Full-Time Security Engineer

About LastPassLastPass is a leader in password and identity management, making it easier to log into life and work. Trusted by 100,000 businesses and millions of users, LastPass combines advanced security with effortless access for individuals, families, small business owners, and enterprise professionals. With LastPass, important credentials are protected and private – and always within reach.

We welcome new ideas, support your growth, and recognize your value, if this aligns with what you are looking for in your next career move, Join Us!

Security Engineer Role at LastPass

At LastPass, we empower users with secure and seamless password management. We're looking for a Security Engineer to join our team - a role that sits at the intersection of security, automation, and reliability.

In this position, you'll play a key role in shaping and securing our infrastructure by leveraging Terraform, automation tools, and security best practices.

If you're passionate about building reliable, scalable, and secure systems, we’d love to hear from you.

Who will you work with?

• Security Engineers – to implement best practices for securing cloud infrastructure
• Software Engineers and Site Reliability Engineers (SREs) – to improve reliability, scalability, and automation
• Platform and Cloud Teams – to design and deploy robust infrastructure-as-code solutions
• Compliance and Governance Teams – to ensure alignment with security frameworks such as SOC 2 and ISO 27001

What are some of the exciting challenges you will be working on?

• Infrastructure as Code (IaC) at Scale: Manage and scale Terraform to automate and efficiently manage our IaC platforms.
• Security-First Engineering: Strengthen IaC and automation security monitoring by leveraging a comprehensive suite of tools and integrations.
• Observability & Incident Response: Enhance real-time monitoring and alerting using tools like Datadog, Splunk, Akamai, and other SIEM/SOAR tools to detect and mitigate threats proactively.
• CI/CD & Automation: Build and refine CI/CD pipelines to ensure secure, automated deployments across a global SaaS platform.
• Performance & Reliability: Optimize detection services for better performance, fault tolerance, and cost efficiency.
• Resilience & Disaster Recovery: Design and implement detection strategies, response mechanisms, and security playbooks to ensure high resilience and disaster recovery capabilities.

What does it take to work at LastPass?

• Expert knowledge and experience with Continuous Integration and Continuous Delivery (CI/CD) processes and technologies
• SIEM/SOAR security tooling
• Hands-on expertise with security tools such as Akamai, Datadog, Splunk, or similar SIEM and SOAR tools
• Infrastructure-as-Code mindset with a focus on Terraform
• Ability to design and implement solutions that follow security industry best practices, standards, and compliance frameworks
• Capability to drive playbook creation and automation in a code or low-code environment
• Threat-hunting skills through event and log analysis
• A collaborative, team-oriented mindset with a can-do attitude
• Strong ability to communicate effectively with stakeholders from diverse technical backgrounds within LastPass
• Excellent written and verbal communication skills in English
• It's great, but not required: Experience with compliance frameworks such as SOC 2, ISO 27001, or NIST
• Knowledge of WAFs, API security, and threat intelligence platforms

What is the last date for applying to the job?

Which countries are accepted for this remote job?