This job has expired
This position was posted on September 15, 2025 and is likely no longer accepting applications. We've kept it here for historical reference. Check out the similar jobs below!
Job Overview
Location
Latvia
Job Type
Full-time
Category
Software Engineering
Date Posted
September 15, 2025
Full Job Description
š Description
- ā¢ Shape the security future of a fast-growing SaaS platform. As Senior Security Engineer you will own the end-to-end security roadmap for Levelpath, translating cutting-edge research into practical controls that protect thousands of global users and petabytes of sensitive procurement data.
- ā¢ Architect and harden cloud-native infrastructure on AWS. You will design zero-trust network segments, least-privilege IAM policies, key-management hierarchies, and container-level guardrails so that every microservice, CI/CD job, and data store meets or exceeds industry benchmarks.
- ā¢ Own incident response from alert to post-mortem. When a signal fires in CrowdStrike, Splunk, or our custom detections, you will triage, contain, eradicate, and documentāthen turn lessons learned into new detections, runbooks, and engineering requirements that prevent recurrence.
- ā¢ Drive compliance without slowing delivery. You will map SOC 2, ISO 27001, and GDPR controls to code-level controls, automate evidence collection in Vanta, and shepherd annual audits so that Sales can close enterprise deals while Engineering ships weekly.
- ā¢ Build and run a modern vulnerability-management program. You will integrate SAST/DAST scanners (Snyk, Rapid7) into GitHub Actions, prioritize findings using threat-model scoring, and coordinate remediation sprints that cut mean-time-to-patch from weeks to hours.
- ā¢ Lead purple-team exercises and bug-bounty triage. You will scope external penetration tests, validate researcher reports, reward valid findings, and turn exploits into regression tests that run in every build.
- ā¢ Be the security voice in every design review. You will threat-model new features, review pull requests for security anti-patterns, and pair with engineers to ship secure-by-default libraries and SDKs.
- ā¢ Empower the entire company to think like defenders. You will craft role-based security training, spear-phishing simulations, and Slack-based micro-lessons that turn Product Managers, Designers, and Sales Engineers into active participants in risk reduction.
- ā¢ Translate complex risk into customer-ready narratives. You will join pre-sales calls, respond to 300-question security questionnaires, and present our controls roadmap to Fortune-500 CISOsāhelping Levelpath win deals worth millions.
- ā¢ Champion a culture of psychological safety and inclusion. You will mentor junior engineers, run blameless post-mortems, and ensure that security decisions are transparent, well-documented, and accessible to every teammate regardless of background or location.
šÆ Requirements
- ā¢ 5+ years hands-on security engineering experience in cloud-native, product-led SaaS environments
- ā¢ Deep familiarity with AWS security primitives (IAM, KMS, GuardDuty, Security Hub, SCPs) and infrastructure-as-code (Terraform, CloudFormation)
- ā¢ Demonstrated success shepherding SOC 2 Type II and/or ISO 27001 certifications from gap analysis through audit close
- ā¢ Proficiency with at least one modern SIEM or log-analytics stack (Splunk, Elastic, Panther) and writing high-signal detection rules
- ā¢ Nice-to-have: active CISSP, CISM, or AWS Security Specialty; prior leadership of public bug-bounty programs; experience with GDPR/CCPA data-mapping
šļø Benefits
- ā¢ Hybrid-remote flexibility with a modern office in Teodors, JaunÄ Teika, plus stipend for home-office setup and high-speed internet
- ā¢ Competitive base salary, stock options in a Sequoia-backed rocket-ship, and twice-yearly performance bonuses
- ā¢ 25 days paid vacation, Latvian public holidays, and an additional "Levelpath Day" off each quarter for mental health
- ā¢ Annual professional-development budget (certifications, conferences, courses) and paid volunteer time for security community projects
Skills & Technologies
About Levelpath Inc.
Levelpath builds a cloud procurement platform that unifies supplier discovery, intake, sourcing, contract and vendor management for mid-market and enterprise teams. The system uses AI to automate workflows, enforce policies and surface savings opportunities while providing employees a consumer-like experience to request goods and services. Founded in 2022 by former Workday executives, the company aims to replace fragmented spreadsheets and legacy tools with a single, mobile-first workspace for all indirect purchasing activities.
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
Similar Opportunities
Front Careers LLC
7 months ago
Jiostar Technologies Private Limited
7 months ago