CAPTIVATEIQ INC
Overview
Join to apply for the
Senior Security Engineer Cloud & Platform Security
role at
CaptivateIQ . Base pay range
$170,980.00/yr - $206,687.00/yr This range is provided by CaptivateIQ. Your actual pay will be based on your skills and experience talk with your recruiter to learn more. CaptivateIQ is the leading Sales Performance Management solution, recognized by Forrester and G2, and trusted by customers including Affirm, Gong, and Figma. With solutions for Sales Planning and Incentives, we help revenue teams automate processes, hit revenue targets, and adapt with business change, ultimately driving efficient growth. It is time to rethink ROI - your return on incentives - with CaptivateIQ. About the role
Security is a core value at CaptivateIQ. As we scale and evolve our platform, building security into the foundation of our infrastructure and cloud services is essential to ensuring trust and resilience at every layer of our environment. Responsibilities
Cloud Security Architecture & Posture Management: Design and enforce security baselines for AWS services, network segmentation, containerized workloads, and IAM. Leverage modern cloud security technologies to monitor for configuration drift and anomalous activity Secure CI/CD Enablement: Embed automated security controls into build and deployment pipelines and enforce secure infrastructure-as-code practices (Terraform) Cloud Threat Detection & Monitoring: Develop and tune detection logic for cloud and infrastructure threats; integrate logs with SIEM for security observability Identity & Access Governance: Implement least privilege, zero-trust principles, and centralized access governance across infrastructure and internal tools Vulnerability Management: Own vulnerability identification, prioritization, and remediation for infrastructure components and dependencies Incident Response Leadership: Act as a primary technical lead for cloud/infrastructure security incidents and root cause analysis Compliance Alignment: Contribute to security audits, control validation, and evidence collection for SOC 2, ISO 27001, and other frameworks Cross-Team Enablement: Partner with SRE to ensure reliability and security guardrails align without slowing delivery Qualifications
7+ years of experience in a security engineer or related role, including 4+ years specializing in cloud and infrastructure security Advanced expertise of AWS security architecture, IAM, ZTNA, and secure multi-tenant SaaS designs Strong communication and ability to influence technical decisions across teams Hands-on experience securing containers and orchestration frameworks (Docker, ECS, Kubernetes) Strong programming and scripting skills (Python preferred) for automation and tooling Experience integrating security into CI/CD pipelines and infrastructure-as-code environments Deep understanding of detection strategies, logging, and incident response for cloud workloads Proven ability to lead incident response for cloud and infrastructure security events Familiarity leveraging CNAPP tooling Knowledge of compliance frameworks (SOC 2, ISO 27001) and cloud security benchmarks (CIS, CSA CCM) Benefits
(US-ONLY) 100% of medical, dental, and vision covered including 75% for dependents Flexible vacation days and quarterly mental health days so you can recharge Enjoy a one-time expense on your 1-year work anniversary (to use for travel, home furnishings, fancy meal) (US-ONLY) 401k plan to participate in and save towards the future Newest Apple products to help you do your best work Employee Resource Groups (ERGs) to support and celebrate the shared identities and life experiences of communities within CaptivateIQ. ERGs directly support our company-wide DEI goals as a space for developing and retaining diverse talent Notice to Prospective Candidates
Only emails from @captivateiq.com should be trusted We are aware of active recruitment scams using the CaptivateIQ name, in which individuals pose as our recruiters and post fake remote job openings and make fake job offers on the Internet. Please note, we will never do the following: Attempt to correspond with a candidate using a free web-based account, such as an email address that ends in @gmail.com, @yahoo.com, or @hotmail.com Make an offer of employment without conducting multiple rounds of interviews face-to-face using secure video-conferencing technology Ask candidates to cash checks to buy equipment on behalf of CaptivateIQ Ask candidates to make a payment in order to be considered for a position Make early requests for candidates' personal information in situations such as date of birth, passport details, credit card numbers, bank details, and social security number, etc. Please note that we will only ask for more sensitive personal information in connection with background checks after an offer is made Participate in an on-call rotation to provide after-hours support, ensuring timely resolution of critical issues and maintaining system uptime CaptivateIQ participates in E-Verify, a web-based system that allows enrolled employers to confirm the eligibility of their employees to work in the United States. Job details
Seniority level: Not Applicable Employment type: Full-time Job function: Information Technology Industries: Software Development
