Security Engineer, Product Security

Cape was founded in early 2022 by Palantir and Anduril alums with deep expertise in privacy and national security. While running Palantir’s US national security business, our CEO became passionate about privacy and security on mobile devices. Our mission is to be a force for good in global wireless.

At Cape, we are not just another cellular service provider; we are the architects of a privacy-centric movement that starts with the devices in your pocket. We are building a cellular network that helps citizens, including those responsible for our nation’s security, regain control of their own data.

We believe that where we are, where we go, and whom we are with are among our most personal information and should be kept private. Privacy is not something you achieve by limiting yourself or by doing less, it is a set of features to be built so you can do more. We have raised money from Andreessen Horowitz and other top-tier VCs, and are excited to grow the team.

We are relentless builders, constantly pushing the boundaries of what's possible and bringing to life ideas that have never before existed. Innovation is at the core of everything we do. At Cape, we trust our team to deliver greatness and empower them to make a profound impact. As a member of our team, you will collaborate seamlessly with our diverse group of talented engineers and other team members, enjoying dynamic interactions with colleagues from across the organization.

The Role

We are seeking a Security Engineer with a specialization in product security to join our team. As a strategic partner, you will make an immediate impact by leveraging your expertise in cloud and application security. This role is pivotal in reducing risk across our AWS cloud environments and mobile applications. You will be responsible for designing, implementing, and maintaining security measures that comply with regulatory standards, enhance internal processes, and minimize data security risks. Through developing ongoing security strategies and technologies, you will support the organization's business objectives and daily operations.

Responsibilities

• Design, implement, and manage robust security controls and policies within AWS, focusing on the confidentiality, integrity, and availability of data and services.

• Perform comprehensive security assessments of our cloud environments to identify vulnerabilities, assess risks, and recommend actionable mitigation strategies.

• Lead the integration of security practices into the DevOps lifecycle, promoting secure code development, deployment, and operations.

• Utilize and optimize AWS security tools (such as Amazon GuardDuty, Amazon Inspector, AWS IAM, AWS KMS, AWS WAF, and AWS Shield) and explore third-party solutions to bolster our security posture.

• Assist in addressing findings from penetration tests and security audits, ensuring prompt and effective remediation.

• Stay informed about the latest security threats, vulnerabilities, and compliance mandates affecting cloud environments, providing guidance on emerging technologies and security best practices.

• Offer expert guidance and mentorship to junior security team members and engineers across the company, fostering an organizational culture of security awareness and continuous improvement.

• Collaborate with stakeholders to integrate security requirements effectively into engineering projects and business initiatives.

Preferred Experience

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience), with advanced degrees or certifications (e.g., CISSP, AWS Certified Security Specialty) being advantageous.

• A minimum of 5 years of experience in information security, with at least 2 years concentrated on cloud security within AWS environments.

• Deep understanding of AWS architecture, security services, and best practices for securing cloud applications and data.

• Proficiency in using infrastructure as code (IaC) tools (like Terraform or AWS CloudFormation) and in automating security tasks within AWS.

• Skilled in scripting languages (Python, TypeScript, Go) for the automation of security tasks and the integration of security tools.

• Solid knowledge of network security, encryption technologies, and secure coding practices.

• Excellent analytical skills for identifying and mitigating complex security vulnerabilities and risks.

• Strong communication and leadership abilities, capable of working collaboratively across teams and effectively conveying technical information to non-technical stakeholders.

• Organized and able to manage multiple priorities in a dynamic, fast-paced environment.

• We are builders, and we choose to spend our time building things that matter. Many of our people have backgrounds in Defense Tech as well as the defense and intelligence community. We build to win.

• We hire excellent people, give them outsized responsibility, and trust them to execute at a high level. Everyone here has a track record of solving hard problems throughout their careers.

• We believe that personal privacy and national security interests are not inherently at odds, and can be reconciled via strong technology.

• We believe that companies exist to build awesome things and take care of their people. Our benefits reflect that– top-tier health care, 401(k) matching, and a generous vacation policy (that we actually use).

• We hire candidates of any race, color, ancestry, religion, sex, national origin, sexual orientation, gender identity, age, marital or family status, disability, Veteran status, and any other status. Achieving diversity across these categories will serve to make our company stronger and our product better.

Click the link below to apply.

We reserve the right to make use of any unsolicited resumes received from outside recruiting agencies and / or individual recruiters without being responsible for payment of any fees asserted from the use of unsolicited resumes.