Senior Security Engineer (Software & Platform)

Building practical security into our systems (and not just on paper) is of paramount importance across the company, and we’re looking for our first in-house, Senior Security Engineer to own and elevate security as a deeply practical, engineering-led discipline.

This is not a compliance checkbox role. You’ll be in the code, you’ll be shaping how we design and operate secure systems in practice, and you’ll help make security the path of least resistance for everyone at Neara.

WHAT YOU WILL DO:

Engineering & Product Security

• Perform hands-on code, architecture, and infrastructure security reviews.
• Act as a security reviewer on PRs and design documents.
• Find and fix vulnerabilities across backend, APIs, cloud, CI/CD, authentication, and data flows.
• Use and tune static, dynamic, dependency, and runtime analysis tools (commercial, open-source, and AI-assisted).
• Conduct white-box and black-box testing, and run targeted penetration tests.
• Help design and improve defense-in-depth across systems and processes.
• Be involved early in product design, helping prevent issues rather than reacting to them.

Security Culture & Real-World Practices

• Ensure security practices reflect what teams actually do — not just what’s written down.
• Identify gaps between policy and reality and fix the system, not just the docs.
• Reduce friction so engineers do the right thing by default.
  Be a visible, pragmatic security champion across the company.
• Educate teams on secure development, threat modelling, and real-world attack vectors without fear-mongering.

Compliance (With Engineering Context)

• Own and evolve our ISO 27001 and SOC 2 controls with an engineering-first mindset.
• Ensure controls are technically sound, defensible, and aligned with real systems and workflows.
• Prepare for audits in a way that adds value — not bureaucracy.
• Collaborate with engineering, operations, and leadership to continuously improve security maturity.