Senior/Staff Security Engineer

6+ years of experience in security engineering, with demonstrated depth in cloud security (at least one of AWS or GCP required).

Hands-on experience with IAM design, VPC architecture, security group management, and infrastructure hardening in production environments.

Experience building or significantly improving vulnerability management programs, including tooling selection, integration, and triage workflows.

Direct experience with SOC 2 and HIPAA compliance, including evidence collection, control implementation, and auditor interactions.

Practical incident response experience: you have detected, investigated, and resolved real security incidents, not just written the plan.

Experience securing containerized applications and CI/CD pipelines.

Our headquarters are located in New York City's Union Square. We believe in cross team collaboration. We think good ideas can come from anyone, and we've designed our processes to encourage participation from all. While we take our mission seriously, we don't take ourselves too seriously. We like to host offsites, outings, and team meals where we can connect as people, not just as colleagues. We offer office lunch and a fully stocked snack bar. While we are an in office culture, we allow up to 2 remote days per week.

Our benefits package for employees includes competitive base compensation along with stock options. The expected annual salary range for this role is $190,000-240,000 USD, depending upon the job level, which will depend on your level of expertise, your experience, and your qualifications. We also provide fully-paid health and dental insurance coverage for all of our employees, along with other health benefits including vision insurance, membership to premium primary and urgent care, and online medical health providers. We also have a take as you need time off policy, in addition to 7 paid holidays and a company wide winter break during the holidays.

We are looking for a Senior Security Engineer to own and advance the security posture of our platform as we scale.

You will be the dedicated security practitioner on the engineering team, responsible for hardening our cloud and edge infrastructure, driving compliance programs, building vulnerability management and incident response capabilities, and embedding security into the software development lifecycle.

This is a hands-on individual contributor role reporting to the Engineering Manager of Cloud and Security.

You will work across AWS and GCP environments, partner closely with product engineering and platform teams, and have direct impact on Sage's ability to earn and maintain customer trust.

Success in this role requires deep technical security skills, comfort operating across a broad surface area, and a bias toward practical, risk-proportionate solutions over checkbox compliance.

Harden and continuously improve the security of Sage's cloud infrastructure across AWS and GCP, including IAM policies, VPC configurations, security groups, and network segmentation.