Sr. Security Engineer 1 (Customer Trust)

<div class="content-intro"><p>For over 20 years, Smartsheet has helped people and teams achieve–well, anything. From seamless work management to smart, scalable solutions, we’ve always worked with flow. We’re building tools that empower teams to automate the manual, uncover insights, and scale smarter. But more than that, we’re creating space– space to think big, take action, and unlock the kind of work that truly matters. Because when challenge meets purpose, and passion turns into progress, that’s magic at work, and it’s what we show up for everyday.</p></div><p>The Sr. Security Engineer I is a critical technical role focused on deal acceleration, platform security evangelism, and the development of security features and capabilities that enhance our customer security and governance capabilities. You will support security and compliance during sales motions and bridge communication between complex customer security requirements and technical product engineering. You will work directly with customer security leaders (security engineers through CISOs) to communicate and clarify product security posture and controls results (such as pen test results), and will work with Smartsheet engineering to build security features that meet real-world customer requirements.. You will display product understanding through highly customized presentation demonstrations to customers and at conferences and events. </p> <p>This role reports to the Manager, Customer Trust and Engineering and can be based in our Bellevue, WA office or remotely from anywhere in the US where Smartsheet is a registered employer.</p> <p><strong>You Will:</strong></p> <ul> <li>Serve as a trusted advisor to enterprise customers, CISOs, CIOs, and guiding them on Smartsheet security, compliance, and risk management.</li> <li>Evaluate customer infrastructure diagrams and data flows, and how Smartsheet can help with automation without compromising security. </li> <li>Present scanning results (NIST 800-53 gaps, vulnerability scans, DAST/pen test, IaC scans) to customers including walking through remediations. Help customers interpret scan results and develop deviation rationales for findings that can't be directly remediated.</li> <li>Bridge the gap between FedRAMP, NIST 800-53 control language and Smartsheet implementation. Explain what NIST 800-53 controls mean in terms of Terraform configs, Kubernetes manifests, CI/CD pipelines and cloud configuration of Smartsheet across AWS and GCP.</li> <li>Provide executive-level support during major customer security incidents and ensure lessons learned inform improvements. Understand and adhere to legal, regulatory and compliance requirements while working on sensitive security incidents.</li> <li>Represent our cloud and AI security strategy at industry events, conferences, and customer councils.</li> <li>Capture new business by responding to complex customer security questionnaires and technical inquiries using automation and AI tooling, ensuring security-related impediments to closing deals are removed efficiently.</li> <li>Work alongside product engineering and Corporate IT to define technical specs for security features and protective measures that meet evolving customer requirements.</li> <li>Translate customer security concerns and regulatory needs into clear technical problem definitions for internal teams.</li> <li>Create and distribute technical assets (white papers, solution code, blog posts, and video demonstrations). </li> </ul> <p><strong>You Have:</strong></p> <ul> <li>Strong analytical and problem solving skills</li> <li>Ability to explain CI/CD and SDLC best practices and how Smartsheet is deployed. </li> <li>Hands-on experience with AAA implementations (SSO, IdP, MFA enforcement, session management, etc.). </li> <li>Hands-on experience with enterprise system and application integrations, and with security tooling such as EDR, VPNs, Vulnerability scanners, CSPM, and SIEM/CASB.</li> <li>5+ years of total experience in ... (truncated, view full listing at source)