Lead Security Engineer
$172k - $215kCopia Automation
Lead Security Engineer
Copia Automation builds the version control and change management platform for industrial automation. Our customers are in oil & gas, manufacturing, and critical infrastructure — environments where the code running on PLCs, SCADA systems, and HMIs has direct safety implications. We bring modern software engineering practices to operational technology teams that have been underserved by tooling for decades.
We're a well-funded startup growing fast, with enterprise customers deploying Copia across hundreds of facilities. Our headquarters is in New York City.
The Role
We're hiring a Lead Security Engineer to mature Copia's security engineering program. You'll work closely with our CISO and report into engineering leadership.
This is not a siloed role. You'll be the person responsible for detection engineering on Monday, IAM architecture on Tuesday, compliance evidence on Wednesday, and incident response whenever it's needed. We need someone who can context-switch across security domains and knows which problem to prioritize on any given day.
You should be comfortable building a security program, not just operating one someone else designed. If you've been the first or second security engineer at a startup before, you know exactly what this means.
What you'll own:
- Detection Engineering & Incident Response: Build, tune, and maintain detection pipelines and alerting. Run incident investigations and root-cause analysis. Drive toward full visibility and monitoring coverage across cloud and endpoint assets.
- Cloud & Infrastructure Security: Secure our AWS environment — IAM policies, network segmentation, container security, secrets management. Codify security guardrails in infrastructure-as-code. Review architecture decisions with engineering for security impact.
- Enterprise Identity & Cloud Access: Architect and manage identity infrastructure across cloud and SaaS environments — IdP configuration, SSO/OIDC integration, SCIM provisioning, conditional access policies, and RBAC design. Own the full identity lifecycle from onboarding to offboarding, enforce least-privilege across AWS accounts and SaaS applications, and drive access certification and governance programs.
- Security Automation: Automate everything you can — alert triage, access provisioning, evidence collection, vulnerability management workflows. You're one person covering a lot of ground; automation is how you scale.
What we're looking for:
- 7+ years of experience in security engineering, with hands-on work across multiple security domains. You've ideally done this at a SaaS company or cloud-native startup where you couldn't hide behind a large team.
- Strong detection engineering skills — you've built and tuned SIEM rules, written detection content, and investigated real alerts, not just monitored dashboards someone else built
- Deep understanding of AWS security architecture — IAM, VPC design, multi-account strategies, and native security services
- Proficiency with infrastructure-as-code for security — codifying policies, guardrails, and configurations rather than clicking through consoles
- Experience with identity and access management architecture — IdP configuration, SSO/OIDC, RBAC design, and access lifecycle automation
- Scripting and automation chops in Python, Bash, or PowerShell for security operations, orchestration, and evidence workflows
- Clear, direct communication skills — you can explain a risk to an engineer, write a post-incident report for leadership, and answer a customer security questionnaire without corporate fluff
Bonus Points
- Experience with CrowdStrike Falcon (EDR + LogScale/NG-SIEM) or Datadog Security Monitoring
- Terraform expertise, including module development and policy-as-code (OPA, Sentinel)
- Familiarity with fleet management tools (FleetDM, osquery, Jamf, or Intune)
- Exposure to OT/ICS security concepts, industrial control systems, or critical infrastructure environments
- Experience with EU regulatory frameworks — NIS2, Cyber Resilience Act, IEC 62443
- Background in vulnerability management lifecycle — scanning, triage, remediation tracking, and executive reporting
- Experience implementing Zero Trust Network Access (ZTNA) in hybrid cloud/on-prem environments
$172,000 - $215,000 a year Benefits include unlimited PTO, employer-subsidized healthcare through Aetna, commuter benefits, in-office lunches, and more! Full-time, permanent employees also receive generous equity packages. This position is hybrid out of our New York City HQ.
Why Copia
- Your work has real-world safety impact. Our customers run critical infrastructure. Security here isn't an abstract compliance exercise — it matters.
- You'll build, not just maintain. This is a greenfield opportunity to shape the security program at a company that's scaling fast.
- No bureaucracy. You'll work directly with engineering and leadership. Your recommendations get implemented, not lost in committee.
