Senior Security Engineer

Job Description

DeepIntent is leading the healthcare advertising industry with data-driven solutions built for the future. From day one, our mission has been to improve patient outcomes through the artful use of advertising, data science, and real-world clinical data. For more information visit, www.DeepIntent.com.

What You’ll Do:

As a Senior Security Engineer, you will own the security architecture and enforcement across our infrastructure. Our infrastructure relies heavily on a Linux ecosystem, and as we scale our cloud footprint and AI initiatives, this layer is becoming increasingly security-sensitive. You will be embedded directly with the teams operating these systems, bridging the gap between high engineering velocity and secure-by-design architecture. Your core mandate is to protect production, harden our Linux environments, establish AI guardrails, and build secure access patterns without creating  process overhead. This role will report to the Sr Director, Infrastructure and Networking and will be a hybrid role based out of Banja Luka, Bosnia.

• Linux Hardening & Threat Detection: Secure our underlying Linux infrastructure and container runtimes. Deploy, tune, and manage our SIEM for continuous threat detection, file integrity monitoring, and host-based intrusion detection (HIDS) across our fleet.
• Identity & Access Control: Design and enforce secure access patterns. Ruthlessly eliminate shared accounts, long-lived credentials, and overly broad permissions across the organization.
• Cloud & Infrastructure Governance: Own the security posture across our cloud environments. Implement secure infrastructure-as-code practices using Terraform and Terraform workflow.
• AI & Agentic System Security: Establish infrastructure-level guardrails for AI tooling and agentic systems, including tool permission boundaries, secrets exposure prevention, data egress controls, audit logging, approval workflows for sensitive actions, and controls against prompt-injection-driven misuse of internal systems.
• Secure CI/CD & Supply Chain: Protect our production deployment paths against supply-chain attacks.
• Policy-as-Code & Preventive Guardrails: Build and maintain automated security controls into Terraform, Terraform Workflow, Git repository, and CI/CD workflows.
• Vulnerability Management: Drive faster CVE response times and vulnerability closures across our infrastructure. Reduce the ad hoc security burden currently spread across the engineering team.
• Incident Response & Compliance: Serve as the clear owner for external security reports, responsible disclosures, and audits, reducing the ad-hoc burden on the broader engineering team.
• Work closely with the Platform Engineering Services Team regarding Kubernetes, Container & Runtime Security: Own security controls for containerized and cloud-native environments, including image hardening, runtime detection, network policies, workload identity, and secure container build standards.
• Work closely with all Engineering teams in eliminating security threats.

Who You Are:

• Bachelor’s degree in Computer Science, Cyber Security or similar technical field of study or equivalent practical experience
• Proven experience as a Security Engineer, with a minimum of 5 years working in a cyber security focused role
• Deep Linux Expertise: Extensive experience securing, hardening, and operating Linux-based infrastructure and containerized environments
• Cloud-Native Security: Experience securing Kubernetes or similar orchestration platforms, container images, runtime behavior, service mesh or network policies, and workload identity patterns.
• Identity-First Security: Strong understanding of SSO, MFA/passkeys, RBAC, just-in-time access, privileged access management, OIDC federation, and elimination of static credentials.
• Policy-as-Code: Ability to translate security requirements into automated controls.
• SIEM & Endpoint Security: Hands-on experience configuring and maintaining SIEM for centralized logging, vulnerability detection, and active response.
• Cloud & IaC Proficiency: Hands-on experience architecting security in mainstream cloud environments, and deep familiarity with Terraform, Ansible, and Git.
• AI Security Awareness: Practical understanding of LLM and agentic AI risks, including prompt injection, excessive agency, tool abuse, data leakage, insecure plugin/tool integrations, and secure approval boundaries.
• Security Ownership: Comfortable defining security metrics, driving remediation across teams, prioritizing risk pragmatically, and communicating trade-offs clearly to engineering leaders.
• Pragmatic Approach: You focus on automated guardrails, robust monitoring, and secure default paths rather than manual checklists and roadblocks.

Our benefits include:

• Flexible working hours
• 20 days of vacation base, plus one extra day for every four years of experience
• 3-4 days of extra days off per year when we celebrate our successes globally
• Constant learning and development opportunities
• Yearly bonuses based on your performance and company success
• Top-notch equipment. Possibility to choose your hardware. Mac or PC
• Working with cutting-edge technologies
• Friendly working atmosphere in an open-minded multinational team

We believe great work starts with great support. That’s why DeepIntent offers a competitive, holistic benefits package designed to empower you both professionally and personally.

Here’s what you can expect when you join our team based in the US: Competitive base salary plus performance based bonus or commission, comprehensive medical, dental, and vision insurance, 401K match program, Unlimited PTO policy and paid holidays, remote friendly culture with flexible work options, career development and advanced education support, WFH and internet stipends, plus many more perks and benefits!

Here’s what you can expect when you join our team based in India: Competitive base salary plus performance based bonus, comprehensive medical insurance, and paid holidays. Hybrid-friendly culture with flexible work options, professional development reimbursement, WiFi reimbursement and health and wellness allowance plus many more perks and benefits!

Here’s what you can expect when you join our team based in Europe: Competitive base salary plus performance-based bonus, comprehensive medical insurance, and flexible PTO. Hybrid-friendly culture with flexible work options, professional development reimbursement, WiFi reimbursement, and parental leave plus many more perks and benefits!

DeepIntent is committed to bringing together individuals from different backgrounds and perspectives. We strive to create an inclusive environment where everyone can thrive, feel a sense of belonging, and do great work together. DeepIntent is an Equal Opportunity Employer, providing equal employment and advancement opportunities to all individuals. We recruit, hire and promote into all job levels the most qualified applicants without regard to race, color, creed, national origin, religion, sex (including pregnancy, childbirth and related medical conditions), parental status, age, disability, genetic information, citizenship status, veteran status, gender identity or expression, transgender status, sexual orientation, marital, family or partnership status, political affiliation or activities, military service, immigration status, or any other status protected under applicable federal, state and local laws. If you have a disability or special need that requires accommodation, please let us know in advance. DeepIntent’s commitment to providing equal employment opportunities extends to all aspects of employment, including job assignment, compensation, discipline and access to benefits and training.

CCPA Notice: If you are a California resident applying for a role at DeepIntent, we may collect personal information as part of the application process in accordance with the California Consumer Privacy Act (CCPA). To learn more about the categories of information we collect and your rights, please contact [email protected] to see our full Applicant Privacy Notice.