Lead Security Engineer - Copia Automation

Key Responsibilities

• Design, implement, and maintain security controls across the AWS cloud environment for a multi‑tenant SaaS platform.
• Lead the DevOps security team in building secure CI/CD pipelines, integrating automated threat detection and vulnerability scanning.
• Develop and enforce security policies, standards, and best practices for cloud infrastructure, code, and operations.
• Conduct regular security assessments, penetration tests, and risk analyses, providing actionable remediation plans.
• Coordinate incident response, root cause analysis, and post‑mortem reviews to improve resilience.

Requirements

• 10+ years of experience in cloud security, with deep expertise in AWS security services (IAM, KMS, GuardDuty, Security Hub).
• Proven track record in DevOps security, CI/CD automation, and secure software development lifecycle (SDLC) practices.
• Strong knowledge of SaaS architecture, multi‑tenant isolation, and compliance frameworks (ISO 27001, SOC 2, GDPR).
• Excellent communication skills, able to translate complex security concepts to technical and non‑technical stakeholders.
• Hands‑on experience with threat modeling, incident response, and security tooling (e.g., Terraform, Ansible, Splunk, Sentinel).