Senior Security Engineer

About zaimler

zaimler is building the semantic platform that links fragmented enterprise data and extracts meaning with knowledge-distilled models. We’re creating the foundation for AI systems that don’t just generate, but retrieve, link, and reason over enterprise knowledge.

In just over a year, we’ve begun partnering with Fortune 500 design partners in insurance, travel, and technology, deploying semantic AI infrastructure into some of the world’s most complex data ecosystems. Our platform enables enterprises to make data AI-ready from the start: automating ontology creation, data mapping, and retrieval-augmented reasoning at scale.

Our team comes from LinkedIn, Visa, Meta, and Branch, and has spent decades solving data and infrastructure challenges at scale. Backed by top VCs, we’re building the next foundational layer for enterprise AI.

The Role

We are seeking a Senior Security Engineer to strengthen the security posture of our cloud infrastructure and applications. This role is critical to proactively identifying and reducing risk, automating security controls, building a framework, and ensuring zaimler’s platforms remain secure, resilient, and compliant as the business scales.

As a Senior Security Engineer, you will partner closely with DevOps, platform, and application teams to embed security into day-to-day engineering workflows. You will help shift security left, reduce operational risk, and enable teams to move fast without compromising security.

• Integrated Security: Embed automated security testing (SAST/DAST) into CI/CD pipelines to identify vulnerabilities and their resolution early.
• Secure Infrastructure: Implement safeguards across infrastructure-as-code, containers, and cloud environments to minimize risk from misconfigurations or unintended use.
• Threat Management: Automate vulnerability scans and real-time threat responses to reduce risks. Participate in the security triage and vulnerability management process.
• Compliance: Ensure adherence to standards like SOC 2 or GDPR within DevOps processes.
• Efficiency: Automate manual security tasks, accelerate development, and reduce delays caused by late-stage fixes.
• Resilience: Build robust defenses against evolving threats with incident response playbooks and threat intelligence.

• 5+ years of experience as a Security Engineer or in a similar role with a strong foundation in CI/CD, automation, and cloud infrastructure
• Strong understanding of cloud security principles (AWS, GCP, or Azure)
• Experience securing CI/CD pipelines (e.g., GitHub Actions, GitLab CI, Jenkins, Harness)
• Familiarity with infrastructure-as-code and related security tools
• Proficiency in scripting languages (Python, Bash, etc.)
• Hands-on experience with container security (e.g., Docker image scanning, Kubernetes best practices)
• Knowledge of IAM, secrets management, and secure key handling
• Experience with vulnerability scanning, remediation workflows, and risk prioritization.
• Ability to identify and mitigate misconfigurations in cloud and IaC environments
• Comfortable collaborating with DevOps, platform, and application teams

• Familiarity with compliance frameworks (SOC 2, ISO 27001, NIST, HIPAA, GDPR, etc.)
• Experience with security monitoring and incident response processes
• Exposure to SIEM or EDR tools 
• Experience with SAST/DAST and dependency scanning tools
• Familiarity with zero-trust networking concepts
• Knowledge of threat modeling and risk assessment practices

• Build foundational infrastructure for production-grade AI systems
• Work closely with senior engineers and founders
• High ownership, real impact, and room to shape how security is done
• Early-stage environment with strong technical ambition