Clickhouse
Senior Security Automation Engineer
Vaga remota de Security Automation com fit claro de localização do candidato.
Publicada15 de jul. de 2026
Países elegíveis1 país aceito
Sinal de senioridadeSenior
Modelo de trabalhoRemoto
Locais aceitos para candidatos
Estados Unidos
Resumo da vaga
Senior Security Automation Engineer
Requisitos e responsabilidades
Conteúdo da vaga extraído em seções para revisão mais rápida.
Build the Security Telemetry and Risk Fabric
- Control Design: Translate control frameworks into layered control implementations that prevent risks from being exploited and detect possible weaknesses within control design. Shift from reactive monitoring to self-healing security, preventing compliance drift before it becomes an audit finding.
- Security Telemetry: Engineer a centralized security telemetry system that programmatically captures control evidence and health in real-time, transitioning from manual snapshots to continuous data streams for an 'always-on' view of our security posture.
- Custom Assurance Logic: Engineer specialized automation that acts as its own continuous audit function to minimize findings and provide real-time insights into our automated control performance. Extend visibility into our proprietary applications and complex internal workflows, ensuring our most critical controls are continuously validated.
- Agentic Risk Engine: Partner with our risk management function to build a secure mechanism to generate agentic risk assessments workflows using the data and results from what is collected.
Architect Universal Identity and Access Automation
- Universal Provisioning Connectors: Architect solutions for systems that lack native IGA support (proprietary databases, custom apps, and niche SaaS) to ensure instant account creation and de-provisioning—eliminating tickets, wait-times, and providing maximum observability into the state of Clickhouse identities.
- Customer-Approved Access Workflows: Architect the complex, high-trust workflows required for support teams to access customer-specific instances, ensuring actions are customer-approved, strictly time-bound, and automatically revoked via a "Trust-by-Design" model.
- Centralized Security Visibility: Transition "hidden" access managed by disparate business units into a single, observable permissions inventory, gaining 100% visibility into permissions at the authZ level across our full suite of applications.
- Automated Secret Discovery & Inventory: Develop automation to continuously discover and inventory secrets, credentials, and API keys throughout the environment, providing aging and rotation intervals for long lived keys.
- Eliminate "Ghost Accounts": Mitigate audit risks by ensuring automated de-provisioning for local identities, API keys, and persistent permissions across all target systems.
Partner Across Security, Engineering and Product
- Work in tandem with GRC, Finance, and Security to build custom, bulletproof automation for compliance with different audit frameworks.
- Eliminate the "Productivity Anchor" by removing manual provisioning workflows that slow down projects and flood teams with low-value administrative tickets.
Security & Automation Engineering Depth
- Strong hands-on background in security automation and identity engineering (IAM/IGA).
- Strong proficiency in at least one commonly used programming language to build scalable automation. Experience with Python, JavaScript (TypeScript highly preferred), or Go is required.
- Experience building scalable and reliable automation ecosystems
- Familiarity with compliance automation, continuous control monitoring, and extending GRC tools to meet the granular requirements of a variety of compliance frameworks.
- Understanding of risks associated with change management, logical access, and data integrity.
Execution and Delivery
- Demonstrated ability to translate complex security/GRC mandates into automated workflows and self-healing technical guardrails.
- Strong instincts for eliminating operational friction and the engineering "interruption tax."
- Experience delivering continuous data streams for security posture and risk validation.
Bonus Points:
- BS, MS, or PhD in Computer Science or related field.
- Previous experience at a cloud infrastructure, database, or developer tools company.
- Experience with AI/Agentic risk engines and non-deterministic risk assessments.
Perks
- Flexible work environment - ClickHouse is a globally distributed company and remote-friendly. We currently operate in over 20 countries.
- Healthcare - Employer contributions towards your healthcare.
- Equity in the company - Every new team member who joins our company receives stock options.
- Time off - Flexible time off in the US, generous entitlement in other countries.
- A $500 Home office setup if you’re a remote employee.
- Global Gatherings – We believe in the power of in-person connection and offer opportunities to engage with colleagues at company-wide offsites.
Vagas similares
Mantenha uma lista reserva.
JavaScript, TypeScript 5 países aceitos
Software Engineer (Mobile)SubwayVer vaga JavaScript, TypeScript 5 países aceitos
Senior Software EngineerSubway EcommerceVer vaga JavaScript, TypeScript 4 países aceitos
Senior Frontend EngineerIndeedVer vaga JavaScript, TypeScript 5 países aceitos
Full Stack EngineerSubwayVer vaga Stack
Use estas tags para comparar vagas remotas similares.
Elegibilidade de localização
Candidatos devem aplicar apenas quando o país do perfil estiver listado aqui.
Seu perfilPaís não definidoEntre para comparar seu país com esta vaga.
Fluxo de contratação
O WithMira mostra a vaga e depois envia candidatos para a aplicação da empresa.
1Confira fit da vaga, stack e elegibilidade de localização no WithMira.
2Abra a página de aplicação da empresa pelo link rastreado.
3Salve a vaga ou assine oportunidades similares antes de sair.