Senior Security Engineer

The TKWW InfoSec Team is looking for a Security Engineer to help build and grow security operations to address both deeply technical and programmatic security issues, as well as emerging new threats. You will partner with key project stakeholders to identify security issues, implement actionable remediation plans, and dive deep into the tactical security aspects of a service in need of extra attention.

Successful security engineers at TKWW are self-starters who can work autonomously, natural problem-solvers, collaborative, and unfazed by adversity or ambiguity. You should have strong problem-solving and communication skills, a deep technical understanding of modern cloud security threats, the ability to influence people from customers to managers through technical solutions, and the desire to be an individual contributor to securing TKWW's platform and technology.

The TKWW InfoSec Team is responsible for the security and availability of all services offered by TKWW, as well as providing security support to teams that leverage those services. The TKWW InfoSec team collaborates with service teams to design and develop secure solutions, participates in and coordinates cross-organizational security initiatives, and addresses security challenges at scale. This is an exciting and visible role - you will directly influence the security postures for TKWW products and services., * Collaborate with engineering teams across TKWW to provide scalable vulnerability management and assessment procedures, as well as conduct cloud security reviews.

• Collaborate with engineering teams across TKWW to build secure and scalable containerized architectures in the cloud.
• Work with various business units to respond to questions, concerns, and incidents related to security.
• Work with various business units, helping to integrate security into their functions.
• Implement information security controls and patterns that support risk assessments and the development of secure architectures.
• Collaborate with engineering teams to drive product roadmaps by providing security requirements that map security controls to service features.
• Identify and mitigate risks throughout our corporate and production environments.
• Provide continuous technical support and escalation management for security-related issues throughout TKWW.
• Identify opportunities for process improvement, including the development and implementation of internal security tools, tactics, and procedures.
• Provide security awareness training and outreach to internal development teams.
• Provide security-related guidance and documentation., * Commit to our customers: You act as one team on behalf of our customers. You lead with head and heart, and build what matters for life's most meaningful moments.
• Raise the bar: You define "great" and work backwards. You don't just accept how it's been done, but boldly define how it should be. You are unafraid to innovate, learn, and keep moving forward toward our shared vision.
• Be all in: You believe in our mission and take ownership of your work. You debate openly to reach the best outcomes, speaking with clarity and care, embracing diverse perspectives, then commit fully.
• Celebrate impact: You measure success by the outcomes you create. You hold yourself accountable to delivering value, while recognizing progress and the lessons learned along the way. You love to win, together.

Do you have experience in Scripting?, Do you have a Bachelor's degree?, * Bachelor's Degree in Computer Science or a related field

• Minimum of 3+ years of progressive security architecture experience; preferably within a professional services firm or similar environment working with startups and large mature security companies.
• 2+ years of experience using Akamai WAF and Bot Management platforms
• 2+ years of application security experience designing, building, or testing web and API-based architectures.
• 2+ years of experience working with stakeholders across many functions.
• 2+ years of hands-on experience securing cloud applications and infrastructure (AWS strongly preferred).
• Understanding of security vulnerabilities, attacker exploit techniques, and methods for remediation of such.
• Excellent understanding/working knowledge of the public cloud infrastructure and services in AWS (IAM, VPC, KMS, CloudWatch, Systems Manager, S3, RDS, Route53, Lambda, AWS Config, etc.) is a strong plus.
• Excellent understanding of Docker and container orchestration with Kubernetes and experience running production Kubernetes clusters in Amazon EKS, Google GKE, or similar managed platforms.
• Demonstrated experience in areas such as system security, network, and application security.

NICE TO HAVE

• Experience with scripting and automation (Python, Go, JS, C, C++, Java, Ruby, or PowerShell)
• Understanding of best practices in one or more security engineering specialties: secure development, cryptography, network security, security operations, systems security, policy, and incident response.
• 2+ years of experience in security engineering, DevOps, or IT operations roles, with a strong familiarity with the principles of DevOps and Agile development.
• 2+ years of hands-on experience operating and securing container-based infrastructures.

WORK MODEL: This role is Together@TKWW-eligible and based near one of our office hubs. You'll be expected to work in the office two days a week as part of our hybrid work model.

#professional-track

At The Knot Worldwide, we champion celebration - and that starts with celebrating our people. Our employees are passionate dreamers, thoughtful doers, and lifelong learners who power meaningful moments for millions around the world. We're united by authentic connection, shared purpose, and a deep commitment to the global community we serve. Here, flexibility and belonging go hand in hand with high performance. Driven by our core values, we believe the best ideas come from empowered teams: those who consistently collaborate with intention to design solutions, spark ideas, and drive impact. Our people are at the heart of our success., At The Knot Worldwide, we believe you are more than a resume and invite you to go for it, take the leap of faith, and apply for this job. Together, we have an incredible opportunity to make it even easier for our customers to plan life's most meaningful moments and for our small business owners to grow and scale. We would love to have you with us on our journey., We believe in a wide range of holistic offerings to support our employees so that they can live our values day in and day out. From mental wellbeing, physical health and financial planning, to engaging perks and discounts, we are in the business of celebrating and supporting the Moments that Matter, both in and out of the office.. We offer flexible vacation, generous parental leave, and prioritize initiatives that support the growth, development, and happiness of our people. Together@TKWW is our approach to hybrid work. It's designed to support how we work best: combining the flexibility we value with meaningful opportunities to connect in person. Whether a role is Together@TKWW-eligible or not, we believe in purposeful moments to come together, build strong relationships, and drive bold ideas forward. * For Together@TKWW-eligible roles, this includes regular in-office time to foster collaboration and connection. * For roles not eligible for in-office expectations, we support connection through virtual collaboration and intentional gatherings. To facilitate in-person collaboration, we have office spaces in Barcelona, Spain; Delhi, India; Galway, Ireland; London, England; New York, NY; and Washington, D.C. __ US Notice: The Knot Worldwide provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, or disability. In addition to federal law requirements, The Knot Worldwide complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. The Knot Worldwide expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status.