Senior Platform Security Engineer

NorthMark Strategies

$120K — $150K *
Dallas, TX 75217In-Person
Information Technology
5 - 7 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • 6+ years of experience in security engineering, particularly in platform, infrastructure, or application security.
  • Hands-on expertise with vulnerability management and security monitoring tools like Qualys, Tenable, and Prisma Cloud.
  • Strong knowledge of software/infrastructure security including container and supply chain security
  • Experience with securing Kubernetes, OpenStack, AWS, and Azure cloud environments.
  • Proficiency in Linux systems and grasp of platform engineering operations.
  • Skilled in integrating security within CI/CD pipelines and Infrastructure-as-Code with scripting abilities in Python or Bash.
  • Familiarity with vulnerability scoring frameworks and risk-based prioritization.

Responsibilities

  • Own the vulnerability management program for platform engineering including infrastructure and cloud services.
  • Implement real-time security monitoring and threat detection tools for HPC and cloud environments.
  • Partner with engineering teams to embed security in CI/CD pipelines and IaC workflows.
  • Lead the triage and prioritization of vulnerabilities with engineering for timely remediation.
  • Conduct platform security assessments and contribute to threat modeling and analysis.
  • Develop automation to assess security posture, increasing detection effectiveness.
  • Drive continuous improvement of platform security practices, fostering a security-first culture.

Benefits

  • Company-Paid Lunch Stipend via GrubHub.
  • 100% Employer-Paid Medical, Dental, and Vision insurance for employees and families.
  • 16 weeks of Paid Parental Leave for new parents.
  • 401(k) with a 100% company match up to 6% of contributions.
  • 25 days of Paid Time Off, plus 12 company holidays.
Full Job Description
The Position

The Platform Security team sits within NMC8's Security organization and is responsible for securing the engineering platforms and infrastructure that power our HPC and cloud environment. Our mission is to build real-time security visibility and a proactive vulnerability management capability into the core of how NMC8's platforms are built and operated - ensuring that security is never an afterthought in an environment where the stakes are exceptionally high.

As a Senior Platform Security Engineer, you will play a pivotal role in detecting, assessing, and remediating vulnerabilities across our platform engineering stack from bare-metal infrastructure and container orchestration through to cloud services and software supply chains. You will collaborate closely with Platform Engineering and DevOps teams to embed real-time threat detection and vulnerability management into the development lifecycle, ensuring our infrastructure is resilient, continuously monitored, and hardened against emerging threats.

Responsibilities:

  • Own the design and operation of NMC8's vulnerability management program across the platform engineering stack, including infrastructure, containers, and cloud services


  • Implement and tune real-time security monitoring and threat detection tooling, ensuring high-fidelity signal across our HPC and cloud environments


  • Partner with Platform Engineering and DevOps teams to integrate security scanning and vulnerability assessment into CI/CD pipelines and Infrastructure-as-Code workflows


  • Lead vulnerability triage and prioritization, working with engineering teams to drive timely and effective remediation of identified risks


  • Conduct platform-level security assessments, contributing to threat modelling and attack surface analysis across our infrastructure and software supply chain


  • Develop automation to continuously assess the security posture of our platforms, reducing manual effort and improving detection coverage


  • Contribute to the continuous improvement of platform security practices, tooling, and processes, helping foster a security-first culture across engineering


Requirements:

  • 6+ years of experience in security engineering, with a strong focus on platform, infrastructure, or application security


  • Hands-on experience with vulnerability management tooling and real-time security monitoring platforms (e.g. Qualys, Tenable, Wiz, Lacework, Prisma Cloud, or similar)


  • Strong understanding of software and infrastructure security, including container security, supply chain risk, secrets management, and secure configuration


  • Experience securing container orchestration platforms such as Kubernetes and OpenStack, and cloud environments including AWS and/or Azure


  • Proficiency in Linux and familiarity with how platform engineering teams build and operate infrastructure


  • Experience integrating security tooling into CI/CD pipelines and IaC workflows, with scripting ability in Python, Bash, Go, or similar


  • Good knowledge of vulnerability scoring frameworks (CVSS), exploit maturity, and risk-based prioritization


  • A strong interest in the security domain and a collaborative approach to working with engineering teams to solve complex technical problems


Nice to Have:

  • Experience with runtime threat detection tools such as Falco or eBPF-based security tooling


  • Familiarity with software supply chain security frameworks (e.g. SLSA, SBOM generation, Sigstore)


  • Background working within or alongside a SOC or threat intelligence function


  • Relevant certifications such as OSCP, GIAC (GPEN/GWAPT/GCSA), AWS Security Specialty, or equivalent


It is impossible to list every requirement for, or responsibility of, any position. Similarly, we cannot identify all the skills a position may require since job responsibilities and the Company's needs may change over time. Therefore, the above job description is not comprehensive or exhaustive. The Company reserves the right to adjust, add to or eliminate any aspect of the above description. The Company also retains the right to require all employees to undertake additional or different job responsibilities when necessary to meet business needs.

Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.

Benefits & Perks:
  • Company-Paid Lunch Stipend: Lunch is provided via GrubHub
  • Company-Paid Benefits: 100% Employer-Paid Medical in our High Deductible Health Plan, Dental and Vision benefits for employees and their families, 16 weeks of Paid Parental Leave, Employee Assistance Program, Life insurance, Short-Term Disability and Long-Term Disability
  • 401(k): Company will match 100% of your contributions up to 6%
  • Optional Employee-Paid Benefits: Medical insurance in our PPO plan and a variety of other benefits such as Health Savings Accounts (with Company Contribution!), Flexible Spending Accounts, Supplemental Life Insurance, Wellhub and more.
  • Time Off: 25 days of Paid Time Off plus 12 company holidays


* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at NorthMark Strategies

More Information Technology Jobs

Find similar Senior Platform Security Engineer jobs:

NationwideDallas, TX