security code reviews
• Deep knowledge securing Kubernetes clusters and containers, including configuration and runtime protection
• Hands-on experience using Terraform and other infrastructure-as-code tools to maintain integrity in cloud environments
• Demonstrated success driving vulnerability management, threat modeling, and incident response at scale
• Proficiency with authentication and authorization protocols and mechanisms (OAuth, SAML, JWT, IAM) to secure identity and access management
• Strong foundational networking expertise including cloud networking architectures, OSI model, TCP/IP protocols, routing, and firewall concepts
• Deep expertise in OWASP Top 10 and other application security frameworks, with proven success driving secure development practices and assessments
• Working knowledge of applying compliance frameworks controls including SOC 2 and ISO 27001
• Excellent problem-solving skills and ability to influence security strategy across teams
• Clear and effective communication skills
• Ability to articulate security risks and tradeoffs to both technical and semi-technical audiences
• Practical experience integrating multiple systems through APIs and parsing, normalizing, and integrating complex datasets between integrated systems

Benefits

• Full-time employees receive Stock Options for the opportunity to share in the success of our company
• Comprehensive healthcare package covering 100% of monthly health premiums for employees and 85% of costs for your dependents
• Fertility and family building benefits, including a lifetime reimbursable wallet to support your growing family
• We value Work-Life balance and You Time! A generous amount of paid time off, including vacation days, sick days, compassion days for loss, education days, and volunteer days
• Company paid parental leave to care for and focus on your growing family
• Use your personal annual education budget to improve your skills and grow in your career
• Enjoy a full range of virtual and in-person events, including workshops, guest speakers, and fun team activities, supporting learning and networking exchange beyond the usual work duties
• An annual wellbeing stipend to care for your physical, financial, or emotional health
• A monthly communication stipend and phone hardware upgrade reimbursement
• New hire office equipment stipend for hybrid or distributed employees. Get the gear you need to work at your best