#J-18808-Ljbffr
Join to apply for the
Senior Security Engineer Cloud & Platform Security
role at
CaptivateIQ . Base pay range
$170,980.00/yr - $206,687.00/yr This range is provided by CaptivateIQ. Your actual pay will be based on your skills and experience talk with your recruiter to learn more. CaptivateIQ is the leading Sales Performance Management solution, recognized by Forrester and G2, and trusted by customers including Affirm, Gong, and Figma. With solutions for Sales Planning and Incentives, we help revenue teams automate processes, hit revenue targets, and adapt with business change, ultimately driving efficient growth. It is time to rethink ROI - your return on incentives - with CaptivateIQ. About the role
Security is a core value at CaptivateIQ. As we scale and evolve our platform, building security into the foundation of our infrastructure and cloud services is essential to ensuring trust and resilience at every layer of our environment. Responsibilities
Cloud Security Architecture & Posture Management: Design and enforce security baselines for AWS services, network segmentation, containerized workloads, and IAM. Leverage modern cloud security technologies to monitor for configuration drift and anomalous activity Secure CI/CD Enablement: Embed automated security controls into build and deployment pipelines and enforce secure infrastructure-as-code practices (Terraform) Cloud Threat Detection & Monitoring: Develop and tune detection logic for cloud and infrastructure threats; integrate logs with SIEM for security observability Identity & Access Governance: Implement least privilege, zero-trust principles, and centralized access governance across infrastructure and internal tools Vulnerability Management: Own vulnerability identification, prioritization, and remediation for infrastructure components and dependencies Incident Response Leadership: Act as a primary technical lead for cloud/infrastructure security incidents and root cause analysis Compliance Alignment: Contribute to security audits, control validation, and evidence collection for SOC 2, ISO 27001, and other frameworks Cross-Team Enablement: Partner with SRE to ensure reliability and security guardrails align without slowing delivery Qualifications
7+ years of experience in a security engineer or related role, including 4+ years specializing in cloud and infrastructure security Advanced expertise of AWS security architecture, IAM, ZTNA, and secure multi-tenant SaaS designs Strong communication and ability to influence technical decisions across teams Hands-on experience securing containers and orchestration frameworks (Docker, ECS, Kubernetes) Strong programming and scripting skills (Python preferred) for automation and tooling Experience integrating security into CI/CD pipelines and infrastructure-as-code environments Deep understanding of detection strategies, logging, and incident response for cloud workloads Proven ability to lead incident response for cloud and infrastructure security events Familiarity leveraging CNAPP tooling Knowledge of compliance frameworks (SOC 2, ISO 27001) and cloud security benchmarks (CIS, CSA CCM) Benefits
(US-ONLY) 100% of medical, dental, and vision covered including 75% for dependents Flexible vacation days and quarterly mental health days so you can recharge Enjoy a one-time expense on your 1-year work anniversary (to use for travel, home furnishings, fancy meal) (US-ONLY) 401k plan to participate in and save towards the future Newest Apple products to help you do your best work Employee Resource Groups (ERGs) to support and celebrate the shared identities and life experiences of communities within CaptivateIQ. ERGs directly support our company-wide DEI goals as a space for developing and retaining diverse talent Notice to Prospective Candidates
Only emails from @captivateiq.com should be trusted We are aware of active recruitment scams using the CaptivateIQ name, in which individuals pose as our recruiters and post fake remote job openings and make fake job offers on the Internet. Please note, we will never do the following: Attempt to correspond with a candidate using a free web-based account, such as an email address that ends in @gmail.com, @yahoo.com, or @hotmail.com Make an offer of employment without conducting multiple rounds of interviews face-to-face using secure video-conferencing technology Ask candidates to cash checks to buy equipment on behalf of CaptivateIQ Ask candidates to make a payment in order to be considered for a position Make early requests for candidates' personal information in situations such as date of birth, passport details, credit card numbers, bank details, and social security number, etc. Please note that we will only ask for more sensitive personal information in connection with background checks after an offer is made Participate in an on-call rotation to provide after-hours support, ensuring timely resolution of critical issues and maintaining system uptime CaptivateIQ participates in E-Verify, a web-based system that allows enrolled employers to confirm the eligibility of their employees to work in the United States. Job details
Seniority level: Not Applicable Employment type: Full-time Job function: Information Technology Industries: Software Development
#J-18808-Ljbffr