Senior Security Engineer

Senior Security Engineer

Estonia, Portugal | Global Team | Full-time

Who We Are

At
Katana Cloud Inventory
, we know our strength lies in the
diversity
of our team. We're a
remote-first
company with
100+ talented people
from
25+ nationalities
across
15+ countries
, working together to make inventory management seamless for modern businesses.

We believe in building software that connects businesses with their products and people – this connectivity is at the heart of everything we do. To power this vision, we're also embracing an
AI-empowered way of working
. By thoughtfully integrating AI into our workflows and strategies, we enable our team to focus on creativity, innovation, and impact while working smarter and faster.

Since 2017, we've been helping companies worldwide get a real-time view of their inventory and production workflows. From mom-and-pop shops to multi-million-dollar brands, our customers rely on us to unify their processes and tools with intuitive cloud-based inventory software that just works.

To date, we've raised over $51 million from VC firms and angel investors who, like us, believe the inventory software space needs more love. As we continue to grow rapidly, we remain committed to equitable opportunities, fostering belonging, and driving innovation in everything we do — including how we use AI to amplify human potential across our teams and products.

Who Are We Looking For?

We're looking for a
Senior Security Engineer
with a builder's mindset who thrives in a fast-paced, remote-first B2B SaaS environment. You collaborate across Product and Engineering to ship paved-road guardrails—not just policies—that reduce risk and help engineers move faster. You bring broad security fluency (cloud, identity, SaaS, endpoints) with deep, hands-on strength in at least two areas (e.g., AWS + IAM, or Endpoint/EDR + Detection), and you automate the boring stuff so secure-by-default becomes the norm.

You'll join a function with strong exec backing and high visibility, partnering closely with Engineering to codify controls via code (Terraform, CI/CD checks, admission policies) and embed security into the SDLC (threat modeling, SAST/DAST/dep scanning, supply-chain integrity). You're incident-capable—calm under pressure, crisp in triage and comms—and you turn post-mortems into engineered, durable fixes.

You can read and write code and you're not here to say "no" from the sidelines. You design self-serve security experiences (identity patterns, secrets management, paved-road libraries), apply an AI-first approach to triage and documentation, and translate telemetry into decision-ready narratives for audiences from ICs to execs. If you care about building a lightweight, automated security platform that delivers real-time risk posture while keeping developers in flow, we'd love to meet you.

What You'll Be Doing

As a
Senior Security Engineer
, you will:

Cloud & platform hardening:
Enforce guardrails via IaC (e.g., Terraform), admission policies, and CSPM; champion least privilege, network segmentation, and secrets hygiene.

Product/AppSec:
Run threat models on new designs; drive secure-coding patterns; implement SAST/DAST/dependency scanning; strengthen supply-chain protections (SBOM, provenance, signing).

Detection & response:
Own detections for high-risk scenarios; maintain IR runbooks; lead/coach incidents and post-mortems that deliver durable fixes.

Vulnerability management:
Orchestrate triage → ownership → remediation; run coordinated disclosure and occasional pentests/bug bounties.

Identity & access:
Strengthen SSO/MFA, workload identities, and JIT/JEA for privileged operations; reduce long-lived credentials.

Data protection:
Classify data and enforce encryption, key management, DLP, and egress controls.

Third-party & AI risk:
Assess vendors and AI tooling (prompt/privacy risks, model/endpoint controls); define safe-use patterns for engineers.

Enablement:
Run the Security Champions program; publish clear docs/how-tos; host knowledge sharing sessions so teams move faster on the paved road.

Compliance partnership:
Map controls to SOC 2/ISO 27001 and automate evidence collection.

Who You Are

You'll thrive in this role if you:

Build paved roads, not paperwork
— you ship usable guardrails, reduce toil with automation, and balance risk reduction with a great developer/employee experience.

Go deep in a couple areas, stay fluent across the rest
— you have strong hands-on depth in at least two (e.g., AWS + IAM, or Endpoint/EDR + Detection) and working breadth across cloud, identity, SaaS, endpoints.

