Sr. Site Reliability Engineer - Security

HashiCorp helps solve development, operations, and security challenges in infrastructure so organizations can focus on business-critical tasks. We build products to give organizations a consistent way to manage their move to cloud-based IT infrastructures for running their applications.

We use the Tao of HashiCorp as our guiding principles for product development and operate according to a strong set of company principles for how we interact with each other. We value top-notch collaboration and communication skills, both among internal teams and in how we interact with our users. 

As a Senior Site Reliability Engineer with a focus on Security at HashiCorp, you will spearhead initiatives to ensure our infrastructure and cloud products adhere to the highest standards of security, compliance, and governance. With over 6 years of experience in site reliability engineering or a related field, you will play a critical role in integrating security practices into our operational processes, enhancing our overall security posture.

Key Responsibilities

• Security and Compliance: Lead efforts to maintain and enhance security compliance across all cloud services, ensuring adherence to industry standards and regulatory requirements.
• Infrastructure Security: Implement and manage security tools and practices, including automated compliance checks, to safeguard our infrastructure and applications.
• Incident Response: Coordinate with the security team to respond to and remediate security incidents promptly, minimizing impact and ensuring continuous service availability.
• Governance and Policy: Develop and enforce policies related to licensing, compliance, and governance, working closely with legal and compliance teams to navigate complex regulatory landscapes.
• Cross-functional Collaboration: Collaborate with engineering, operations, and product teams to embed security considerations in the development and deployment lifecycle.
• Monitoring and Reporting: Establish comprehensive monitoring for security metrics, reporting on compliance status, and identifying areas for improvement.

Ideal Candidate

• 6+ years of experience in site reliability engineering, security engineering, or a closely related field, with a strong focus on security practices.
• Expertise in security compliance frameworks (e.g., SOC 2, GDPR, HIPAA) and cloud security best practices in AWS, Azure, GCP, or similar platforms.
• Familiarity with infrastructure as code (e.g., Terraform, CloudFormation) and automation tools for security compliance checks.
• Strong analytical skills, capable of identifying and mitigating security risks before they impact operations.
• Excellent communication skills, with the ability to articulate complex security concepts to technical and non-technical stakeholders.
• Experience with incident response and security operations in a cloud-based environment. #LI-hybrid