Platform Engineering Security Engineer
Constructor
Constructor is the only search and product discovery platform tailor-made for enterprise ecommerce where conversions matter. Constructor's AI-first solutions make it easier for shoppers to discover products they want to buy and for ecommerce teams to deliver highly personalized experiences that drive impressive results. Optimizing specifically for ecommerce metrics like revenue, conversion rate and profit, Constructor generates consistent $10M+ lifts for some of the biggest brands in ecommerce, such as Sephora, Petco, home24, Maxeda Brands, Birkenstock and The Very Group. Constructor is a U.S. based company that was founded in 2015 by Eli Finkelshteyn and Dan McCormick. For more, visit: constructor.com.
About You
You’re an infrastructure engineer with a deep background in security and platform engineering/devops who loves autonomy and self-direction. You have experience monitoring and hardening infrastructure in AWS, as well as setting up security tooling in AWS or other cloud providers. You enjoy collaborating with others as well as working independently to accomplish your goals.
About the Job
You’ll join the distributed Constructor platform engineering team as a security-focused engineer. You’ll be working with our CISO, our platform engineering team, and our software engineers to create systems to monitor and improve security, develop guardrails to allow teams to create and deploy systems safely and securely, and continuously improve the security posture of our AWS infrastructure.
This role will have a large say in determining security priorities and enhancing Constructor’s security posture.
Your specific responsibilities will include:
- Following best-practice approaches to configure AWS services to keep our systems secure
- Reviewing and improving our production security architecture
- Developing systems to ensure compliance with data privacy regulations
- Advising engineering teams on how to develop and deploy secure systems
- Maintaining and enhancing security monitoring and alerts
- Enhancing and responding to automated scanning utilities
- Responding to security incidents
- Helping with our SOC2 and ISO27001 security audits