Job Overview
Location
US, Remote
Job Type
Full-time
Category
Security Engineer
Date Posted
May 21, 2026
Full Job Description
đź“‹ Description
- • Lead, coach, and grow a team of Cloud Security Engineers and Application Security Engineers responsible for securing Horizon3.ai’s cloud infrastructure and software development lifecycle.
- • Set strategic priorities and operational rhythms for the security engineering team, balancing proactive security investments, day-to-day engineering support, and incident response.
- • Design, implement, and manage security controls across multi-cloud environments including AWS, Azure, GCP, Digital Ocean, and OCI, with emphasis on IAM, SCPs, VPC security, S3 bucket policies, security groups, key management, and logging.
- • Continuously monitor and improve cloud security posture using services such as AWS GuardDuty, Security Hub, WAF, CloudTrail, and Inspector, ensuring alignment with security best practices.
- • Embed security into the SDLC by partnering with engineering teams to conduct secure design reviews, threat modeling, architecture reviews, and CI/CD security automation.
- • Lead the application security program, including implementation of secure coding practices, vulnerability management, developer enablement, and product security reviews.
- • Manage and tune application security tooling such as SonarQube, Dependency Track, ZAproxy, Trufflehog, and Trivy to detect and remediate vulnerabilities in code and dependencies.
- • Build, maintain, and optimize GitLab CI/CD pipelines to automate security testing and scanning for cloud resources and applications.
- • Conduct threat modeling, architecture reviews, and risk assessments for new cloud deployments, product features, and internal systems.
- • Implement security monitoring, system hardening, and detective controls across AWS and application environments to identify and respond to malicious activity.
- • Respond rapidly to emerging threats and vulnerabilities, leading investigations, post-mortem analysis, root cause identification, and preventive action planning.
- • Define and enforce identity and access management best practices including least privilege, federated identity, role-based access control, and automated remediation workflows.
- • Develop, maintain, and enforce security policies and standards aligned with SOC 2, GDPR, ISO 27001, FedRAMP, NIST, CIS, and MITRE ATT&CK frameworks.
- • Create and deliver metrics, reports, and risk narratives to communicate security posture, trends, and priorities to engineering leadership and business stakeholders.
- • Evaluate, recommend, and introduce new security tools, techniques, and controls to enhance the organization’s cloud and application security posture.
- • Recruit, onboard, mentor, and develop high-performing security engineering talent to support organizational growth.
- • Collaborate horizontally with peer managers and senior leaders to align security initiatives with broader engineering and business objectives.
- • Demonstrate ownership and accountability in driving security outcomes with integrity, process improvement, and customer satisfaction as guiding principles.
🎯 Requirements
- • Proficient in AWS security services, Terraform, GitLab, and modern CI/CD security practices
- • Deep understanding of AWS security architecture, IAM, cloud posture management, data security principles, and secure SDLC practices
- • Experience leading or closely partnering with Application Security efforts including threat modeling, vulnerability management, and security reviews
- • Knowledgeable in compliance standards and security frameworks including SOC 2, GDPR, ISO 27001, FedRAMP, NIST, CIS, and MITRE ATT&CK
- • Strong written and verbal communication skills to explain technical risks and tradeoffs to technical and non-technical stakeholders
- • 5+ years of experience in cybersecurity, including 5+ years securing AWS environments and cloud-native systems
🏖️ Benefits
- • Base salary range of $149,850 - $185,000 annually
- • Equity package in the form of stock options
- • Health, vision, and dental insurance for employee and family
- • Flexible vacation policy
- • Generous parental leave
- • Inclusive, diverse, and collaborative team culture
Skills & Technologies
AWS
Azure
GCP
Terraform
GitLab
Remote
$149k-185k
Degree Required
About Horizon3.ai, Inc.
Horizon3.ai provides autonomous security testing and attack surface management software. Its NodeZero platform continuously assesses enterprise networks, clouds, and applications to find exploitable weaknesses, validate fixes, and prioritize risks. The company serves Fortune 500, government, and mid-market organizations seeking proactive defense without manual red teams.
Get more remote jobs like this
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
