Secure the Future of Procurement with Levelpath
Levelpath is revolutionizing the procurement software industry, making it delightful for businesses of all sizes. Backed by top Silicon Valley VCs, we're building a platform that simplifies procurement, making enterprises faster, safer, and more transparent. Join us as we tackle challenges that haven't been solved and reach our full potential together!
Shape Our Security Landscape
We're seeking a passionate and experienced Senior Security Engineer to lead and elevate our security initiatives. In this critical role, you'll be instrumental in maturing Levelpath’s security posture, safeguarding our infrastructure, ensuring compliance, and maintaining our customers' trust. You'll collaborate closely with Engineering, DevOps, and Compliance teams to establish best-in-class security programs, from policy definition to incident response and secure development practices.
This hybrid/remote position offers flexible working hours and an office in Teodors/Jaunā Teika. Join our international team and thrive in an agile environment with short decision paths. We currently use Slack, Zoom, Github, and AWS, but you're empowered to leverage the tools and devices that enable you to do your best work.
Your Mission:
Lead the design and implementation of security and compliance frameworks and internal policies.
Drive incident response efforts and lead investigations of potential breaches.
Manage vulnerability assessment workflows and oversee mitigation planning.
Oversee the implementation and maintenance of security tools such as SIEM, DLP, SAST/DAST, and identity & access management solutions.
Collaborate with Engineering and DevOps to bake security into CI/CD pipelines and infrastructure.
Guide and participate in customer-facing security reviews, audits (e.g., SOC 2, ISO 27001), and risk assessments.
Conduct security architecture reviews and data flow mapping from a risk and compliance perspective.
Manage the bug bounty program and coordinate with external researchers.
Deliver security awareness training and foster a culture of proactive risk management across the organization.
What You'll Bring:
Proven experience in leading cybersecurity programs at a tech-focused organization.
Strong understanding of security operations, tooling, and secure development life cycles.
Knowledge of regulatory frameworks and audit practices (SOC 2, ISO 27001, GDPR, etc.).
Hands-on experience with industry-standard tools and platforms (e.g., Vanta, CrowdStrike, Splunk, Rapid 7, Snyk).
Comfortable participating in customer security reviews and communicating complex concepts clearly.
Effective team collaborator who can also work independently and drive initiatives to completion.
Excellent English communication skills, both verbal and written.
A passion for teamwork and mutual support.
Levelpath is committed to equal treatment and opportunity in all aspects of recruitment, selection, and employment. We work hard to evaluate all employees and job applicants consistently, without regard to race, color, religion, gender, national origin, age, disability, pregnancy, gender expression or identity, sexual orientation, citizenship, or any other legally protected class. We’re working to build a more inclusive economy where our customers have equal access to opportunity, and we strive to live by these same values in our workplace.