Senior Security Engineer

Client of Talentmate

Overview

About Analog

Analog is pioneering the era of physical intelligence. Where digital intelligence transformed our online lives, Analog is transforming the lived world, making cities more adaptive, industries more resilient, services more human centered, and experiences more extraordinary.

At the heart of our approach are living world models, continuously updated, enriched by every capture point, every device, every interaction. Within them resides Ana, the Analog Neural Agent. Ana perceives, adapts, and guides, transforming raw data into foresight and orchestration that improves outcomes across sectors, from safeguarding high-value assets to enhancing human performance.

Job Description

We are seeking a highly skilled Senior Security Engineer to be the first hire in our Infosec team. This is a hands-on technical leadership role with high growth potential in a cutting-edge AI driven organization. The ideal candidate will have deep expertise in designing, implementing, and maintaining end-to-end security solutions across infrastructure, applications, and data. As the first dedicated security hire, you will play a pivotal role in building and shaping our cybersecurity strategy and practices from the ground up.

In this role, you will be responsible for planning, designing, and implementing security solutions, identifying risks, and ensuring compliance with industry standards. You will work closely with cross-functional teams to embed security at every level of our technology and business processes. You will also play a lead role in developing a longer term security improvements roadmap, setting the foundation for future team expansion and required security tooling investments. If you are an experienced, hands-on security professional eager to make a significant impact in a high-growth organization, we encourage you to apply.

Responsibilities

• Security Strategy & Roadmap: Develop a comprehensive security roadmap that aligns with business strategy, supporting product launches and future business growth.
• Security Architecture: Design, implement, and manage security architectures for cloud, on-premises, and hybrid environments.
• Policies & Standards: Develop, enforce, and continuously improve security policies, frameworks, and best practices across the organization.
• Risk & Compliance: Conduct risk assessments, threat modeling, and vulnerability management to proactively mitigate security threats, while ensuring compliance with relevant security standards e.g. ISO 27001, NIST, GDPR, SOC 2, and CIS benchmarks
• Incident Management: Lead incident response efforts, including investigation, containment, remediation, and post-mortem analysis.
• Security Testing: Perform penetration testing, security audits, and compliance assessments to validate security posture.
• Security Tooling: Deploy and manage security solutions such as SIEM, IDS/IPS, endpoint protection, IAM, firewalls, and encryption technologies.
• Collaboration & Communication: Works closely with Engineering, DevOps, and IT teams to integrate security into system architectures and software development processes (DevSecOps). Communicates security risks and recommendations effectively to technical and non-technical stakeholders.
• AI & Data Security: Develop & implement security measures to protect AI models, data pipelines and APIs from adversarial attacks and data leakage.
• Emerging Trends: Stays current with evolving cyber threats, attack techniques, and security trends, applying knowledge to strengthen defenses.
• Training & Awareness: Develop and conduct security awareness training programs to foster a strong security culture within the organization.
• External Partnerships: Establish relationships with external security vendors, partners, and regulatory bodies to leverage expertise and support.

Qualifications

• Bachelor s or Master s degree in Computer Science, Information Security, or a related field.
• Minimum of 5 years of hands-on experience in cybersecurity, information security, or a related field.
• Proven experience in security architecture, engineering, and operations in cloud (AWS, Azure, GCP) and on-prem environments.
• Strong knowledge of security frameworks such as NIST, ISO 27001, CIS Controls, and Zero Trust architecture.
• Hands-on experience with security tools, including firewalls, SIEM, EDR, IDS/IPS, vulnerability scanners, DLP, and encryption.
• Expertise in security incident response, threat intelligence, and forensic investigations.
• Experience with identity and access management (IAM), multi-factor authentication (MFA), and privilege access management (PAM).
• Proficiency in programming and scripting languages such as Python, PowerShell, or Bash
• Industry certifications such as CISSP, CISM, CEH, OSCP, or equivalent are highly preferred.
• Strong knowledge of DevSecOps principles and secure software development practices.
• Demonstrated ability to communicate effectively with both technical and non technical audiences.
• Experience working with security governance, risk management, and compliance (GRC) programs.
• Excellent problem-solving, analytical, and communication skills with the ability to work independently and collaboratively.

Good-to-Have Experience

• Experience with physical security measures, such as facility access controls, video surveillance, and security monitoring systems.
• Knowledge of IoT security, industrial control systems (ICS) security, and supply chain security.
• Experience implementing Zero Trust and Secure Access Service Edge (SASE) architectures.
• Understanding of AI security risks and model protection strategies
• Prior experience working in high growth technology start ups.

If you are passionate about cybersecurity and want to build and lead the security function in a high-growth, innovative organization, we would love to hear from you!