Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Senior Security Engineer image - Rise Careers
Job details

Senior Security Engineer

Why should I Apply:


At Sonar, we’re a group of brilliant, motivated, and driven professionals working hard to help organizations build responsible, secure, high-quality code quickly and systematically. We build solutions that don’t just solve symptoms of problems – we fix problems at the source – source code, to be specific.


We have a dynamic culture with employees worldwide and hub offices in the USA, Switzerland, the UK, Singapore, and Germany. We believe team members should have the opportunity to come to work every day, work on a product they are proud of, love what they do, and feel energized by their peers. With our roots deep in the open source community, we’re all about the mission: provide solutions that deliver Clean Code.


The impact you will have


Our primary goal is to build trust with our rapidly growing customer base by ensuring the security of our products and demonstrating that our organization meets stringent security standards.


As a member of the Information Security team, you will work with the engineering teams to ensure products and cloud platforms are designed, built, and maintained to Sonar’s high security standards and assist them through constant improvement. You will also ensure endpoints are fully secure and meet our engineers' needs while procuring and deploying new solutions. You will investigate and resolve security issues raised with our team. As part of a team-based organization, your contributions will significantly impact the growth of our business through Sonar’s “collective intelligence” mindset.


On a daily basis, you will
  • Develop and deliver security initiatives through the Strategic Security Plan.
  • Procure, design, and implement new security tools and features.
  • Work with the engineering teams to design and implement security solutions for products.
  • Run internal and external security reviews and pen-testing campaigns.
  • Investigate and resolve security issues in products and internal systems.
  • Review engineering product architecture and solutions to ensure integration of security requirements.
  • Investigate and manage CVE and cloud platform configuration. 
  • Manage and adjust cloud networks and firewalls.


The technical skills you will demonstrate
  • Extensive experience with Cloud architectures including AWS and GCP
  • Extensive experience with CI/CD platforms
  • Experience with application security assessment methods and reviews including authentication and authorization.
  • Experience with threat modeling using frameworks like STRIDE.
  • Pen-Testing experience 
  • CVE investigation and management
  • End-point security such as CrowdStrike and CyberArk
  • Cloud network and firewall management
  • Azure platform and Google Workspace experience are a plus.


The soft skills you will demonstrate
  • You are a curious person by nature
  • You are a friendly, enthusiastic, and an organized team player. 
  • You actively share your knowledge and give and receive feedback, to improve the team and yourself.  
  • Ability to clearly identify the problem to be solved and articulate it before working on the solutions.
  • You have experience working on cross-team projects across a global organization.
  • You are fluent in Written and spoken English.


Why you will love it here:


Our culture and mission set us apart. We have a dynamic work culture that values respect and kindness – and embraces the right to fail (and get right back up again!). We believe that the best idea wins and everyone has a voice.

We believe that great people make a great company. We value people skills as much as technical skills and strive to keep things friendly and laid-back while still being passionate leaders in our domains. Our 550+ SonarSourcers from 33 different nationalities can relate!

We embrace work-life balance. It is important to maintain a healthy work-life balance. This is why we have a flexible work policy that includes remote and in-office hybrid work (minimum three days a week in the office - Monday/Tuesday/Thursday).

We have a growth mindset. We love to learn and believe that continuous education is critical to our success. In an ever-changing industry, new skills are a must, and we're happy to help our team acquire them.



We prioritize Diversity, Equity, and Inclusion:


At Sonar, we are a global workforce and recognize the value of different backgrounds, and global cultures.


We are committed to creating a diverse work environment and are proud to be an equal-opportunity employer. All qualified applicants will be considered for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.


All offers of employment at Sonar are contingent upon the clear results of a comprehensive background check conducted prior to the start date.


Please note that applications submitted through agencies or third-party recruiters will not be considered.

Sonar Glassdoor Company Review
3.6 Glassdoor star iconGlassdoor star iconGlassdoor star icon Glassdoor star icon Glassdoor star icon
Sonar DE&I Review
No rating Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon
CEO of Sonar
Sonar CEO photo
Olivier Gaudin
Approve of CEO

Average salary estimate

$135000 / YEARLY (est.)
min
max
$120000K
$150000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Senior Security Engineer, Sonar

Join Sonar as a Senior Security Engineer in Austin and dive into the exciting world of cyber security! At Sonar, we empower organizations to build secure, high-quality code swiftly and systematically, and we're on a mission to provide solutions that guarantee Clean Code. In this role, you'll be part of an innovative and dynamic team dedicated to fostering trust with our expanding customer base by ensuring product security and compliance with rigorous standards. Collaborating closely with engineering teams, you'll design, implement, and maintain robust security solutions for our products and cloud platforms. Your expertise will be invaluable as you conduct security reviews, manage vulnerabilities, and implement cutting-edge security tools and features. Are you ready to troubleshoot security issues while contributing to a culture that values respect, curiosity, and continuous learning? As a Senior Security Engineer at Sonar, you'll have the opportunity to work on cross-team projects, share your knowledge, and inspire your peers in a friendly environment where every voice matters. Plus, with our hybrid work model, you can enjoy the flexibility of working in our vibrant office or remotely, all while maintaining a healthy work-life balance. If you're enthusiastic about shaping security protocols and making a difference in software development, this is the place for you to thrive and grow!