- Competitive equity. Full-time permanent employees receive meaningful ownership in a company with significant upside.
Vacancy posted 9 hours ago
Similar jobs that could be interesting for youBased on the Lead Security Engineer in New York, NY vacancy
- ...Job Title Leading the creation, improvement and education of security policies, procedures, standards, and practices. Leading the implementation, management, and monitoring of core security infrastructure. Leading the detection, mitigation and resolution of security...Suggested
1872 Consulting
New York, NY9 hours ago - ...assets to the mainstream, consider building your career at Paxos Labs. We believe security is critical to our culture and long term success. We are hiring a Lead Security Engineer to help take Paxos Labs's security capabilities to the next level. Who we're looking...SuggestedContract work
Paxos Labs
New York, NY9 hours ago $121.79k - $166.95k
...Facebook, Twitter, YouTube and Instagram. Position Summary: We have an exciting opportunity to join our team as a Lead Engineer - Network Security Systems. Reporting to the Director of Network Security Systems Engineering, the Lead Engineer of Network...SuggestedNYULMC
New York, NY2 days ago$225k - $275k
...angel investors. About the role We are looking for a Security Lead to own Thesis's security program end-to-end, spanning cloud and... ...is a strategic, hands-on role: you'll partner closely with Engineering, Product, and Operations to embed security into how we design...SuggestedWork at office3 days per weekThesis
New York, NY9 hours ago- ...This is a high-impact, hands-on security leadership role responsible for shaping and owning... ...at global scale. You will work across engineering, DevOps, compliance, and customer-facing... ...embedded across the SDLC and CI/CD pipelines. Lead cloud security initiatives across AWS...SuggestedPart timeRemote workWorldwide
Jobgether
New York, NY3 days ago $150k - $180k
...about developing your career, while helping others along the way, come join the Broadridge team. Broadridge is seeking a Lead Security Engineer to provide deep technical expertise across application and infrastructure vulnerabilities. This role is responsible for...Local areaBroadridge Financial Solutions , Inc.
New York, NY9 hours ago- ...Lead Security Engineer Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies...Work at office
Chase
Jersey City, NJ9 hours ago - ...National Human Genome Research Institute’s Information Systems Security Officer and their team is to make information security... ...NHGRI to succeed in its research mission. What you will do The Lead Security Engineer is responsible for supporting the IT Security tools,...Full timeWork experience placement
Richard S. Carson & Associates Inc
New York, NY1 day ago - ...Lead It Security Endpoint Engineer Are you ready to make an impact at DTCC? Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation...Remote workFlexible hours
Dtcc
Jersey City, NJ2 days ago - ...L3Harris is seeking an Associate Manager, Security Software Research Engineer to lead a team in advanced offensive security research. This remote position involves guiding vulnerability discovery and balancing research objectives with the latest attack techniques. The...Remote work
L3Harris
New York, NY1 day ago $104k - $228k
...Corporate Security Engineering - Lead Engineer Role At BNY, our culture allows us to run our company better and enables employees' growth and success. As a leading global financial services company at the heart of the global financial system, we influence nearly 2...Temporary workWork at officeRemote workWorldwideBNY Mellon
Jersey City, NJ1 day ago$111.5k - $207.5k
...end technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security. Job Title: Lead, Security Research Engineer Job Code: 35904 Job Location: Remote Job Schedule: 9/80: Employees work 9 out of every 14 days – totaling 80...For contractorsLocal areaRemote workFlexible hoursL3Harris
New York, NY1 day ago$172k - $215k
...we change the way everything gets built. We’re seeking a Senior Security Engineer to strengthen our threat model and implement robust security controls across multiple domains. In this role, you’ll lead initiatives to secure both cloud and on-premises infrastructure —...Permanent employmentFull timeWork at officeRemote work- ...A leading defense technology company is seeking a Lead Security Research Engineer with extensive experience in vulnerability research and reverse engineering. This remote position focuses on identifying software vulnerabilities and constructing exploits. The ideal candidate...Remote work
L3Harris
New York, NY1 day ago - ...Lead Application Security Engineer We are a specialized technology staffing agency supporting professional and financial services companies. Why do we stand out in technology staffing? We listen and act as advisors for our candidates on how they can best add value,...Work at office
Eleven Recruiting
New York, NY9 hours ago $150k - $180k
...Lead Prisma Cloud Security Engineer About Novacoast At Novacoast, we help enterprises secure their most critical infrastructure — and we do it with a team of specialists who are genuinely passionate about the work. We're growing our Prisma Cloud practice and looking for...Full timeImmediate startRemote workNovacoast
New York, NY1 day ago- ...A cloud security company is seeking a Lead Prisma Cloud Security Engineer to deliver cloud security solutions for enterprise clients. This fully remote role involves leading projects, mentoring junior engineers, and developing cloud security policies. Ideal candidates...Remote work
Novacoast
New York, NY1 day ago - ...Senior Lead Security Engineer Join a team where your engineering expertise directly shapes how Technology/Cyber controls are built, governed, and scaled across a global technology organization. Here, you will make a direct and meaningful impact, contributing to work...
