Staff or Senior Security Software Engineer - Remote

About the Role

We are hiring an experienced Security Software Engineer (Staff or Senior) for our Infrastructure Security team to design and build scalable security controls and services within MongoDB Atlas multi-cloud infrastructure. This Security Software Engineer remote position allows you to work fully remotely while collaborating with a talented team dedicated to ensuring our infrastructure adheres to the highest security standards.

What You'll Do

• Design and build core security primitives and services that protect MongoDB Atlas compute, networking, and identity across AWS, Azure, and GCP.
• Build secure-by-default infrastructure using Linux security mechanisms (AppArmor, SELinux, seccomp, cgroups), Kubernetes, and eBPF to enforce runtime policies and gain deep visibility into systems behavior.
• Develop APIs, automation, and tooling that manage security posture at scale (CSPM, vulnerability management, workload identity) and provide monitoring, logging, and alerting pipelines that integrate with our tooling (Grafana, Splunk, Victoria Metrics).
• Integrate security into our CI/CD and infrastructure-as-code workflows (Terraform) so that security controls are versioned, reviewed, and deployed just like any other code.
• Lead complex projects end-to-end, from problem discovery and design docs to implementation, rollout, and long-term ownership.
• Collaborate with SRE, platform, and product engineering teams to define secure architectures for new infrastructure and services.

Requirements

• 5+ years of experience in Software Engineering, Site Reliability Engineering, or similar roles, preferably with relevant security work.
• Proficiency with at least one programming language (Java, Golang, Rust, Python, or C/C++) and experience with infrastructure-as-code tools (Terraform) to automate security configurations and processes.
• A deep understanding of Linux and networking concepts, including low-level fundamentals, and how they work together in complex systems.
• Experience building security-related features or platforms such as runtime monitoring, CSPM, or vulnerability management.
• Experience with a cloud provider (AWS, GCP, or Azure) and their security best practices and building blocks.
• Hands-on experience with Kubernetes and its security ecosystem (e.g. RBAC, OPA/Gatekeeper, Kyverno, eBPF, Falco, Tetragon).
• Strong communication skills and the ability to explain complex security concepts and tradeoffs to both technical and non-technical stakeholders.

Nice to Have

• Experience with security compliance frameworks and regulations.
• Familiarity with DevSecOps practices.
• Knowledge of threat modeling and risk assessment methodologies.

What We Offer

• Competitive salary ranging from $147,000 to $289,000 USD.
• Equity participation and stock purchase program.
• Flexible paid time off and generous parental leave policy.
• Access to mental health counseling and comprehensive health benefits.
• Supportive and enriching work culture with employee affinity groups.