Senior Security Engineer I

Job Description

Zip is seeking a Senior Security Engineer to implement and maintain cloud-native security controls across its Azure microservices. The role focuses on IAM, network, and application layers, requiring proactive identification and mitigation of vulnerabilities in collaboration with engineering and infrastructure teams. This is a remote-first opportunity for US-based employees, with an option to work in-person at the Manhattan office. The Senior Security Engineer will analyze the Azure cloud-native, microservices environment for security control gaps and implement secure configurations and solutions. They will champion cross-functional collaboration across security and engineering teams and implement globally applicable controls.Responsibilities:

• Formulation of the overall program delivery plan according to agreed priority
• Work with stakeholders varying from group executive to helpdesk staff, across the entire organization to deliver defined benefits as per scope
• Define and manage risk across the overall program
• Collaborate with infrastructure and engineering teams to identify remediation owners and develop strategies to manage risks proactively
• Regularly monitor and triage vulnerabilities resulting from automated security scans and manual security assessments
• Support technical evaluation and evidence for security assessments and audits.
• Mature the vulnerability management capabilities through policy alignment, threat detection, endpoint platforms & compliance systems

Requirements:

• BS or MS in Computer Science, Information Security, or a related technical field
• 7+ years of experience in security engineering or cloud infrastructure security
• Hands-on experience with Azure-native security controls
• Proven ability to work across disciplines and influence without authority
• Deep familiarity with threat modeling, security architecture, and risk analysis methodologies
• Strong written and verbal communication skills
• Demonstrated use of AI to improve security workflows
• Security certifications strongly preferred, such as CISSP, CCSP, OSCP, GIAC, or AZ-500

Benefits:

• Flexible working culture
• Incentive programs
• 20 days PTO every year
• Generous paid parental leave
• Leading family support policies
• 100% employer covered insurance
• Learning and wellness subscription stipend
• Company-sponsored 401k match