Job Ad

We’re looking for a Senior Security Engineer to join Procore’s Security Engineering team. In this role, you’ll be a senior member of the team, responsible for building and running the foundational security controls that protect our platform, data, and users. Your primary goal is to build and maintain a secure, scalable, and resilient cloud product and infrastructure.

As a Senior Security Engineer, you’ll partner with Product & Technology, IT, Security Operations, and GRC to integrate security into new and existing systems. Use your strong experience in cloud security, data protection, and identity and access management to build and deploy automated security controls across our SaaS ecosystem. This is a critical role in strengthening our security posture and protecting the data of millions of users - Apply today.

This position reports into the Senior Director, Security Engineering and will be based in our Bengaluru, India office. We’re looking for someone to join us immediately.

What you’ll do:

• Implement and manage scalable IAM guardrails for cloud (AWS/GCP/Azure) and corporate (Okta) environments.

• Build and maintain automated pipelines for authoritative asset inventory and Software Bill of Materials (SBOM) generation.

• Contribute to the technical roadmap and execute on projects for data protection, including key management, encryption, and tokenization.

• Develop and implement secure configurations for our containerized (Kubernetes, EKS) and IaC (Terraform) workflows.

• Work with Product & Technology teams to test and validate resilience patterns and disaster recovery capabilities.

• Lead threat modeling sessions for complex, high-risk systems and microservices. Define secure coding standards and build "paved road" libraries (secure-by-default wrappers) for engineering teams.

• Provide clear technical context on security controls and designs to our GRC and Internal Audit teams. Mentor junior engineers and help review code and designs for security best practices.

• Evaluate and recommend new security technologies and platforms to solve immediate business problems. Provide on-call support on a rotational basis.

What we’re looking for:

• Bachelor's degree in Computer Science or equivalent practical experience.

• 5+ years of experience in a hands-on technical security role, with at least 2 years focused on cloud security.

• Strong knowledge in several security domains (e.g., IAM, IaaS, network) and a willingness to learn others.

• Strong hands-on experience with at least one major cloud provider (AWS preferred) and its security services.

• Experience with identity and access management platforms (IdP, IGA, PAM) and concepts (SAML, OAuth 2.0, OIDC, SCIM).

• Experience with IaC (Terraform preferred), CI/CD pipelines, and container orchestration (Kubernetes). Proven track record of building or customizing security automation in CI/CD (DevSecOps).

• Ability to negotiate security requirements with product owners and balance risk vs. speed. Solid understanding of data protection principles, including encryption, key management, and tokenization.

• A "builder" mindset with strong automation and scripting skills (Python, Go, or similar). Strong communication skills and the ability to work effectively with cross-functional teams.