Chase
Jersey City, NJ9 hours ago - ...Hinge Health is seeking a Lead Security Engineer to develop security practices for AI-assisted healthcare solutions. This role requires expertise in cloud security and IAM, with a focus on AWS environments. The successful candidate will audit security frameworks and implement...
Hinge Health
New York, NY1 day ago - ...Jobgether is seeking a high-impact security leader responsible for defining the security posture of a cloud-first SaaS platform. You... ...candidate should have over 8 years of experience in security engineering and a strong background in AWS and compliance frameworks. This...Remote work
Jobgether
New York, NY2 days ago - Bitwise Asset Management, Inc. is looking for a Staff Application Security Engineer to own the design and implementation of our application security program. This role provides the opportunity to build functions critical to the security of customer-facing products and internal...Remote job
$190k - $250k
Lead Application Security EngineerSkip to main contentThis site uses cookies. To see how cookies are used, please review our cookie notice. If... ...continue to use our site.# CareersLead Application Security Engineer page is loaded## Lead Application Security...- ...businesses at massive scale as Adaptive builds the security layer for the AI era. Trusted by leading banks, technology companies, and healthcare organizations... ...by protecting organizations from AI-powered social engineering - deepfake phone calls, spear phishing, SMS-based...
- Copia Automation, Inc. in New York City is seeking a Lead Security Engineer to lead its security engineering program. You will work closely with the CISO and be responsible for detection engineering, IAM architecture, compliance, and incident response. Our ideal candidate...
- A leading global financial services firm is seeking a Lead Security Engineer to enhance software security. In this role, you will design and implement security solutions while ensuring compliance with cloud service requirements. Candidates should have over 5 years of certification...
- ...where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the... ...the world's largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology...
- Portfolio BI, Inc. is looking for a seasoned Sr. System Engineer to provide onsite technical leadership for a high-profile client in financial... ...trusted advisor on technology, ensuring the reliability and security of their infrastructure while driving continuous improvement....Full time
- ...locationIndustriesChoose a partner with intimate knowledge of your industry and first-hand experience of defining its future.# Lead Cybersecurity Engineer - Security Architect AI - Generalist 2Berwyn, New York, Tampa## **Location**This role is based in Pittsburgh, Lake Mary, FL,...
- ...Sr. Associate It Security Engineer – Cloud Security (Azure) Are you ready to make an impact at DTCC? Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are...Remote workFlexible hours
Dtcc
Passaic, NJ12 days ago - A regional educational institution is seeking a full-time faculty member for the Master's in Cyber Engineering program. This role involves teaching graduate-level courses, engaging in curriculum development, and providing mentorship. The ideal candidate holds a Doctoral...Full time
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Lead Security Engineer. Be the first to apply!
Related searches
- lead support engineer New York, NY
- lead ios developer New York, NY
- lead solutions engineer New York, NY
- lead quality engineer New York, NY
- lead project engineer New York, NY
- lead network engineer New York, NY
- lead product engineer New York, NY
- lead web developer New York, NY
- lead software test engineer New York, NY
- lead system engineer New York, NY