← Zurück zur Liste
Stelle · Senior

Senior Product Security Engineer, Cloud

Security Engineer • Senior • Vor Ort • Vollzeit • 📍 Dublin +1

MongoDB is seeking a Senior Product Security Engineer to drive cloud security initiatives for MongoDB Atlas and the cloud platforms that power it across AWS, GCP, and Azure. As a senior individual contributor in the Product Security organization, you will work on the Cloud Security team, which focuses on Atlas control plane and data plane environments, partnering closely with Atlas engineering, SRE, other security engineering teams, and global security operations to build and defend secure-by-default, large-scale, multi-tenant cloud services. The role can be based in the Dublin office (hybrid) or remotely in Ireland.

Responsibilities

  • Co-own and drive Atlas cloud security initiatives such as control plane hardening, cloud security baselines, identity and access patterns, customer account protections, and data-plane protections for multi-tenant environments
  • Perform and lead security reviews for Atlas features and platform changes, including architecture review, threat modeling, and targeted testing
  • Design and review cloud architectures across AWS, GCP, and Azure — covering networking, IAM, secrets management, and service-to-service access — and help define reusable secure reference architectures
  • Embed security into platforms and guardrails via policies and automation (e.g. policy-as-code, secure defaults, pre-deployment checks) that make the secure path the easiest path for developers
  • Use CSPM, infrastructure vulnerability data, and IaC scanning to identify posture gaps and drive concrete hardening work with clear ownership, coverage, and success metrics
  • Partner with Detection & Response, SRE, and other security teams on incidents, threat hunts, posture investigations, and new detections tied to Atlas and its cloud footprint
  • Influence roadmaps and priorities by translating security risk and customer expectations into well-scoped problem statements, options, and trade-offs
  • Mentor and support other engineers, contributing to internal documentation, reviews, and training

Requirements

  • 7+ years of experience in application, product, and/or cloud security for large-scale, customer-facing systems, ideally in a multi-cloud or SaaS environment
  • Strong hands-on experience with cloud security architecture on at least one major cloud provider (AWS, GCP, or Azure), including VPC/networking (segmentation, egress controls, private connectivity), IAM (roles, policies, workload identity, cross-account access), keys and secrets (KMS, HSMs, secret management systems), container/orchestration security (e.g. Kubernetes, ECS, serverless), and multi-tenant control planes with blast-radius reduction patterns
  • Solid security architecture fundamentals: designing and reviewing end-to-end systems, reasoning about threat models and risk trade-offs, and recommending controls across application, data, and infrastructure layers
  • Ability to read and reason about code (e.g. Go, Java, or similar), plus familiarity with IaC (Terraform/CloudFormation), CI/CD, and security automation tooling (e.g. CSPM, IaC scanning, SAST, SCA)
  • Demonstrated experience leading security reviews and projects with engineering teams (threat modeling, design reviews, targeted testing) and turning findings into pragmatic, prioritized remediation work

Nice to have

  • Prior experience as a security engineer for a multi-tenant SaaS or cloud platform, particularly in data, database, or infrastructure-as-a-service domains
  • Hands-on experience with Atlas-like environments: control planes orchestrating resources across multiple cloud providers with strong isolation and blast-radius containment requirements
  • Experience improving the signal quality and developer adoption of CSPM, vulnerability management, or IaC scanning in large engineering organizations
  • Public contributions to the security community (talks, tools, standards, publications) in cloud or product security
  • Experience mentoring other security engineers or serving as a bar-raiser in interviews for product/cloud security roles

Soft skills

Excellent written and verbal communication skills; able to explain complex cloud and product security issues in a way that builds trust with engineers, leaders, and customersStrong sense of ownership and follow-throughCollaborative working style: bringing others along, creating space for their input, and offering specific, actionable feedback

What we offer

  • Employee affinity groups
  • Fertility assistance
  • Generous parental leave policy
  • Hybrid working model or remote work within Ireland

About the company

MongoDB is built for change, empowering customers and employees to innovate at the speed of the market. Its unified data platform helps organizations modernize legacy workloads and unleash AI. The cloud-native MongoDB Atlas is the only globally distributed, multi-cloud data platform, available across AWS, Google Cloud, and Microsoft Azure, with over 67,000 customers including 75% of the Fortune 100. MongoDB is an equal opportunities employer.