[Remote] Senior Security Engineer – Threat Modeling & Security Engineering

🌍 Remote, USA 🎯 Full-time 🕐 Posted Recently

Job Description

Note: The job is a remote job and is open to candidates in USA. Symosis Security is a boutique cybersecurity firm focused on security engineering, SaaS risk automation, and AI/ML security. They are seeking a Senior Security Engineer to support a high-impact enterprise SaaS security program, combining architecture-level security reviews with hands-on security engineering and automation.

    Responsibilities
  • Lead architecture reviews for new suppliers and major system changes
  • Create Data Flow Diagrams (DFDs), identify trust boundaries, and perform structured threat modeling (e.g., STRIDE)
  • Evaluate OAuth/OIDC authentication models, API exposure, RBAC design, logging controls, and integration risks
  • Identify security gaps and provide clear, actionable remediation guidance
  • Engage directly with engineering and product teams in technical discussions
  • Build and maintain secure, read-only API integrations for enterprise SaaS platforms
  • Extract and normalize configuration and security telemetry (RBAC, MFA/SSO, API keys, audit logs)
  • Handle real-world API concerns including pagination, rate limiting, token refresh, and error handling
  • Contribute to data pipelines (Databricks or similar platforms)
  • Implement security rule logic aligned to enterprise standards
  • Support operational dashboards and reporting workflows
    Skills
  • 5+ years in Security Engineering, Product Security, Cloud Security, or Application Security
  • Hands-on experience conducting formal threat modeling and architecture risk assessments
  • Strong understanding of OAuth/OIDC, API security, RBAC, and SaaS configuration controls
  • Proven engineering experience with: Python
  • REST APIs
  • JSON-based integrations
  • Data pipelines and schema normalization
  • Experience building production-grade API connectors
  • Ability to independently lead technical conversations with engineering teams
  • Experience with enterprise SaaS environments
  • Familiarity with Databricks, Azure, or similar data platforms
  • Exposure to AI/ML security concepts
    Company Overview
  • Symosis Security is a security, privacy, risk, and compliance consulting firm. It was founded in 2004, and is headquartered in Phoenix, Arizona, USA, with a workforce of 11-50 employees. Its website is https://www.symosis.com.
    Company H1B Sponsorship
  • Symosis Security has a track record of offering H1B sponsorships, with 2 in 2022, 1 in 2021. Please note that this does not guarantee sponsorship for this specific role.

Apply tot his job

Apply To this Job

Ready to Apply?

Don't miss out on this amazing opportunity!

🚀 Apply Now

Similar Jobs

Recent Jobs

You May Also Like