Senior Security Engineer

Copia Automation brings modern developer tools to industrial automation. Our product provides Git-based source control for automation professionals. We are a well-funded startup and with a growing list of happy customers throughout the industrial space. 

As a Copia employee, you'll solve challenging, unique, and meaningful problems alongside passionate coworkers, while we change the way everything gets built.

We're seeking a Senior Security Engineer to strengthen our threat model and implement robust security controls across multiple domains. In this role, you'll lead initiatives to secure both cloud and on-premises infrastructure — spanning networks, endpoints, identity and access management, and data protection. You'll design and automate security solutions, integrate them into CI/CD pipelines, and enhance detection, response, and hardening across environments.

You are a self-starter who thrives with minimal supervision, capable of independently driving complex security projects from concept to production. You prioritize effectively, communicate clearly with cross-functional teams, think creatively to address emerging threats, and deliver exceptional, measurable results.

• Develop, tune, and automate detection and alerting pipelines; support incident response investigations and root-cause analysis
• Lead endpoint and server hardening efforts across Windows, macOS, and Linux systems, ensuring secure configurations and continuous compliance
• Mature and maintain enterprise detection and response capabilities; drive toward 100% visibility and monitoring coverage across all assets
• Oversee vulnerability management lifecycle — from scanning and triage to remediation tracking and executive reporting
• Design and implement security automation to streamline access management, alert triage, and compliance evidence collection
• Develop, enforce, and continuously refine Zero Trust Network Access (ZTNA) policies for both on-premises and cloud environments
• Collaborate with engineering teams to support threat modeling, application security reviews, and secure-by-design architecture decisions

• 5+ years of experience in security engineering, cloud security, or incident response, ideally within a SaaS or cloud-native company operating at scale
• Deep understanding of AWS security services (GuardDuty, IAM, KMS, CloudTrail, etc.) and best practices for securing multi-