RecruityTalent is a Recruitment agency with focus of IT, supporting startups and enterprises in Bulgaria, EMEA and LATAM by connecting them with top talent.

About the Role We are looking for an experienced Lead Security Engineer.

What You’ll Do

• Design and implement robust security measures for full-stack applications, AI agents, and platform components
• Develop and maintain secure CI/CD pipelines, focusing on DevSecOps practices, including but not limited to SAST, SCA, Secret Scannig and DAST.
• Conduct threat modeling and implement least privilege principles across our GenAI infrastructure
• Collaborate with cross-functional teams to integrate security best practices into the SDLC
• Lead security initiatives for flagship projects like UpToDate Expert AI, ensuring patient data privacy and guideline fidelity
• Continuously evaluate and recommend new tools, technologies, and approaches to improve the platform and maintain a cutting-edge development environment
• Support and facilitate ongoing and future audits for various compliance frameworks, including SOC 2, HIPAA, and ISO 27001, ensuring the platform meets all necessary security and regulatory requirements
• Mentor junior engineers on security best practices and drive a security-first culture

What You Bring

• 8+ years of experience in cloud security engineering, with a strong focus on AWS and or Azure
• Expert-level knowledge of Python and Bash scripting for security automation
• Extensive experience with CI/CD security integration and DevSecOps practices.
• Deep understanding of AI/ML security challenges and mitigation strategies
• Proven track record in implementing secure SDLC and privacy by design principles
• Strong background in threat modeling, risk assessment, and security architecture
• Experience with security in containerized environments (Docker, Kubernetes)
• Strong communication skills and the ability to work effectively across teams and with various stakeholders
• Ability to pass simple livecoding interviews, programming language doesn't matter.
• US Central Time overlap required (9–11 AM CDT)

Nice to have

• Relevant security certifications (e.g. AWS Security Specialty, Azure Security Engineer Associate)
• Experience with security in large-scale, distributed systems
• Familiarity with healthcare data security regulations (e.g., HIPAA)
• Knowledge of LLM security considerations and best practices

​

Apply!

• ----------------

You can trust that as a GDPR-compliant agency, we uphold the highest standards of data confidentiality, ensuring all candidate information is securely stored and managed in full accordance with local GDPR regulations. Protecting privacy remains our top priority throughout the recruitment process.

RecruityTalent holds Recruitment License No. № 3836 and No. № 3837, guaranteeing full compliance with industry standards and legal requirements. ​