Full-Time Senior Infrastructure Security Engineer

At BioRender, we’re on a mission to accelerate the world’s ability to learn, discover, and communicate science — transforming how knowledge is shared and making science open, collaborative, and easily understandable by all. We’re shaping the future of science communication and are looking for talented individuals to help bring this vision to life! 🚀

As a Senior/Lead Infrastructure Security Engineer at BioRender, you will drive continuous improvement in security standards, systems and technology.

Your primary responsibility will be to review, design, and implement security solutions to protect the organization’s infrastructure.

You’ll work closely with our platform and infrastructure team to enable security best practices in AWS, Azure and managed (on-prem) devices.

You’ll also help ensure that infrastructure security standards are implemented and adopted throughout the BioRender organization and our products.

We believe in automation and the right tool for the right job. You are excited about building security into our workflows while proactively protecting against infrastructure threats.

1. Lead, design and implement security best practices for Cloud Security (AWS, Azure).
2. Integrate, automate and drive adoption of system hardening and vulnerability management practices. (AWS, Kubernetes, VM)
3. Enable and drive adoption of security monitoring standards for core infrastructure.
4. Align teams to security requirements and solutions to drive adoption and remediation based on risk exposure of the company.
5. Drive metrics and accountability for security across the organization for security projects.
6. Identify, plan, evaluate, design, and deploy new security solutions.

What you bring to the table

• Thorough knowledge of Cloud computing environments such as GCP, AWS, Azure with knowledge for architectural reviews and experience with micro-services technologies such as Containers, Kubernetes, Hashicorp Vault.
• Knowledge of security features and controls AuthN, AuthZ, PKI, Session Management, Logging.
• Broad knowledge of security posture management, integrations via CI/CD and network security products.
• Deep understanding of access control, key management, authentication and networking.
• Applied knowledge of cryptography, PKI, TLS and practical implementation of the same.
• Performed threat modeling and have experience of common code and network vulnerability types, impacts, and remediations.
• Comfortable with at least one scripting language (Bash, Python, Perl, Ruby).

What is the last date for applying to the job?

Which countries are accepted for this remote job?