Frequently Asked Questions (FAQs) for Senior Security Engineer Role at Sonar
What are the responsibilities of a Senior Security Engineer at Sonar?

As a Senior Security Engineer at Sonar, your responsibilities include developing and delivering security initiatives through our Strategic Security Plan, designing and implementing new security tools and features, and collaborating with engineering teams to ensure our products meet high security standards. You'll also run internal and external security reviews, investigate security issues, and manage cloud networks and firewalls.

Join Rise to see the full answer
What qualifications do I need to apply for the Senior Security Engineer position at Sonar?

To apply for the Senior Security Engineer position at Sonar, you should have extensive experience with cloud architectures like AWS and GCP, as well as CI/CD platforms. Proficiency in application security assessments, pen-testing, CVE management, and endpoint security tools like CrowdStrike is essential. Additionally, strong communication skills and a collaborative spirit are crucial for this role.

Join Rise to see the full answer
What soft skills are valued for the Senior Security Engineer role at Sonar?

Sonar values soft skills such as curiosity, enthusiasm, and teamwork for the Senior Security Engineer position. You should be able to articulate problems clearly, share knowledge, provide constructive feedback, and work effectively across global teams. A friendly attitude and adaptability are also key to thriving in our dynamic work environment.

Join Rise to see the full answer
How does Sonar support work-life balance for Senior Security Engineers?

At Sonar, we emphasize the importance of work-life balance, offering a flexible work policy for our Senior Security Engineers. Our hybrid model allows for a minimum of three days in-office each week, ensuring you can enjoy collaboration in our vibrant office while maintaining the flexibility to work remotely.

Join Rise to see the full answer
What opportunities for professional growth are available for Senior Security Engineers at Sonar?

Sonar is committed to a growth mindset, providing numerous opportunities for professional development for Senior Security Engineers. We prioritize continuous education and actively support our team in acquiring new skills to keep pace with the evolving industry landscape.

Join Rise to see the full answer
Common Interview Questions for Senior Security Engineer
How would you approach designing a secure cloud infrastructure?

When designing a secure cloud infrastructure, I would start with a comprehensive risk assessment to identify potential vulnerabilities. I would leverage established frameworks, such as STRIDE for threat modeling, and ensure that key security features like encryption, access control, and regular pen-testing are integrated into the architecture.

Join Rise to see the full answer
Can you explain your experience with CVE management?

In my previous role, I managed CVEs by staying updated on security advisories and assessing their impact on our products. I prioritized patches based on severity and worked closely with engineering teams to apply fixes promptly and effectively while ensuring minimal disruption to operations.

Join Rise to see the full answer
What steps would you take if a security vulnerability was discovered in our products?

If a security vulnerability was discovered, my immediate steps would include assessing the severity, informing the relevant stakeholders, and initiating a response plan. I would work with the engineering team to develop a fix, conduct thorough testing, and communicate transparently with customers regarding the issue and our resolution efforts.

Join Rise to see the full answer
Describe a time you led a cross-team project. What challenges did you face?

I led a cross-team project focused on implementing a new security tool. One significant challenge was aligning different team priorities and timelines. I facilitated regular meetings and maintained open communication to ensure all teams were engaged in the process, which ultimately led to successful implementation within the deadline.

Join Rise to see the full answer
How do you stay updated with the latest security trends and threats?

I stay updated with the latest security trends by actively participating in industry forums, attending conferences, and subscribing to reputable security news sources. I also leverage online courses and certifications to continually enhance my knowledge in the rapidly evolving security landscape.

Join Rise to see the full answer
What is your experience with endpoint security tools such as CyberArk or CrowdStrike?

I have extensive experience with endpoint security tools like CrowdStrike, where I've implemented policies to monitor and protect endpoints effectively. I am familiar with setting up and managing threat detection rules and responding to alerts to strengthen our organization’s endpoint security posture.

Join Rise to see the full answer
How would you integrate security into the software development lifecycle?

To integrate security into the software development lifecycle, I would advocate for practices such as regular security assessments during each phase, threat modeling during design, and incorporating security testing into CI/CD pipelines to identify vulnerabilities early in the development process.

Join Rise to see the full answer
What role does communication play in a Security Engineer's job?

Communication is vital for a Security Engineer. It ensures that security policies are understood and followed across teams, facilitates collaboration when handling security incidents, and helps effectively convey security risks and mitigations to stakeholders. Clear communication fosters a culture of security awareness throughout the organization.

