Security Engineer Job Description Template

Security Engineer [Company name] · [City], [Country] · [On-site / Hybrid / Remote] $120,000 – $180,000 (US) · £85,000 – £135,000 (UK) · €100,000 – €155,000 (EU) — gross/year

Design, implement, and maintain security infrastructure that protects company systems, data, and customer information. You'll own vulnerability assessments, incident response, and security compliance across cloud and on-premise environments.

Why this role exists As SMBs scale, they face real security threats, regulatory requirements, and customer demands for proof of secure practices. You're hired to reduce breach risk, pass audits, and build security into product development.

What you'll do

• Conduct regular security audits and penetration testing to identify and document vulnerabilities before attackers do
• Implement and manage authentication, encryption, and access control systems across production infrastructure
• Develop and enforce security policies, code review processes, and secure development training for engineering teams
• Respond to and investigate security incidents, documenting root causes and preventing recurrence
• Manage security compliance requirements (SOC 2, GDPR, HIPAA where relevant) and coordinate with external auditors
• Maintain security tooling: SIEM, vulnerability scanners, endpoint protection, and secrets management platforms

What you'll need

• 5+ years building or defending production systems, with at least 2 years in a dedicated security role
• Strong foundation in network security, firewalls, VPNs, and secure cloud architecture (AWS, Azure, or GCP)
• Hands-on experience with vulnerability scanning tools, penetration testing frameworks, and security auditing
• Solid understanding of common attack vectors (SQL injection, XSS, privilege escalation, lateral movement) and mitigations
• Experience writing or reviewing secure code, preferably across 2+ languages (Python, Go, JavaScript, or Java)
• Working knowledge of at least one compliance framework (SOC 2, ISO 27001, CIS Controls, or OWASP Top 10)

Nice to have

• Security certifications (OSCP, CEH, CISSP, or GIAC) or equivalent demonstrated expertise
• Prior startup or scale-up experience where you've built security practices from near-zero
• Familiarity with container security, Kubernetes, or Infrastructure-as-Code security scanning

What we offer

• Salary: [range, gross, with currency and time unit]
• [Equity / bonus / commission if applicable]
• [Health, PTO, learning budget, equipment — only what's real]
• [Work mode + flexibility]

About [Company] [2–3 sentences: stage, customers, traction. Keep it specific.]