Senior Security Engineer, Application & Platform Security

About the Role

The Security Team at Sentry is responsible for securing all aspects of the company, from customer data to code and infrastructure. As a Senior Security Engineer, you will have the autonomy to drive work end-to-end, partnering with product and engineering teams to embed security into the development lifecycle. With a focus on automation and scalability, you will help build and maintain security tooling and processes that make security a natural part of how Sentry ships and operates.

Sentry's hybrid work model offers a unique blend of in-office collaboration and remote work flexibility, with Mondays, Tuesdays, and Thursdays set as in-office anchor days. As a Senior Security Engineer, you will be expected to work closely with the team, contributing to the development of security practices and procedures that align with Sentry's mission and values.

What You Will Do

• Own and mature Sentry's security review program, including secure code review, architecture review, and threat modeling
• Influence mature vulnerability management practices, including intake, triage, prioritization, remediation tracking, and management of the bug bounty and responsible disclosure program
• Champion secure-by-design principles, partnering with engineering and product teams to embed security early in the development lifecycle
• Validate and reproduce application and infrastructure security findings, including scanning, manual testing, and coordination of penetration testing and vulnerability validation
• Evaluate and respond to emerging threats relevant to application security, including novel attack surfaces and agentic product features
• Collaborate with the Security Team to develop and maintain security tooling and processes
• Partner with product and engineering teams to integrate security into the development lifecycle
• Develop and maintain documentation and training materials for security best practices
• Participate in security audits and compliance activities
• Stay up-to-date with industry trends and emerging threats, applying this knowledge to improve Sentry's security posture

What We Are Looking For

• 5+ years of industry experience in security engineering or a related field
• Strong understanding of security principles, including secure coding practices and threat modeling
• Experience with security reviews, vulnerability management, and compliance activities
• Familiarity with cloud-based infrastructure and application security
• Strong collaboration and communication skills, with the ability to work effectively with cross-functional teams
• Experience with automation and scripting languages, such as Python or Bash
• Strong problem-solving skills, with the ability to analyze complex security issues and develop effective solutions
• Experience with security tooling and technologies, such as intrusion detection systems and security information and event management (SIEM) systems
• Strong understanding of industry trends and emerging threats, with the ability to apply this knowledge to improve Sentry's security posture

Nice to Have

• Experience with agile development methodologies and DevOps practices
• Familiarity with containerization and orchestration technologies, such as Docker and Kubernetes
• Experience with cloud-based security services, such as Amazon Web Services (AWS) or Google Cloud Platform (GCP)
• Strong understanding of machine learning and artificial intelligence (AI) concepts, with the ability to apply these concepts to security challenges
• Experience with security certifications, such as CompTIA Security+ or Certified Information Systems Security Professional (CISSP)

Benefits and Perks

• Competitive salary and equity package
• Flexible work arrangements, including remote work options and in-office collaboration
• Comprehensive health insurance and benefits package
• Generous paid time off (PTO) and holiday schedule
• Professional development opportunities, including training and conference attendance
• Access to cutting-edge security tools and technologies
• Collaborative and dynamic work environment with a strong focus on innovation and customer satisfaction
• Opportunities for career growth and advancement within the company
• Recognition and reward programs for outstanding performance and contributions
• Employee recognition and reward programs, including bonuses and stock options
• Access to employee resource groups and diversity and inclusion initiatives
• Comprehensive employee assistance program, including mental health and wellness support

• Develop a strong understanding of security principles, including secure coding practices and threat modeling, to stand out as a candidate.
• Create a portfolio of your security work, including examples of security reviews, vulnerability management, and compliance activities.
• Prepare to discuss your experience with automation and scripting languages, such as Python or Bash, and how you apply these skills to security challenges.
• Familiarize yourself with Sentry's products and services, including their application and platform security features, to demonstrate your interest and knowledge.
• Practice whiteboarding exercises to improve your problem-solving skills and ability to analyze complex security issues.
• Be prepared to discuss your experience with cloud-based infrastructure and application security, including any relevant certifications or training.
• Research Sentry's company culture and values, including their commitment to innovation and customer satisfaction, to demonstrate your alignment with the company's mission