Senior Security Engineer - Infrastructure & Automation

About the Role

We're hiring a Senior Security Engineer - Infrastructure & Automation to join our dynamic team at Webflow. This remote position is perfect for someone who thrives in a fast-paced environment and is passionate about enhancing security measures across our platforms. As a Senior Security Engineer, you'll play a vital role in fortifying our infrastructure and ensuring that our cloud environments are secure by default.

What You'll Do

• Lead and execute cloud security initiatives that strengthen Webflow’s infrastructure and operational security posture.
• Perform infrastructure security reviews across cloud services, network design, IAM, and platform components.
• Design, implement, and maintain secure AWS and GCP infrastructure following best practices such as least privilege and network segmentation.
• Partner with infrastructure and platform teams to embed security controls in CI/CD pipelines, infrastructure as code, and containerized environments.
• Own the cloud security posture management (CSPM) strategy, ensuring continuous compliance and automated detection of misconfigurations.
• Collaborate with engineering teams to secure Kubernetes and containerized workloads, ensuring adherence to runtime and image scanning policies.
• Respond to and investigate cloud-related security incidents, providing technical expertise during triage and remediation.
• Contribute to the design and execution of Webflow’s cloud security roadmap, identifying areas for automation and scalability.

Requirements

• 5+ years of experience in cloud security, infrastructure engineering, or security automation, with at least 3 years focused on AWS and GCP.
• Strong knowledge of AWS and GCP services and security controls.
• Hands-on experience securing Kubernetes and containerized workloads.
• Proficient with infrastructure as code tools such as Pulumi, Terraform, or CloudFormation.
• Understanding of network security concepts including firewalls, segmentation, and zero trust.
• 3+ years of automation script authoring for security tasks using Python, Go, JavaScript, TypeScript, or similar languages.
• Comfortable architecting automation solutions using full stack components.
• Ability to operate in ambiguous, fast-changing environments, adapting tooling and approaches as threats and technologies evolve.

Nice to Have

• Experience with security automation tools and techniques.
• Familiarity with threat modeling and risk assessments.
• Knowledge of compliance frameworks and standards.

What We Offer

• Ownership in what you help build with equity (RSUs) in our growing company.
• Comprehensive medical, dental, and vision plans for full-time employees and their dependents.
• 12 weeks of paid parental leave for all parents and additional paid leave for birthing parents.
• Flexible vacation, paid holidays, and a sabbatical program to help you recharge.
• Access to mental health resources, therapy, and coaching.
• A 401(k) with 100% employer match (up to $6,000/year) in the U.S.
• Monthly stipends for work and wellness expenses.
• Annual WIN bonus program for all full-time, permanent employees.