Lead Product Security Engineer

We are looking for a hands-on and highly motivated Lead Product Security Engineer to join our Product Security Operations team. In this role, you'll help protect and scale our cloud environment and software development lifecycle by integrating cutting-edge security tools, automating controls, and guiding application teams on best practices. This is a technical leadership role where cloud security, automation, and DevSecOps converge—ideal for someone who thrives in fast-paced, collaborative environments and is passionate about securing cloud-native infrastructure.We offer:

• Career Development
• Competitive Compensation and Benefits
• Pay Transparency
• Global Opportunities

Learn More Here: https://www.dematic.com/en-us/about/careers/what-we-offer

Dematic provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

The base pay range for this role is estimated to be $160,00 - $198,000 at the time of posting. Final compensation will be determined by various factors such as work location, education, experience, knowledge, and skills.

Tasks and Qualifications:

What You Will Do in This Role

• Integrate and operationalize cloud security tooling, such as cloud-native security monitoring and threat intel capabilities, third-party CNAPP, and third-party NHI security solutions, to form a cohesive security platform.
• Drive advancement of technical and operational capabilities necessary to implement a robust, highly automated product security strategy – one that is worthy of the trust placed in us by our customers and business partners.
• Respond to security alerts by prioritizing events from SIEM/SOAR tools and driving timely investigation and remediation.
• Offer practical assistance to application teams in integrating standard methodologies for cloud security throughout the entire software development lifecycle.
• Identify and remediate vulnerabilities across cloud infrastructure and applications with proactive detection and mitigation plans.
• Develop automation workflows for product security policy enforcement and incident response using SOAR platforms.
• Enforce product security policies as code, ensuring compliance with internal standards and external regulations like ISO 27001.
• Contribute to secure architecture design for new systems, ensuring security principles are coordinated from the beginning.
• Continuously improve product security operations by evaluating emerging threats and recommending modern tooling and practices.
• Encourage least-privileged access policies.
• Mentoring junior engineers and multi-functional partners in cloud security engineering and secure development principles.

What We Are Looking For

Must-Have Qualifications

• 7+ years of experience in cloud engineering, DevOps, or security engineering roles.
• Proven experience leading technical projects and teams.
• Strong scripting or programming skills (Python preferred).
• Deep understanding of IAM and cloud-native security best practices.
• Familiarity with CNAPP, SIEM, and SOAR technologies.
• Experience operating in a 24x7 incident response or cloud ops environment.
• Solid understanding of the software development lifecycle and agile tools like JIRA.
• Ability to translate security policies into actionable engineering efforts.
• Excellent collaboration, communication, and problem-solving skills.

Nice-to-Have Experience

• Deep knowledge of identity and access management principles.
• Proficiency in networking, cloud protocols, and operating systems.
• Experience with patch management for both containerized and VM-based systems.
• Exposure to policy-as-code tools and languages.
• Security certifications such as CISSP, CCSP, or GCP Security Engineer.

Skills & Attributes That Make You a Great Fit

• Hungry – Eager to learn, improve, and tackle big challenges.
• Humble – Comfortable with feedback and collaboration; values team success over ego.
• Hard-working – Emotionally intelligent and skilled at working cross-functionally.
• Passionate - about automation, security, and DevOps culture.
• Able to thrive both independently and as a great teammate in a dynamic environment.

#LI-DP1