Senior Infrastructure Security Engineer - Remote

BigCommerce’s mission is to help merchants sell more at every stage of growth, from small startups, to mid-market businesses to large enterprises. We focus on being the best ecommerce platform so our customers can focus on what matters most: growing their businesses. We are equally passionate about growing our employee’s careers and providing them an incredible experience as we rapidly expand across the globe. We are proud to have been recognized numerous times for our product and workplace culture. We empower our people and customers to build, innovate and grow, so together we can redefine the ecommerce industry. BigCommerce is disrupting the e-commerce industry as the SaaS leader for fast- growing, mid-market businesses. We enable our customers to build intuitive and engaging stores to support every stage of their growth. At BigCommerce, security is at the core of everything we do. As a Senior Infrastructure Security Engineer, you will play a critical role in securing our cloud infrastructure, mitigating threats, and ensuring compliance across Google Cloud Platform (GCP) and Amazon Web Services (AWS). You will work across multiple domains—development, operations, security engineering, incident response, and governance—helping shape our security posture while empowering engineering teams with secure-by-design principles. This role requires a proactive problem-solver with a deep technical background, strong analytical skills, and a collaborative approach. If you have experience designing security solutions in cloud-native environments, a keen eye for threat detection, and a passion for building automated security capabilities, we want to hear from you! What You’ll Do Security Incident Response: Monitor, analyze, and respond to security incidents, leveraging tools such as SIEM and CSPM/CNAPPCloud Security Governance: Establish and maintain security best practices for GCP and AWS, including IAM, network security, data encryption, and workload protection.Security Reviews & Architecture Guidance: Evaluate technical designs for security implications, perform threat modeling, and provide secure architecture recommendations to engineering teamsAutomation & Infrastructure Security: Develop and implement Infrastructure-as-Code (IaC) security controls using Terraform, CloudFormation, or equivalent toolsThreat Intelligence & Monitoring: Utilize data to generate insights into evolving threats, perform security log analysis, and optimize detection capabilitiesVulnerability Management & Hardening: Lead security assessments, cloud misconfiguration checks, and implement hardening guidelines for cloud workloads and containerized environmentsRed & Blue Team Coordination: Conduct cloud security penetration testing, validate findings, and coordinate remediation with DevOps teamsSecurity Tooling & Engineering: Design and manage security solutions such as SIEM, CSPM, EDR, CWPP, WAF, API Security, and Secrets ManagementRegulatory Compliance & Risk Management: Ensure alignment with PCI DSS, SOC2, ISO 27001, NIST CSF, and CIS BenchmarksMentorship & Advocacy: Act as a security champion within the organization, mentoring team members and driving a culture of security awareness Who You Are Deep expertise in securing cloud environments on GCP and AWS, with hands-on experience in IAM, Kubernetes security, VPC security, API security and ability to maintain via Terraform or equivalent toolingMinimum BS degree, CS, CE, SW, MIS or equivalent degree, or has relevant work experienceStrong scripting and automation skills in Python, Go, Bash, or similar languages.Minimum 5+ years in security-focused roles, including cloud security, infrastructure security, or DevSecOpsExperience with SIEM, EDR, CSPM, CWPP, and security automation tools (e.g., SentinelOne, Sysdig, Sumo Logic, Cloudflare)Knowledge of identity security principles, including SSO, OAuth, OpenID Connect (OIDC), RBAC, and ABACUnderstanding of container security (Kubernetes, Docker, GKE, EKS) and best practices for securing microservices architectureFamiliarity with network security, firewall configurations, and cloud-native security controlsProven ability to conduct security assessments, including penetration testing, threat modeling, and vulnerability managementCertifications preferred: OSCP, GCP Professional Cloud Security Engineer, AWS Security Specialty, CCSP, CISSP or equivalent Bonus Experience (Nice To Have) Experience with serverless security (e.g., AWS Lambda, Google Cloud Functions)Familiarity with data security solutions such as DLP, tokenization, and cloud encryption key managementKnowledge of SIEM correlation rules and experience tuning security detections.Hands-on experience with cloud-native security tools (e.g., AWS Security Hub, Google Security Command Center, GuardDuty, Cloud Armor)Experience working in highly regulated industries such as fintech, healthcare, or e-commerce Why Join Us Work in a high-impact role securing a global-scale cloud infrastructureCollaborate with a highly skilled, passionate security teamContinuous learning opportunities, certifications, and career growth supportCompetitive compensation, a remote-friendly environment, and comprehensive benefits If you are passionate about cloud security and thrive in a fast-paced, collaborative environment, apply now and help us build a secure future for our platform and customers! (Pay Transparency Range: $95,000.00 - $159,000.00) The exact salary will be dependent on the successful candidate’s location, relevant knowledge, skills, and qualifications. Diversity, Equity, and Inclusion at BigCommerce Our employees make the difference. At BigCommerce, we believe that celebrating the unique histories, perspectives and abilities of every employee makes a difference for our company, our customers and our community. We are an equal opportunity employer and the inclusive atmosphere we build together will make room for every person to contribute, grow and thrive. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the interview process, to perform essential job functions and to receive other benefits and privileges of employment. If you need an accommodation in order to interview at BigCommerce, please let us know during any of your interactions with our recruiting team. Learn more about the BigCommerce team, culture and benefits at https://careers.bigcommerce.com . Protect Yourself Against Hiring Scams: Our Corporate Disclaimer BigCommerce, along with many other employers, has become the subject of fraudulent job offers to hopeful prospective job seekers. Be Advised BigCommerce does not offer jobs to individuals who do not go through our formal hiring process. BigCommerce Will Never require payment of recruitment fees from candidates;request personally identifiable information through unsanctioned websites or applications;attempt to solicit money from you as part of the hiring process or as part of an employment offer;solicit money to complete visa requirements as part of a job offer. If you receive unsolicited offers of employment from BigCommerce, we urge you to be extremely cautious and avoid engaging or responding.