Join Rise to see the full answer
Have you ever experienced a significant security breach? How did you handle it?

Yes, I handled a significant security breach where we quickly formed an incident response team to assess the impact and containment. We communicated transparently with affected stakeholders, investigated the root cause, and implemented corrective actions to prevent future incidents. This experience taught me the importance of preparedness and swift action.

Join Rise to see the full answer
What motivates you as a Senior Security Engineer?

My motivation as a Senior Security Engineer comes from the challenge of securing complex systems and continually learning in an ever-evolving field. I take pride in protecting sensitive information and enabling teams to innovate while ensuring robust security measures are in place.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User

Join Sonar as an Enterprise Account Executive and leverage your sales skills to drive growth in a fast-paced environment.

Photo of the Rise User
Posted 6 days ago

Join Sonar as a Senior Corporate Accountant and play a key role in shaping our accounting processes in a dynamic and growing software company.

Photo of the Rise User
Five Nines Technology Hybrid Lincoln, Nebraska, United States
Posted 9 days ago

A rapidly growing IT company in Lincoln is looking for a Desktop Engineer to leverage your IT skills and passion for service.

Photo of the Rise User
Posted 8 days ago

Join Kimley-Horn as an IT Analyst in Alpharetta, where you will enhance technology support across multiple offices.

Photo of the Rise User
Imprint Remote New York, San Francisco, OR Seattle
Posted 13 days ago

As a Cybersecurity Manager at Imprint, you will lead the core security and compliance initiatives to protect a rapidly growing FinTech platform.

Posted 6 days ago

Join the Law Office of Bryan Fagan as an IT Specialist to enhance and secure our technological operations in a professional legal setting.

Photo of the Rise User
Unisys Remote Diegem, Flemish Brabant, Belgium
Posted 6 days ago

Join Unisys as a Junior Systems Administrator/Engineer and contribute to high-performance system solutions while gaining valuable training in the field.

Photo of the Rise User

As a Sr Staff LLM Application Engineer at Palo Alto Networks, you will lead innovations in AI-driven cybersecurity solutions through the development of advanced Large Language Models.

Posted 12 days ago

We are searching for an experienced Senior System Administrator to enhance our client's IT operations in Austin, Texas.

As a company, we aim to have every developer and development team using our products for their code quality and security. The founders believed that building a great place to work with a strong culture would help us make this goal come true in fos...

103 jobs
MATCH
Calculating your matching score...
FUNDING
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
EMPLOYMENT TYPE
Full-time, hybrid
DATE POSTED
February 27, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
LATEST ACTIVITY
Photo of the Rise User
14 people applied to Web Developer (Remote) at B12
Photo of the Rise User
Someone from OH, Cleveland just viewed Customer Relations Outfitter-1 at Bass Pro Shops
Photo of the Rise User
77 people applied to Cybersecurity Intern at Dewberry
Photo of the Rise User
67 people applied to SOC Analyst I at Epsilon
Photo of the Rise User
71 people applied to Security Analyst Jr at DEUNA
Photo of the Rise User
8 people applied to security analyst at Randstad US
Photo of the Rise User
Someone from OH, Delaware just viewed Practice Group Manager at LifeStance Health
Photo of the Rise User
8 people applied to Jira Administrator I at Braze
P
Someone from OH, Cincinnati just viewed Governance, Risk and Compliance Officer at ProgressSoft
Photo of the Rise User
Someone from OH, Fredericksburg just viewed Vice President, Inside Sales at A Place for Mom
Photo of the Rise User
Someone from OH, Germantown just viewed Staff Accountant at AudioEye
Photo of the Rise User
Someone from OH, Germantown just viewed Staff Accountant at GoodLeap
Photo of the Rise User
84 people applied to Jr SOC Analyst at IBM
Photo of the Rise User
Someone from OH, Cincinnati just viewed Director of Growth Marketing at TeamSnap
Photo of the Rise User
Someone from OH, Cincinnati just viewed Growth Lead at io.net
Photo of the Rise User
Someone from OH, Cincinnati just viewed VP, Demand Generation at Ontic
R
Someone from OH, Cleveland just viewed Influencers Affiliates Team Lead at RISK
Photo of the Rise User
Someone from OH, Cincinnati just viewed Marketing Analyst at Anchorage Digital
Photo of the Rise User
Someone from OH, Cincinnati just viewed Marketing Analytics Analyst at 10x Genomics
Photo of the Rise User
Someone from OH, Columbus just viewed Sr Specialist Quality & Regulatory Compliance at bioMérieux
Photo of the Rise User
Someone from OH, Cincinnati just viewed Jr. Graphics Designer at NBCUniversal
o
Someone from OH, Cleveland just viewed Nike Marketing Coordinator at osu
Photo of the Rise User
Someone from OH, Columbus just viewed Project Manager at Promise