Senior Security Engineer Infrastructure Identity Security

PagerDuty Inc. (NYSE:PD) is a global leader in digital operations management. Half of the Fortune 500 and nearly 70 of the Fortune 100 trust PagerDuty as essential infrastructure.

Join us. At PagerDuty youll tackle complex problems collaborate with kind and ambitious people and help build a more equitable worldall in a flexible awardwinning workplace.

PagerDuty is seeking a Senior Security Engineer (Infrastructure & Identity Security) to join our diverse customerfocused team! As a Senior Security Engineer you will be a key technical leader driving security initiatives across PagerDutys SaaS offerings with deep expertise in Identity and Access Management. While youll spearhead our IAM modernization efforts and implement robust authentication patterns youll also be instrumental in maintaining our overall security posture through architecture reviews threat modeling and automated security solutions. Were looking for a security generalist who excels in IAM someone who can tackle diverse security challenges across our infrastructure while bringing specialized knowledge in identity and access patterns. Since we own and operate what we build youll collaborate with 30 engineering teams to implement secure scalable solutions that enhance security while maintaining developer productivity. This is an exciting opportunity to not only revolutionize our IAM strategy but also contribute to the broader security landscape of our SaaS platform.

This role is expected to come into our Atlanta office one day per month so you can thrive in your new role and fully embrace being a Dutonian!

KEY RESPONSIBILITIES

• Lead and implement comprehensive IAM strategy across cloud infrastructure
• Work closely with Product Engineering teams and conduct architecture reviews and threat modeling sessions focusing on but not limited to identity and access patterns
• Design and implement modern servicetoservice authentication patterns using technologies such as IRSA (IAM Roles for Service Accounts) and pod identity
• Develop and maintain a robust secrets management framework and strategy
• Drive adoption of principle of least privilege across all services and applications
• Design and implement automated workflows for access reviews and certification
• Design and implement security controls for AWS cloud infrastructure and containerized environments
• Develop metrics and monitoring for IAMrelated security events and access patterns
• Monitor and maintain security tooling supporting infrastructure security controls
• Design and implement security automations and tool integrations
• Develop automated vulnerability management workflows to drive timely remediation
• Implement automated incident response playbooks

Additional Responsibilities:

• Mentor and guide team members on security best practices and implementation approaches
• Participate in our teams oncall rotation triaging and addressing security issues as they arise.
• Contribute to roadmap and annual planning discussions

BASIC QUALIFICATIONS

• 5 years of experience as a fullstack Security Engineer in an AWS native microservice SaaS environment with focus on IAM.
• Deep expertise in cloud security particularly AWS services including but not limited to:
• GuardDuty CloudTrail Config
• IAM family Secrets Manager KMS
• EKS Service Mesh architectures
• Strong expertise and experience implementing and managing identity providers specifically Okta and/or Microsoft Entra at scale 1000 users).
• Strong understanding of zero trust principles and modern authentication patterns
• Experience working with multiple development teams and technology stacks
• 5 years experience leading technical security initiatives with proven ability to scope ambiguous projects break down complex work into actionable items and successfully delegate responsibilities while maintaining project momentum
• Proficiency with security tools:
• Vulnerability Management & EDR: Wiz Snyk Qualys/Nessus Crowdstrike
• SIEM: SumoLogic or Splunk
• Experience with Infrastructure as Code and CI/CD:
• Terraform Helm Chef Ansible Buildkite Jenkins ArgoCD
• 4 years of experience and proficiency in at least one programming language and framework (Python Java or similar)
• Strong understanding of Threat Modeling principles
• Experience with Security Incident Response & Risk Management
• High appetite for challenging problems with a high degree of ownership.

PREFERRED QUALIFICATIONS

• Handson experience implementing IAM solutions at scale
• Experience working at a SaaS company larger than 1000 employees and 100M in revenue
• Current or past experience with obtaining and maintaining FedRAMP authorization and other compliance frameworks (SOC 2 ISO 27001
• Strong problemsolving abilities with effective change management skills
• Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure.
• Demonstrated history of mentoring and coaching
• Strong written and verbal communication skills
• Working knowledge and experience with PagerDuty Incident Management and Process Automation products.
• Familiarity with Corporate security needs and solutions and ability to provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO strategic initiatives and mandates.

The base salary range for this position isUSD. This role may also be eligible for bonus commission equity and/or benefits.

Our base salary ranges are determined by role level and location. The range which is subject to change based on primary work location reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range we determine pay for an individual based on a number of factors including market location jobrelated knowledge skills/competencies and experience.

Your recruiter can share more about the specific offerings for this role as well as the salary range for your primary work location during the hiring process.

The successful applicant will be performing work in FedRAMP environments and therefore must be a U.S. Person (i.e. U.S. citizen U.S. national lawful permanent resident asylee or refugee).This position may also perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil.

Hesitant to apply

We encourage you to submit your resume even if you dont meet every requirement. We value potential and consider each candidates full professional story. Whether youre exploring a career change or taking your next step we look forward to reviewing your application. If this just isnt the right role or time sign up for job alerts!

Where we work

PagerDuty currently has offices in Atlanta Lisbon London San Francisco Santiago Sydney Tokyo and Toronto. We offer a hybrid flexible environment. We also provide ample opportunities for connection like team offsites and volunteering events.

How we work

Our values guide how we support customers collaborate with colleagues develop products and foster a culture of belonging. They define not just our actions but what it means to be Dutonian.

What we offer

As a global organization our total rewards approach is competitive with industry standards and aligned with local laws and regulations. Learn more including countryspecific offerings on our benefits site.

Your package may include:

Competitive salary

Comprehensive benefits package from day one

Flexible work arrangements

Company equity*

ESPP (Employee Stock Purchase Program)*

Retirement or pension plan*

Generous paid vacation time

Paid holidays and sick leave

Dutonian Wellness Days & HibernationDuty companywide paid days off in addition to PTO

Paid parental leave: 22 weeks for pregnant parent 12 weeks for nonpregnant parent (some countries have longer leave standards and we comply with local laws)*

Paid volunteer time off: 20 hours per year

Companywide hack weeks

Mental wellness programs

*Eligibility may vary by role region and tenure

About PagerDuty

PagerDuty Inc. (NYSE:PD) is a global leader in digital operations management enabling customers to achieve operational efficiency at scale with the PagerDuty Operations Cloud. The PagerDuty Operations Cloud combines AIOps Automation Customer Service Operations and Incident Management with a powerful generative AI assistant to create a flexible resilient and scalable platform to increase innovation velocity grow revenue reduce cost and mitigate the risk of operational failure. Half of the Fortune 500 and nearly 70 of the Fortune 100 rely on PagerDuty as essential infrastructure for the modern enterprise.

PagerDuty is Great Place to Workcertified a Fortune Best Workplace for Millennials a Fortune Best Medium Workplace a Fortune Best Workplace in Technology and a top rated product on TrustRadius and G2.

Go behindthescenes on our careers site and @pagerduty on Instagram.

Additional Information

PagerDuty is committed to creating a diverse environment and is an equal opportunity employer. PagerDuty does not discriminate on the basis of race religion color national origin gender sexual orientation age marital status parental status veteran status or disability status.

PagerDuty is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application process. Should you require accommodation please email and we will work with you to meet your accessibility needs.

PagerDuty uses the EVerify employment verification program.