Sr. Security Engineer

About Sayari: Sayari is the transparency company providing the public and private sectors with immediate visibility into complex commercial relationships by delivering the largest commercially available collection of corporate and trade data as a dynamic model of global ownership and trade activity. Sayari’s solutions harness this model to enable risk resilience, complex investigations, and clear-eyed business decisions. Sayari is headquartered in Washington, D.C., and its solutions are used by thousands of frontline analysts in over 35 countries.
Our company culture is defined by a dedication to our mission of using open data to enhance visibility into global commercial and financial networks, a passion for finding novel approaches to complex problems, and an understanding that diverse perspectives create optimal outcomes. We embrace cross-team collaboration, encourage training and learning opportunities, and reward initiative and innovation. If you like working with supportive, high-performing, and curious teams, Sayari is the place for you.
POSITION DESCRIPTIONSayari’s Information Security team is growing, and we’re looking for a Security Engineer to architect, implement, and advance the security of our cloud infrastructure. This role will have a primary focus on Kubernetes, overall cloud platform security, and robust network security architectures. You will apply your technical expertise to build, configure, and manage best practice security measures. This position is for someone who thrives on rapidly improving security posture through direct technical contribution, innovation, and efficient execution. Your well-rounded foundational knowledge of networking, Linux, and security best practices, particularly as they apply to containerized and cloud-based systems, will be crucial. Example projects include hardening Kubernetes clusters, designing and implementing secure network segmentation strategies in the cloud, building advanced threat detection for cloud workloads, and automating security controls within our CI/CD pipelines. You'll work in close collaboration with our Infrastructure, DevOps, Application, and Data teams to embed security into our operations. Your philosophy on security should balance stringent, threat-informed controls with the practical needs of a fast-paced, innovative business. The ideal candidate will possess a strong technical background, capable of tackling diverse challenges from writing security-as-code to architecting and implementing secure cloud infrastructure and supporting compliance initiatives.

JOB RESPONSIBILITIES

• Architect, deploy, and manage comprehensive security solutions, particularly for our Kubernetes clusters and multi-cloud environments (GCP, AWS), focusing on network security, workload protection, system hardening, IAM, and data security.
• Collaborate closely with Infrastructure and DevOps teams to integrate security best practices into CI/CD pipelines and leverage automation tools (e.g., Infrastructure as Code) to proactively address vulnerabilities in cloud and Kubernetes deployments.
• Design, implement, and manage automated Identity and Access Management (IAM) strategies, ensuring least-privileged access controls across all cloud and Kubernetes resources.
• Partner with application and data teams to ensure they are deploying secure applications and their deployment pipelines into secure cloud and Kubernetes infrastructure, advising on and implementing secure coding practices and infrastructure configurations.
• Ensure the SIEM is properly ingesting and enriching security logs from cloud, Kubernetes, and network sources.
• Actively participate in security audits, providing evidence of implemented controls and ensuring adherence to security policies within cloud and containerized environments.
• Ensure compliance with relevant laws, regulations, and industry standards (e.g., FedRAMP, SOC 2, ISO 27001), with a specific focus on their application to cloud and Kubernetes.
• Create and maintain detailed documentation, including security architecture diagrams for cloud and Kubernetes, network security policies, secure configuration baselines, and procedure.
• Research and apply AI technology extensively where it makes sense to improve the team's capabilities in areas like threat detection, anomaly detection, and security automation.
• Stay in tune with security trends, emerging threats, and new technologies in cloud, container, and network security, and champion their adoption where appropriate through proofs-of-concept and implementation.

SKILLS & EXPERIENCE

• 7+ years of experience in a security engineering role, with a significant focus on cloud environments and direct implementation of security controls.
• Significant experience with cloud security on platforms such as GCP and AWS.
• Significant experience with Kubernetes security, including hands-on securing of the control plane, worker nodes, networking, service mesh, and container runtimes.
• In-depth knowledge of security principles and best practices, including authentication, authorization, encryption, network segmentation, defense-in-depth, zero-trust concepts, confidentiality, integrity, and availability.
• Strong fundamentals and advanced networking knowledge.
• Proficiency with at least one programming language (e.g., Python, Go) for automation and security tool development with a strong alignment to managing infrastructure, configuration, and security as code.
• Familiarity with IAM and related authentication/authorization standards (e.g., SAML, OIDC, OAuth2).
• Experience with centralized logging systems and SIEM solutions, particularly with log ingestion from cloud and Kubernetes environments.
• Thorough understanding of web application security and securing SaaS products, including API security.
• Excellent problem-solving skills and the ability to perform effectively under pressure.
• Strong professional writing capability with the ability to create clear, comprehensible documentation.
• Collaborative spirit, with experience working effectively across diverse teams

Benefits: ·       100% fully paid medical, vision, and dental for employees and their dependents·       Generous time off; we observe all US federal holidays, close our office for a winter break (12/24-12/31), in addition to granting 18 PTO days and 10 sick days ·       Outstanding compensation package; competitive commissions for revenue roles and quarterly bonuses for non-revenue positions·       A strong commitment to diversity, equity, and inclusion·       Eligibility to participate in additional benefits such as 401k match up to 5%, 100% paid life insurance (up to $100,000 coverage),, and parental leave·       A collaborative and positive culture - your team will be as smart and driven as you·       Limitless growth and learning opportunities Sayari is an equal opportunity employer and strongly encourages diverse candidates to apply. We believe diversity and inclusion mean our team members should reflect the diversity of the United States. No employee or applicant will face discrimination or harassment based on race, color, ethnicity, religion, age, gender, gender identity or expression, sexual orientation, disability status, veteran status, genetics, or political affiliation. We strongly encourage applicants of all backgrounds to apply.