Write and read code comfortably
— you contribute small libs, CI/CD checks, or Terraform modules that make secure-by-default the easy path. You build automations to reduce manual work.

Lead through incidents
— calm triage, crisp comms, steady ownership; you turn postmortems into engineered, durable fixes.

Design with data
— you convert telemetry and risk into clear, decision-ready narratives for ICs and execs.

Adopt an AI-first mindset
— you use LLMs/AI agents where it makes sense—while humans keep the judgment.

Default to audit-ready
— evidence comes from the control itself; SOC 2/ISO 27001 mapping and proof collection are automated where possible.

Influence without heavy policing
— clear docs, and a Security Champions network that drives adoption.

Collaborate with curiosity
— you welcome diverse perspectives, mentor generously, and learn fast.

Why You'll Love Katana

Global & Diverse Team
– Work with 100+ Katanauts across 15+ countries, bringing together a wide range of perspectives and experiences.

Remote-First Flexibility
– We're built for distributed work and trust our people to do their best work wherever they are.

Ways of Working
– We continually experiment with new tools and approaches, including AI, so our people can focus on meaningful, high-impact work.

Innovation With Purpose
– From small family-run shops to multi-million-dollar brands, your work helps modern businesses simplify operations with intuitive inventory software.

Inclusive Culture
– We're committed to equitable opportunities and fostering belonging. We use AI not as a replacement for people, but as a tool to
amplify human creativity and potential
.

High-Impact Environment
– As a fast-growing scale-up backed by over $51 million in funding, you'll have the opportunity to shape not just your role but also how Katana evolves into the future.

Mindset & Qualities that Thrive Here

Agile & Resilient
– You navigate change with confidence and curiosity, staying focused, flexible, and solution-oriented in an evolving landscape—maintaining momentum even in uncertain situations.

Values-Driven
– Your personal values align with Katana's culture, embracing an open, inclusive, and collaborative way of working.

Collaborative
– You thrive in a cross-functional and global environment, working closely with diverse perspectives to achieve shared goals.

Critical Thinker
– You balance speed with sound judgment, evaluating ideas, tools, and outputs carefully to ensure quality.

Curious & Growth-Oriented
– You seek opportunities to learn, embrace feedback as a tool for growth, and continuously improve. With strong learning agility, you adapt to new challenges, experiment with AI-enabled ways of working, and thrive in evolving environments.

Salary & Benefits

Competitive Compensation
– We value your contributions and ensure they're recognized with fair, competitive pay.

Employee Stock Option Program
– We believe in sharing success, so everyone has the opportunity to benefit from the fruits of our collective efforts.

Time Off
– Balance matters. We offer 20 business days of PTO + 3 paid health days annually, so you can recharge when you need it most.

Sabbatical to Reset & Explore
– After four years with Katana, we celebrate your dedication with a well-earned sabbatical. Whether you want to travel, focus on personal growth, or simply rest, this is your time to step away and return refreshed.

Reasons to Celebrate
– Your birthday is your day — enjoy it off, on us.

Home Office Support
– We provide a stipend to help you create a workspace where you can do your best work, supporting our remote-first culture.

Health & Wellness
– Your wellbeing matters to us. We provide SunLife Insurance coverage, or if you prefer not to enroll, you can choose a wellness allowance to support your health in the way that fits you best.

Tech & Tools
– You'll be equipped with the hardware and software you need to thrive — including modern tools that support smarter, more efficient ways of working.

Hiring Process

Step 1: Screening Call –
A quick chat to learn more about each other.
(30 mins)

Step 2: Role-fit Evaluation Interview –
This is an opportunity to get an idea of what to expect from your role and for us to see how we can best work together.
(45 mins)

Step 3: Case Study Exercise –
This is an opportunity to get an idea of what to expect from your role and for us to see how we can best work together.

Step 4
:
Case Study Discussion –
You've done amazing work to showcase your skills and experience, so let's chat about it.
(1 hr.)

Step 5: Culture Add Assessment –
Meet more team members and ensure mutual alignment.
(1 hr.)

Step 6: Offer & Onboarding –
Welcome to Katana

Ready to apply?
Hit the button below and let's chat