Staff Security Engineer II at Confluent

📋 Description

• Partner with Eng, Product, and Platform to identify security risks early.
• Define threat modeling frameworks and lead security design reviews.
• Serve as SME for product security; oversee code reviews and API testing.
• Architect and drive the roadmap for security automation and tooling.
• Design and deploy automation integrating security into cloud-native pipelines.
• Identify new vulnerabilities; lead research and tabletop exercises.
• Deploy controls to maximize observability and harden attack surfaces.

🎯 Requirements

• 10–12 years of application security in large-scale distributed systems.
• Deep knowledge of secure design for web apps and cloud-native platforms.
• Partner with Eng and Product to embed security in core architecture.
• Lead security incident investigations and preventive improvements.
• Evolve SDLC to embed security; automate CI/CD guardrails.
• Experience with Go, Python, or Java; build scalable security automation.
• Lead cross-functional initiatives; translate security requirements into roadmaps.