Lead Security Engineer

About the role:

At Panorama, everyone is a leader in securing student data as part of our values of inclusivity and student impact. As a Lead Security Engineer on Panorama's Platform Security Team, you'll be hands-on, working to design and build secure systems that protect student data. If you thrive in code, enjoy solving complex security problems through automation, and want to partner with engineers on cutting-edge projects, this role is for you.

Our team (typically five security engineers) operates with rotating ownership of major initiatives and collaborative risk prioritization. Your acumen, leadership, and communications will also influence the platform security program. In this role you will drive technical decisions, grow skills on the team, and shape strategy through mitigation proposals and an expectation of autonomy in security guidance to software and infrastructure teams, with support from hands-on security program leadership.

Responsibilities:

• Design, write, test, and deploy infrastructure-as-code to enforce security controls in AWS (e.g., Terraform, CDK).
• Develop internal tools and guardrails to support secure software development (e.g., linters, pre-commit hooks, GitHub Actions).
• Lead threat modeling and architecture reviews with engineers to proactively address risk at the design stage.
• Deploy effective systemic security controls in AWS and web applications, ranging from code and access management down to the network and asset configuration (e.g. encryption enhancements)
• Investigate and plan major projects on the platform security team - be the one that enables successful on-time delivery by seeing around corners and mapping out the important factors for key technical decisions
• Foster operational excellence through least privilege access, incident response drills, process improvement, and robust solutions for monitoring, auditing and alerting
• Keep confidentiality and "security by default" across Panorama's platform, never putting developer ease or convenience over making a difference to the millions of students we serve
• Drive vulnerability remediation both directly and through internal and external partnerships
• Share your deep knowledge of security, technology, and best practices to support our policies, solve complex challenges, and help us consistently achieve our goals.
• Actively seek out and integrate the feedback from your teammates who have a diverse set of backgrounds and experiences so you can support inclusiveness, increase awareness, and build a better product

Our Ideal Candidate Has:

• Proficient in at least one programming language used in modern infrastructure or application development (e.g., Python, Ruby, Go, JavaScript).
• Experience implementing CI/CD pipeline security, infrastructure-as-code security, or secure SDLC practices.
• Hands-on experience with AWS security services (e.g., IAM, KMS, CloudTrail, GuardDuty).
• Track record of reducing risk through automation and code-not just policy.
• An inquisitive, proactive and collaborative mindset with strong attention to detail
• A track record of coordinating cross-functionally with teams of engineers, product, IT and GRC on high-impact projects
• Experience breaking down and shaping the scope of technical requirements of a series of several projects to help optimize for overall team delivery as well as safe releases and operations.
• Outstanding problem-solving abilities, including through code, with examples of overcoming challenges from real world applications of security or risk management frameworks
• 7 years experience in software organizations, including 4 years specifically solving software security or cloud security challenges (security engineering, application security, identity & access management or similar)
• Experience supporting security compliance efforts (e.g., SOC2, ISO27001) through technical implementations.
• Active involvement in the information security community or a security certification (eg. Security+ or AWS Certified in Security) with examples of positive impact

The starting base salary for this role is $159,000.

Interview Process:

• Initial Phone Screen

• Hiring Manager Interview via Zoom

• Peer Interviews via Zoom

• Coding for Infra & Security

• Cross-functional Collaboration & Decision Making

• Executive Interview via Zoom