Natera
POSITION LOCATION: San Francisco Bay Area, Remote candidates within the U.S. are strongly encouraged to apply.
Position Summary: We are building a forward-looking cybersecurity team and are seeking a highly skilled, technology-savvy, hands-on and result driven Lead Security Engineer to join our high-performing team. This is a key role in shaping our AI First Security Transformation strategy to protect Natera future systems across AWS, GCP, Networks, OT, and SaaS.
In this dynamic, fast-paced environment, you will be responsible for designing, implementing, and automating secure, scalable solutions across cloud, containerized, and on-premises environments. You will use the latest technologies to develop security solutions to enhance Natera’s security posture.
To be successful in this role, deep understanding of security controls across multiple domains and solid hands-on experience in security automation are must have. Besides solid cybersecurity domain knowledge, the candidate should be proficient in Python, Java, and other comparable automation languages, expert level experience in AI assisted programming and automation, to drive cybersecurity operational efficiency.
Primary Responsibilities:
Lead the development and implementation of enterprise-wide security automation strategies and frameworks
Design, build, and run security automation solutions for AWS and on-premises environments, with a strong emphasis on Zero Trust principles, identity and access management (IAM), encryption, secure access controls, SIEM and XDR platforms.
Partner with Engineering, DevOps, IT, and Compliance teams to ensure security automation adoption and security-by-default principles are embedded into infrastructure and applications
Collaborate with DevOps and engineering teams to embed security automation into CI/CD workflows and Infrastructure-as-Code (IaC) processes
Establish and enforce security best practices in containerized environments (e.g., EKS, ECS) and AI-enabled applications, including workload protection, runtime monitoring, and secrets management.
Support the secure design, development, and deployment of AI/ML solutions and data pipelines, ensuring robust controls around model access, training data, and infrastructure
Champion the use of security automation and playbooks using tools such as Python, Lambda, Terraform, and others to streamline security testing, threat detection, and remediation workflows.
Evaluate and recommend security tools, platforms, and automation approaches that align with business goals and security requirements.
Work closely with the Incident Response team to ensure security automation is enabled to efficiently address the current and emerging threat landscapes.
Participate in design reviews, conduct threat modeling exercises, and contribute to architecture governance and decision-making processes.
Influence the development of security policies and standards to align with industry best practices and regulatory frameworks (e.g., HIPAA, NIST, CISA, FDA).
Stay current on industry trends, emerging threats (including AI-driven threats), and technologies to continuously enhance the organization’s security posture.
Mentor and provide guidance to security engineers and developers on security automation and related AI technologies.
Qualifications:
Bachelor’s degree in Computer Science, Information Security, Engineering, or a related field required
Master’s degree in Computer Science, specifically in Information Security or a related discipline is strongly preferred
Minimum of 12 years of progressive experience in cybersecurity, including at least 5 years in a security engineering/automation or senior-level engineering role
Hands-on experience with security automation is a must have, along with proficiency in AI assisted development, familiar with Python, Cursor, Lambda, Terraform, or a comparable scripting and infrastructure-as-code (IaC) tool, to drive security operational efficiency and consistency.
Deep experience in design, implement, and run large scale enterprise solutions (ideally in Healthcare or financial sectors)
Proven ability to design and implement security controls aligned with compliance frameworks such as HIPAA, NIST, and CIS.
Extensive hands-on experience in AWS cloud security, network security, with extended knowledge on Zero Trust, Data Protection, and Appsec
Strong understanding of enterprise identity and access management (IAM) systems, Data Protection, including platforms like Okta, SailPoint, VDI, and Active Directory (AD).
Expert experience with SIEM platforms, XDR, and cloud-native threat detection tools.
Expert experience in web application security, OWASP, API security, and secure design and testing
Industry certifications preferred: CISSP, CCSP, AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional, or AWS Certified Advanced Networking – Specialty (or equivalent).
Knowledge, Skills, And Abilities:
Excellent written and verbal communication skills, able to translate complex security concepts for technical and non-technical audiences.
Ability to influence stakeholders and drive alignment across multiple teams.
Strategic thinker with a passion for security innovation, continuous improvement, and building scalable defenses.
Natera is a global leader in cell-free DNA (cfDNA) testing, dedicated to oncology, women’s health, and organ health. Our aim is to make personalized genetic testing and diagnostics part of the standard of care to protect health and enable earlier and more targeted interventions that lead to longer, healthier lives.
What We Offer:
Competitive Benefits - Employee benefits include comprehensive medical, dental, vision, life and disability plans for eligible employees and their dependents.
Pregnancy and baby bonding leave, 401k benefits, commuter benefits and much more.
We also offer a generous employee referral program!
Natera is proud to be an Equal Opportunity Employer. We are committed to ensuring a diverse and inclusive workplace environment, and welcome people of different backgrounds, experiences, abilities and perspectives.
All qualified applicants are encouraged to apply, and will be considered without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, age, veteran status, disability or any other legally protected status.
#J-18808-Ljbffr
#J-18808-Ljbffr